Pierre B

Membres

Afficher le profil Afficher son activité

Compteur de contenus
11
Inscription
le 15 janvier 2010
Dernière visite
le 6 mai 2010

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par Pierre B

Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Re bonjour Apollo,j'ai un peu de temps ce midi,je post donc l'analyse complete de mbam: Malwarebytes' Anti-Malware 1.44 Version de la base de données: 3580 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 19/01/2010 12:31:45 mbam-log-2010-01-19 (12-31-45).txt Type de recherche: Examen complet (C:\|D:\|J:\|K:\|) Eléments examinés: 232827 Temps écoulé: 59 minute(s), 5 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Et voici le rapport hijackthis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:32:27, on 19/01/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe c:\Program Files\Norton Internet Security\ISSVC.exe c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchIndexer.exe c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\wscntfy.exe C:\windows\system\hpsysdrv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\OrangeHSS\Systray\SystrayApp.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\1\AlertModule.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\E-Color\Common\IconMgr.exe C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files\E-Color\E-Color Indicator\TICIcon.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\BOINC\boinc.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\HJT\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.forum-ovni-ufologie.com/search....rch_id=newposts R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: VirtualCamera IEMenu Class - {0246A1A7-820A-469A-85A7-7B7F01EB808C} - C:\Program Files\VirtualCamera\VirtualCameraMenu.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: (no name) - {224530A0-C9CB-4AEE-9C0F-54AC1B533211} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: E-Color.lnk = C:\Program Files\E-Color\Common\IconMgr.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe O23 - Service: Service Google Update (gupdate1ca1085a2aeaaf2) (gupdate1ca1085a2aeaaf2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - c:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe -- End of file - 15163 bytes
- le 19 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Bonjour Apollo, Zut,je n'avais pas fait attention pour l'examen rapide et complet...quel béta je fais. Je bosse toute la journée,je me remet ce soir sur le PC pour effectuer l'examen complet,et ensuite je ferais les verifications de sécurité. En ce qui concerne les protection gratuite ou payante,je suis fortement interessé,je n'ai pas envie d'etre infecté tout les quatre matin et venir t'embeter comme je le fais... En tout cas merci beaucoup pour ton aide,heuresement que des gars comme toi existent pour nous aider.
- le 19 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Ok,me revoici avec les rapport: Voici le premier: Malwarebytes' Anti-Malware 1.44 Version de la base de données: 3580 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 19/01/2010 00:11:58 mbam-log-2010-01-19 (00-11-58).txt Type de recherche: Examen rapide Eléments examinés: 110233 Temps écoulé: 5 minute(s), 44 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Et voici le deuxième : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:14:19, on 19/01/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe c:\Program Files\Norton Internet Security\ISSVC.exe c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\OrangeHSS\Systray\SystrayApp.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\1\AlertModule.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\E-Color\Common\IconMgr.exe C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files\E-Color\E-Color Indicator\TICIcon.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\BOINC\boinc.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\HJT\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.forum-ovni-ufologie.com/search....rch_id=newposts R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: VirtualCamera IEMenu Class - {0246A1A7-820A-469A-85A7-7B7F01EB808C} - C:\Program Files\VirtualCamera\VirtualCameraMenu.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: (no name) - {224530A0-C9CB-4AEE-9C0F-54AC1B533211} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: E-Color.lnk = C:\Program Files\E-Color\Common\IconMgr.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe O23 - Service: Service Google Update (gupdate1ca1085a2aeaaf2) (gupdate1ca1085a2aeaaf2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - c:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe -- End of file - 15120 bytes Ok, j'espère ne plus être infecter ! Merci beaucoup Apollo.
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

