Sujet Précédent Sujet Suivant

J'ai un virus

Fermé
Utilisateur anonyme - 27 sept. 2009 à 10:16
 Utilisateur anonyme - 30 sept. 2009 à 13:01
Bonjour,
avec la lenteur d'internet j'ai aucun doute.
Le rapport hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:14:54, on 27/09/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\PROGRA~1\Bandoo\BndCore.exe
C:\Users\admin\Documents\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vb32&d=0409&m=aspire_5735
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vb32&d=0409&m=aspire_5735
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll (file missing)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll (file missing)
O3 - Toolbar: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\Windows\WIDEST~1\FREEQU~1\QUICKA~1.DLL c:\progra~1\bandoo\bndhook.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bandoo Coordinator - Discordia Limited - C:\PROGRA~1\Bandoo\Bandoo.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9c82bf41789f3) (gupdate1c9c82bf41789f3) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)
A voir également:

38 réponses

  • 1
  • 2
Réponse 1 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 10:22
Bonjour,

télécharge GenProc http://www.genproc.com/GenProc.exe

double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
0
Utilisateur anonyme
27 sept. 2009 à 10:30
Dans CCleaner, clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures" ; par la suite, laisse-le avec ses réglages par défaut. C'est tout.

Etape 1/ Télécharge :

Navilog1 (IL-MAFIOSO) sur ton Bureau.

Toolbar-S&D (Team IDN) sur ton Bureau.


important Redémarre en mode sans échec comme indiqué ICI ; Choisis ta session courante *** admin *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[1]" sur ton bureau).



Etape 2/

Fais un clic droit sur le raccourci Navilog1 sur le Bureau : "Executer en tant qu'Administrateur" et et choisis l'option 1 ; valide et patiente jusqu'au message "Scan terminé le......".

Etape 3/

Lance Toolbar-S&D situé sur le Bureau. Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.

Etape 4/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.


Etape 5/

Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport cleannavi.txt situé dans C:\ ;
- Le contenu du rapport TB.txt situé dans C:\ ;
- Un nouveau rapport HijackThis ;
- Un nouveau rapport GenProc ;

Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
0
Réponse 2 / 38
113pictural Messages postés 464 Date d'inscription jeudi 24 septembre 2009 Statut Membre Dernière intervention 5 octobre 2009 53
27 sept. 2009 à 10:22
Bonjour,
Avast n'a pas l'air bien efficace!

Essayez ceci avec (InternetExplorer):
http://www.bitdefender.fr/scan_fr/scan8/ie.html

puis ceci:
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

Les opérations successives de nettoyage consacreront 2 heures de votre temps, et très vraisemblablement soulageront votre pc de quelques champignons vénéneux!

A+ .
0