ok je fais ça,merci encore!
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Je navigue avec google chrome,que dois-faire?
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Ok c'est parti,premier rapport: --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3200+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Compaq_Propriétaire ( Administrator ) BOOT : Normal boot Antivirus : Norton Internet Security 2005 (Activated) Firewall : Norton Internet Security 2005 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:134 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (USB) G:\ (USB) H:\ (USB) I:\ (USB) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [1] ( 18/01/2010|22:51 ) --------------------\\ Listing des dossiers dans APPLIC~1 [02/01/2009|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [03/09/2009|17:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [03/09/2009|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [21/05/2008|22:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [17/01/2009|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [29/07/2009|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater [26/09/2009|14:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard [15/11/2009|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [15/11/2009|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant [02/01/2005|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [16/06/2009|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd [16/06/2009|21:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [21/08/2006|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [02/04/2009|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [12/02/2008|19:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [08/08/2006|00:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [02/01/2005|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [19/08/2007|14:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\second regs grim software [05/07/2009|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [03/08/2007|09:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns [17/01/2010|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [11/07/2008|19:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\surfspam16frag [02/01/2005|22:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [16/01/2009|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks [26/09/2009|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WEBREG [03/06/2006|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [03/04/2009|16:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [03/08/2007|09:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\admin audio bold [18/10/2008|20:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe [16/02/2006|18:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM [12/09/2009|15:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer [02/09/2009|18:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DMV Technologies [16/12/2009|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\dvdcss [29/04/2006|22:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\FotoWire [04/12/2008|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google [31/12/2009|13:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\gtk-2.0 [10/02/2006|13:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help [26/09/2009|14:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP [10/02/2006|12:49] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ [13/12/2009|21:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HpUpdate [25/11/2004|04:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities [04/08/2009|17:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield [10/02/2006|15:00] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo [17/02/2006|01:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech [14/12/2009|23:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\LG Electronics [15/04/2008|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ma-config.com [18/08/2006|15:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia [02/09/2009|17:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MaxTV Technologies [03/08/2006|12:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Media Player Classic [21/11/2009|16:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft [02/09/2009|17:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla [29/11/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller [31/07/2007|17:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ODF [18/01/2010|18:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org2 [02/01/2005|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SampleView [19/03/2007|07:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Screenshot Sender [09/01/2010|22:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype [09/01/2010|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\skypePM [08/05/2009|14:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SmartDate5 [17/02/2006|01:57] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic [10/05/2009|11:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Stellarium [18/04/2006|14:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun [14/05/2006|14:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec [10/02/2006|13:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template [02/09/2009|18:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TVU networks [21/11/2009|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\uTorrent [14/01/2010|19:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\vlc [02/10/2007|19:56] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search [02/01/2005|22:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer [25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [07/12/2009|18:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia [29/11/2007|12:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [02/01/2005|22:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView [02/01/2005|22:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [02/10/2007|16:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [17/01/2010|17:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec [02/10/2007|16:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [09/12/2009 12:44][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [18/01/2010 22:06][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [18/01/2010 19:06][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [18/01/2010 18:34][--a------] C:\WINDOWS\tasks\Google Software Updater.job [18/01/2010 20:21][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{03AFEB78-EB69-416B-9FD5-C67FAB2636D3}.job [08/01/2010 20:05][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Compaq_Propri‚taire.job [18/01/2010 22:00][--ah-----] C:\WINDOWS\tasks\A9350150906AB320.job [14/06/2008 16:49][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job [18/01/2010 18:31][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 19:00][-rah-c---] C:\WINDOWS\tasks\desktop.ini ( A9350150906AB320.job )=( c:\docume~1\compaq~1\applic~1\admina~1\bluelogsend.exe ) --------------------\\ Listing des dossiers dans C:\Program Files [10/05/2007|21:50] C:\Program Files\Absolutist.com [03/08/2007|09:15] C:\Program Files\admin audio bold [02/01/2009|13:25] C:\Program Files\Adobe [20/08/2006|19:16] C:\Program Files\Adverts [14/04/2009|23:27] C:\Program Files\AlienGUIse [03/09/2009|17:35] C:\Program Files\Apple Software Update [13/02/2006|18:33] C:\Program Files\Ashampoo [02/01/2005|21:49] C:\Program Files\ATI Technologies [15/07/2007|21:21] C:\Program Files\Audacity [13/02/2006|18:45] C:\Program Files\Audio MP3 Sound Recorder [13/02/2006|18:10] C:\Program Files\AudioCrusher [21/05/2008|19:56] C:\Program Files\AviSynth 2.5 [18/01/2010|22:50] C:\Program Files\BOINC [16/12/2008|23:59] C:\Program Files\CamStudio [15/10/2009|21:13] C:\Program Files\Capturino V2 [27/09/2008|18:31] C:\Program Files\CCleaner [22/01/2009|18:25] C:\Program Files\CDex_150 [10/05/2009|11:35] C:\Program Files\Celestia [24/11/2004|02:37] C:\Program Files\ComPlus Applications [03/08/2006|12:07] C:\Program Files\DivX [02/09/2009|17:34] C:\Program Files\DMV [23/03/2006|17:56] C:\Program Files\Easy Internet signup [11/02/2008|20:42] C:\Program Files\E-Color [17/01/2010|16:59] C:\Program Files\eMule [21/05/2008|19:55] C:\Program Files\eRightSoft [26/08/2007|01:45] C:\Program Files\eXact [18/01/2010|18:32] C:\Program Files\Fichiers communs [10/01/2010|01:27] C:\Program Files\File Scanner Library (Spybot - Search & Destroy) [06/12/2008|16:25] C:\Program Files\Freeze.com [26/11/2006|15:36] C:\Program Files\FruityPro [06/12/2008|16:52] C:\Program Files\GlobFX Technologies [23/12/2009|18:14] C:\Program Files\Google [27/01/2007|20:16] C:\Program Files\Guitar Pro 5 [26/09/2009|14:16] C:\Program Files\Hewlett-Packard [26/09/2009|14:14] C:\Program Files\Hp [17/01/2010|17:01] C:\Program Files\InstallShield Installation Information [09/12/2009|22:40] C:\Program Files\Internet Explorer [02/01/2005|21:57] C:\Program Files\InterVideo [02/01/2005|22:00] C:\Program Files\iPod [02/01/2005|22:00] C:\Program Files\iTunes [27/12/2009|22:47] C:\Program Files\Java [21/05/2008|22:13] C:\Program Files\K-Lite Codec Pack [30/10/2008|23:52] C:\Program Files\Lavalys [14/12/2009|23:18] C:\Program Files\LG Electronics [16/06/2009|21:11] C:\Program Files\Logitech [17/05/2007|17:56] C:\Program Files\Loonies [15/04/2008|21:26] C:\Program Files\ma-config.com [13/02/2006|18:23] C:\Program Files\MarvinTec [12/03/2006|02:41] C:\Program Files\Maxis [26/09/2008|17:31] C:\Program Files\Messenger [18/01/2010|18:39] C:\Program Files\Messenger Plus! Live [20/08/2006|19:04] C:\Program Files\MessengerPlus! 3 [14/02/2006|22:48] C:\Program Files\Micro Application [24/11/2009|22:32] C:\Program Files\Microsoft [02/10/2007|22:04] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [25/11/2004|04:27] C:\Program Files\microsoft frontpage [16/11/2009|00:57] C:\Program Files\Microsoft Office [27/10/2008|22:35] C:\Program Files\Microsoft Research [25/11/2009|12:34] C:\Program Files\Microsoft Silverlight [02/10/2007|16:50] C:\Program Files\Microsoft SQL Server Compact Edition [02/01/2005|22:00] C:\Program Files\Microsoft Works [10/01/2010|01:27] C:\Program Files\Misc. Support Library (Spybot - Search & Destroy) [26/09/2008|17:21] C:\Program Files\Movie Maker [11/04/2006|23:39] C:\Program Files\MPGC-1.3 [27/10/2008|22:21] C:\Program Files\MSBuild [16/11/2009|00:57] C:\Program Files\MSECache [29/11/2006|19:15] C:\Program Files\MSN [29/11/2006|19:30] C:\Program Files\MSN Apps [25/11/2004|04:27] C:\Program Files\MSN Gaming Zone [20/11/2006|03:01] C:\Program Files\MSXML 4.0 [26/09/2008|17:19] C:\Program Files\NetMeeting [20/06/2006|05:48] C:\Program Files\Norton Internet Security [31/07/2007|17:45] C:\Program Files\OD Fellowship [25/11/2004|04:27] C:\Program Files\Online Services [31/07/2007|18:33] C:\Program Files\OpenOffice.org 2.2 [16/02/2007|20:17] C:\Program Files\Orange HSS [04/08/2009|17:16] C:\Program Files\OrangeHSS [13/08/2009|22:28] C:\Program Files\Outlook Express [02/01/2005|22:12] C:\Program Files\PC-Doctor 5 for Windows [21/12/2007|17:30] C:\Program Files\Photo N-Gine [01/12/2008|12:59] C:\Program Files\PhotoFiltre [03/09/2009|17:36] C:\Program Files\QuickTime [27/10/2008|22:21] C:\Program Files\Reference Assemblies [15/04/2006|15:16] C:\Program Files\SAGEM [15/04/2006|15:17] C:\Program Files\SAGEM WiFi manager [11/05/2007|15:33] C:\Program Files\Screen Savers [10/01/2010|01:27] C:\Program Files\SDHelper (Spybot - Search & Destroy) [04/08/2009|17:00] C:\Program Files\Securitoo [02/01/2005|22:10] C:\Program Files\Services en ligne [05/07/2009|12:47] C:\Program Files\Skype [02/01/2005|21:56] C:\Program Files\Sonic [10/01/2010|13:49] C:\Program Files\Spybot - Search & Destroy [10/05/2009|11:39] C:\Program Files\Stellarium [28/03/2009|15:20] C:\Program Files\Sweet Home 3D [23/04/2006|13:21] C:\Program Files\Symantec [23/04/2006|13:21] C:\Program Files\SymNetDrv [10/01/2010|01:27] C:\Program Files\TeaTimer (Spybot - Search & Destroy) [23/10/2009|15:44] C:\Program Files\TubeMaster++ [16/01/2009|19:37] C:\Program Files\TVUPlayer [24/11/2004|02:37] C:\Program Files\Uninstall Information [12/02/2007|17:56] C:\Program Files\uTorrent [21/08/2006|14:37] C:\Program Files\Valve [17/05/2007|18:06] C:\Program Files\VCW VicMan's Photo Editor [13/02/2007|18:18] C:\Program Files\VideoLAN [21/05/2008|22:59] C:\Program Files\VirginMega [16/11/2009|00:59] C:\Program Files\VirtualCamera [16/02/2007|20:16] C:\Program Files\Wanadoo [15/04/2006|15:22] C:\Program Files\Wanadoo Messager [02/10/2007|16:49] C:\Program Files\Windows Desktop Search [24/11/2009|22:35] C:\Program Files\Windows Live [24/11/2009|22:32] C:\Program Files\Windows Live SkyDrive [14/12/2006|22:35] C:\Program Files\Windows Media Connect 2 [26/09/2008|17:19] C:\Program Files\Windows Media Player [26/09/2008|17:19] C:\Program Files\Windows NT [24/11/2004|02:37] C:\Program Files\WindowsUpdate [19/09/2009|14:48] C:\Program Files\WinPcap [19/06/2006|16:40] C:\Program Files\WinRAR [17/05/2009|22:32] C:\Program Files\WinStart Manager [25/11/2004|04:28] C:\Program Files\xerox --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [02/01/2009|13:26] C:\Program Files\Fichiers communs\Adobe [29/04/2006|22:53] C:\Program Files\Fichiers communs\FotoWire [16/02/2007|20:15] C:\Program Files\Fichiers communs\France Telecom [26/09/2009|14:16] C:\Program Files\Fichiers communs\Hewlett-Packard [26/09/2009|14:16] C:\Program Files\Fichiers communs\HP [29/04/2006|22:50] C:\Program Files\Fichiers communs\InstallShield [02/01/2005|21:43] C:\Program Files\Fichiers communs\Java [16/06/2009|21:12] C:\Program Files\Fichiers communs\LogiShrd [29/04/2006|22:52] C:\Program Files\Fichiers communs\Logitech [16/11/2009|00:57] C:\Program Files\Fichiers communs\Microsoft Shared [25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap [25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC [01/02/2005|08:43] C:\Program Files\Fichiers communs\Services [05/07/2009|12:47] C:\Program Files\Fichiers communs\Skype [02/01/2005|21:56] C:\Program Files\Fichiers communs\Sonic Shared [25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines [02/01/2005|21:56] C:\Program Files\Fichiers communs\SureThing Shared [17/01/2010|23:03] C:\Program Files\Fichiers communs\Symantec Shared [26/09/2008|17:31] C:\Program Files\Fichiers communs\System [02/01/2005|21:56] C:\Program Files\Fichiers communs\TiVo Shared [02/04/2009|19:12] C:\Program Files\Fichiers communs\Windows Live [03/04/2009|17:02] C:\Program Files\Fichiers communs\WindowsLiveInstaller [14/02/2006|22:48] C:\Program Files\Fichiers communs\Wise Installation Wizard --------------------\\ Process ( 73 Processes ) IEXPLORE.EXE ~ [PID:4088] IEXPLORE.EXE ~ [PID:2496] --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\ALLUSE~1\APPLIC~1\second regs grim software C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\download else.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1 C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\bluearmyfile.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\bluelogsend.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\fleogxvb.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\ifiwdkag.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\Intra File Wave That.exe C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\mess book.exe C:\Program Files\admina~1 C:\Program Files\Adverts C:\Program Files\Adverts\uninst.exe C:\WINDOWS\Tasks\A9350150906AB320.job --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Does hope"="C:\\DOCUME~1\\COMPAQ~1\\APPLIC~1\\ADMINA~1\\mess book.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\download else.exe" --------------------\\ Verification du fichier Hosts Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 12782 [ 70 ## added by CiD ] --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-01-18 22:52:40 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 740 --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:53][D:9]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp [F:28][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies [F:121][D:5]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 18/01/2010|22:54 - Option : [1] --------------------\\ Fin du rapport a 22:54:25 Voici le deuxieme rapport: --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3200+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Compaq_Propriétaire ( Administrator ) BOOT : Normal boot Antivirus : Norton Internet Security 2005 (Activated) Firewall : Norton Internet Security 2005 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:134 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (USB) G:\ (USB) H:\ (USB) I:\ (USB) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [2] ( 18/01/2010|22:59 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\download else.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\bluearmyfile.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\bluelogsend.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\fleogxvb.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\ifiwdkag.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\Intra File Wave That.exe Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1\mess book.exe Supprime! - C:\Program Files\Adverts\uninst.exe Supprime! - C:\WINDOWS\Tasks\A9350150906AB320.job Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\second regs grim software Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\admina~1 Supprime! - C:\Program Files\admina~1 Supprime! - C:\Program Files\Adverts - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [02/01/2009|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [03/09/2009|17:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [03/09/2009|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [21/05/2008|22:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [17/01/2009|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [29/07/2009|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater [26/09/2009|14:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard [15/11/2009|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP [15/11/2009|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant [02/01/2005|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [16/06/2009|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd [16/06/2009|21:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [21/08/2006|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [02/04/2009|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [12/02/2008|19:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [08/08/2006|00:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [02/01/2005|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [05/07/2009|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [17/01/2010|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [11/07/2008|19:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\surfspam16frag [02/01/2005|22:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [16/01/2009|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks [26/09/2009|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WEBREG [03/06/2006|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [03/04/2009|16:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [18/10/2008|20:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe [16/02/2006|18:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM [12/09/2009|15:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer [02/09/2009|18:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DMV Technologies [16/12/2009|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\dvdcss [29/04/2006|22:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\FotoWire [04/12/2008|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google [31/12/2009|13:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\gtk-2.0 [10/02/2006|13:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help [26/09/2009|14:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP [10/02/2006|12:49] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ [13/12/2009|21:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HpUpdate [25/11/2004|04:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities [04/08/2009|17:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield [10/02/2006|15:00] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo [17/02/2006|01:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech [14/12/2009|23:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\LG Electronics [15/04/2008|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ma-config.com [18/08/2006|15:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia [02/09/2009|17:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MaxTV Technologies [03/08/2006|12:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Media Player Classic [21/11/2009|16:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft [02/09/2009|17:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla [29/11/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller [31/07/2007|17:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ODF [18/01/2010|18:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org2 [02/01/2005|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SampleView [19/03/2007|07:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Screenshot Sender [09/01/2010|22:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype [09/01/2010|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\skypePM [08/05/2009|14:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SmartDate5 [17/02/2006|01:57] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic [10/05/2009|11:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Stellarium [18/04/2006|14:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun [14/05/2006|14:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec [10/02/2006|13:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template [02/09/2009|18:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TVU networks [21/11/2009|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\uTorrent [14/01/2010|19:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\vlc [02/10/2007|19:56] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search [02/01/2005|22:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer [25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [07/12/2009|18:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia [29/11/2007|12:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [02/01/2005|22:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView [02/01/2005|22:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [02/10/2007|16:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [17/01/2010|17:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec [02/10/2007|16:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [09/12/2009 12:44][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [18/01/2010 22:06][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [18/01/2010 19:06][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [18/01/2010 18:34][--a------] C:\WINDOWS\tasks\Google Software Updater.job [18/01/2010 20:21][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{03AFEB78-EB69-416B-9FD5-C67FAB2636D3}.job [08/01/2010 20:05][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Compaq_Propri‚taire.job [14/06/2008 16:49][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job [18/01/2010 18:31][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 19:00][-rah-c---] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [10/05/2007|21:50] C:\Program Files\Absolutist.com [02/01/2009|13:25] C:\Program Files\Adobe [14/04/2009|23:27] C:\Program Files\AlienGUIse [03/09/2009|17:35] C:\Program Files\Apple Software Update [13/02/2006|18:33] C:\Program Files\Ashampoo [02/01/2005|21:49] C:\Program Files\ATI Technologies [15/07/2007|21:21] C:\Program Files\Audacity [13/02/2006|18:45] C:\Program Files\Audio MP3 Sound Recorder [13/02/2006|18:10] C:\Program Files\AudioCrusher [21/05/2008|19:56] C:\Program Files\AviSynth 2.5 [18/01/2010|22:50] C:\Program Files\BOINC [16/12/2008|23:59] C:\Program Files\CamStudio [15/10/2009|21:13] C:\Program Files\Capturino V2 [27/09/2008|18:31] C:\Program Files\CCleaner [22/01/2009|18:25] C:\Program Files\CDex_150 [10/05/2009|11:35] C:\Program Files\Celestia [24/11/2004|02:37] C:\Program Files\ComPlus Applications [03/08/2006|12:07] C:\Program Files\DivX [02/09/2009|17:34] C:\Program Files\DMV [23/03/2006|17:56] C:\Program Files\Easy Internet signup [11/02/2008|20:42] C:\Program Files\E-Color [17/01/2010|16:59] C:\Program Files\eMule [21/05/2008|19:55] C:\Program Files\eRightSoft [26/08/2007|01:45] C:\Program Files\eXact [18/01/2010|18:32] C:\Program Files\Fichiers communs [10/01/2010|01:27] C:\Program Files\File Scanner Library (Spybot - Search & Destroy) [06/12/2008|16:25] C:\Program Files\Freeze.com [26/11/2006|15:36] C:\Program Files\FruityPro [06/12/2008|16:52] C:\Program Files\GlobFX Technologies [23/12/2009|18:14] C:\Program Files\Google [27/01/2007|20:16] C:\Program Files\Guitar Pro 5 [26/09/2009|14:16] C:\Program Files\Hewlett-Packard [26/09/2009|14:14] C:\Program Files\Hp [17/01/2010|17:01] C:\Program Files\InstallShield Installation Information [09/12/2009|22:40] C:\Program Files\Internet Explorer [02/01/2005|21:57] C:\Program Files\InterVideo [02/01/2005|22:00] C:\Program Files\iPod [02/01/2005|22:00] C:\Program Files\iTunes [27/12/2009|22:47] C:\Program Files\Java [21/05/2008|22:13] C:\Program Files\K-Lite Codec Pack [30/10/2008|23:52] C:\Program Files\Lavalys [14/12/2009|23:18] C:\Program Files\LG Electronics [16/06/2009|21:11] C:\Program Files\Logitech [17/05/2007|17:56] C:\Program Files\Loonies [15/04/2008|21:26] C:\Program Files\ma-config.com [13/02/2006|18:23] C:\Program Files\MarvinTec [12/03/2006|02:41] C:\Program Files\Maxis [26/09/2008|17:31] C:\Program Files\Messenger [18/01/2010|18:39] C:\Program Files\Messenger Plus! Live [20/08/2006|19:04] C:\Program Files\MessengerPlus! 3 [14/02/2006|22:48] C:\Program Files\Micro Application [24/11/2009|22:32] C:\Program Files\Microsoft [02/10/2007|22:04] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [25/11/2004|04:27] C:\Program Files\microsoft frontpage [16/11/2009|00:57] C:\Program Files\Microsoft Office [27/10/2008|22:35] C:\Program Files\Microsoft Research [25/11/2009|12:34] C:\Program Files\Microsoft Silverlight [02/10/2007|16:50] C:\Program Files\Microsoft SQL Server Compact Edition [02/01/2005|22:00] C:\Program Files\Microsoft Works [10/01/2010|01:27] C:\Program Files\Misc. Support Library (Spybot - Search & Destroy) [26/09/2008|17:21] C:\Program Files\Movie Maker [11/04/2006|23:39] C:\Program Files\MPGC-1.3 [27/10/2008|22:21] C:\Program Files\MSBuild [16/11/2009|00:57] C:\Program Files\MSECache [29/11/2006|19:15] C:\Program Files\MSN [29/11/2006|19:30] C:\Program Files\MSN Apps [25/11/2004|04:27] C:\Program Files\MSN Gaming Zone [20/11/2006|03:01] C:\Program Files\MSXML 4.0 [26/09/2008|17:19] C:\Program Files\NetMeeting [20/06/2006|05:48] C:\Program Files\Norton Internet Security [31/07/2007|17:45] C:\Program Files\OD Fellowship [25/11/2004|04:27] C:\Program Files\Online Services [31/07/2007|18:33] C:\Program Files\OpenOffice.org 2.2 [16/02/2007|20:17] C:\Program Files\Orange HSS [04/08/2009|17:16] C:\Program Files\OrangeHSS [13/08/2009|22:28] C:\Program Files\Outlook Express [02/01/2005|22:12] C:\Program Files\PC-Doctor 5 for Windows [21/12/2007|17:30] C:\Program Files\Photo N-Gine [01/12/2008|12:59] C:\Program Files\PhotoFiltre [03/09/2009|17:36] C:\Program Files\QuickTime [27/10/2008|22:21] C:\Program Files\Reference Assemblies [15/04/2006|15:16] C:\Program Files\SAGEM [15/04/2006|15:17] C:\Program Files\SAGEM WiFi manager [11/05/2007|15:33] C:\Program Files\Screen Savers [10/01/2010|01:27] C:\Program Files\SDHelper (Spybot - Search & Destroy) [04/08/2009|17:00] C:\Program Files\Securitoo [02/01/2005|22:10] C:\Program Files\Services en ligne [05/07/2009|12:47] C:\Program Files\Skype [02/01/2005|21:56] C:\Program Files\Sonic [10/01/2010|13:49] C:\Program Files\Spybot - Search & Destroy [10/05/2009|11:39] C:\Program Files\Stellarium [28/03/2009|15:20] C:\Program Files\Sweet Home 3D [23/04/2006|13:21] C:\Program Files\Symantec [23/04/2006|13:21] C:\Program Files\SymNetDrv [10/01/2010|01:27] C:\Program Files\TeaTimer (Spybot - Search & Destroy) [23/10/2009|15:44] C:\Program Files\TubeMaster++ [16/01/2009|19:37] C:\Program Files\TVUPlayer [24/11/2004|02:37] C:\Program Files\Uninstall Information [12/02/2007|17:56] C:\Program Files\uTorrent [21/08/2006|14:37] C:\Program Files\Valve [17/05/2007|18:06] C:\Program Files\VCW VicMan's Photo Editor [13/02/2007|18:18] C:\Program Files\VideoLAN [21/05/2008|22:59] C:\Program Files\VirginMega [16/11/2009|00:59] C:\Program Files\VirtualCamera [16/02/2007|20:16] C:\Program Files\Wanadoo [15/04/2006|15:22] C:\Program Files\Wanadoo Messager [02/10/2007|16:49] C:\Program Files\Windows Desktop Search [24/11/2009|22:35] C:\Program Files\Windows Live [24/11/2009|22:32] C:\Program Files\Windows Live SkyDrive [14/12/2006|22:35] C:\Program Files\Windows Media Connect 2 [26/09/2008|17:19] C:\Program Files\Windows Media Player [26/09/2008|17:19] C:\Program Files\Windows NT [24/11/2004|02:37] C:\Program Files\WindowsUpdate [19/09/2009|14:48] C:\Program Files\WinPcap [19/06/2006|16:40] C:\Program Files\WinRAR [17/05/2009|22:32] C:\Program Files\WinStart Manager [25/11/2004|04:28] C:\Program Files\xerox --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [02/01/2009|13:26] C:\Program Files\Fichiers communs\Adobe [29/04/2006|22:53] C:\Program Files\Fichiers communs\FotoWire [16/02/2007|20:15] C:\Program Files\Fichiers communs\France Telecom [26/09/2009|14:16] C:\Program Files\Fichiers communs\Hewlett-Packard [26/09/2009|14:16] C:\Program Files\Fichiers communs\HP [29/04/2006|22:50] C:\Program Files\Fichiers communs\InstallShield [02/01/2005|21:43] C:\Program Files\Fichiers communs\Java [16/06/2009|21:12] C:\Program Files\Fichiers communs\LogiShrd [29/04/2006|22:52] C:\Program Files\Fichiers communs\Logitech [16/11/2009|00:57] C:\Program Files\Fichiers communs\Microsoft Shared [25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap [25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC [01/02/2005|08:43] C:\Program Files\Fichiers communs\Services [05/07/2009|12:47] C:\Program Files\Fichiers communs\Skype [02/01/2005|21:56] C:\Program Files\Fichiers communs\Sonic Shared [25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines [02/01/2005|21:56] C:\Program Files\Fichiers communs\SureThing Shared [17/01/2010|23:03] C:\Program Files\Fichiers communs\Symantec Shared [26/09/2008|17:31] C:\Program Files\Fichiers communs\System [02/01/2005|21:56] C:\Program Files\Fichiers communs\TiVo Shared [02/04/2009|19:12] C:\Program Files\Fichiers communs\Windows Live [03/04/2009|17:02] C:\Program Files\Fichiers communs\WindowsLiveInstaller [14/02/2006|22:48] C:\Program Files\Fichiers communs\Wise Installation Wizard --------------------\\ Process ( 73 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-01-18 23:00:32 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 740 --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:53][D:9]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp [F:28][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies [F:121][D:5]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 18/01/2010|22:54 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 18/01/2010|23:01 - Option : [2] --------------------\\ Fin du rapport a 23:01:55 Enfin le rapport log Hijackthis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:03:38, on 18/01/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe c:\Program Files\Norton Internet Security\ISSVC.exe c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchIndexer.exe c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\wscntfy.exe C:\windows\system\hpsysdrv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\OrangeHSS\Systray\SystrayApp.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\1\AlertModule.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\E-Color\Common\IconMgr.exe C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Program Files\BOINC\boincmgr.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\E-Color\E-Color Indicator\TICIcon.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\BOINC\boinc.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\WINDOWS\system32\spoolsv.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\HJT\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.forum-ovni-ufologie.com/search....rch_id=newposts R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: VirtualCamera IEMenu Class - {0246A1A7-820A-469A-85A7-7B7F01EB808C} - C:\Program Files\VirtualCamera\VirtualCameraMenu.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: (no name) - {224530A0-C9CB-4AEE-9C0F-54AC1B533211} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: E-Color.lnk = C:\Program Files\E-Color\Common\IconMgr.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: 51.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe O23 - Service: Service Google Update (gupdate1ca1085a2aeaaf2) (gupdate1ca1085a2aeaaf2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - c:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe -- End of file - 15465 bytes
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Bonsoir Apollo,bonsoir giorgio, J'ai suivit tes conseil Apollo,voici donc le copier/coller du rapport: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:19:59, on 18/01/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe c:\Program Files\Norton Internet Security\ISSVC.exe c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchIndexer.exe c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\wscntfy.exe C:\windows\system\hpsysdrv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\ALCXMNTR.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\OrangeHSS\Systray\SystrayApp.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\1\AlertModule.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\E-Color\Common\IconMgr.exe C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Program Files\BOINC\boincmgr.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\E-Color\E-Color Indicator\TICIcon.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.exe C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\BOINC\boinc.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\WINDOWS\system32\spoolsv.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\HJT\HijackThis.exe C:\WINDOWS\system32\SearchProtocolHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.forum-ovni-ufologie.com/search....rch_id=newposts R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: VirtualCamera IEMenu Class - {0246A1A7-820A-469A-85A7-7B7F01EB808C} - C:\Program Files\VirtualCamera\VirtualCameraMenu.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll O3 - Toolbar: (no name) - {224530A0-C9CB-4AEE-9C0F-54AC1B533211} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [systrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [Flag Owns Live Grim] C:\Documents and Settings\All Users\Application Data\Software rule flag owns\download else.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [Does hope] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ADMINA~1\mess book.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe O4 - Global Startup: E-Color.lnk = C:\Program Files\E-Color\Common\IconMgr.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: 51.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe O23 - Service: Service Google Update (gupdate1ca1085a2aeaaf2) (gupdate1ca1085a2aeaaf2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - c:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe -- End of file - 15877 bytes
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Bonjour, Pour info toujours: J'ai par le biais du forum decouvert un probleme avec un processus svchost.exe qui ralentissait grandement mon pc . Ceci dit,ca n'a pas resolu mon probleme initial. J'utilise google chrome comme naviguateur. Par le biais de celui ci je navigue sur internet. Mais je n'arrivais pas a poster des images sur photobucket par exemple. Par hasard,j'ai essayer de naviguer sur internet avec IE.Et la surprise! Le naviguateur me dit que je ne suis pas connecter,que je suis "hors connection",il m'affiche ensuite une fenetre pour me connecter ou rester hors connection,je valide "connection",et je peux ensuite naviguer sur le net. Je ferme IE,retourne sous google chrome,et la ,je peux enfin charger des images sur photobucket. Je suis donc dépanner. Mais j'aimerais bien savoir le pourquoi de tout cela. Quelqu'un a t il une explication?
- le 18 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Bonsoir, Pour info,sur le tchat où je me rend regulierement ,le message "IOError" s'affiche lorsque j'essaye de charger une image. J'ai bien la derniere version d'adobe flash player. Personne ne peux m'aider?
- le 17 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a répondu à un(e) sujet de Pierre B dans Analyses et éradication malwares

Bonjour, Je ne m'y connais pas beaucoup en informatique, j'ai cru lire qu'il existait des petit logiciel qui créer des rapport que je pourrais ensuite poster ici. Pouvez vous me décrire la marche a suivre,a moins que pour mon problème il n'y en ait pas besoin? Please Help Edit:je précise que j'ai déjà utiliser CCleaner et spybot,je croyais avoir résolu mon problème il y a une semaine,car il avait disparu,mais deux jour après ça a recommencé.
- le 16 janvier 2010
- 18 réponses
Probleme (tele)chargement d'image PC->internet

Pierre B a posté un sujet dans Analyses et éradication malwares

Bonjour, Voila mon probleme: Depuis quelques jours maintenant je n'arrive plus a envoyer des images depuis mon pc,comme par exemple chez l'hebergeur d'image Photobucket. Je ne peux pas non plus le faire sur un tchat ou je me rend regulierement,l'image ne se télécharge pas. Cela est très embêtant car j'écris pas mal d'article "journalistique",et pour ne pas encombrer les sites d'ou proviennent certaine image je les copie et les place sur photobucket. Je suis dans l'incapacité de résoudre mon problème... J'ai essayé de regarder si mon antivirus bloquait les envoi sortant de mon pc,mais j'avoue que je n'ai rien trouver. Quelqu'un peut il m'aider? Je vous remercie d'avance. Cordialement, Pierre
- le 15 janvier 2010
- 18 réponses

Connexion

Pierre B

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par Pierre B

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Probleme (tele)chargement d'image PC->internet

Zebulon

Outils en ligne

Naviguer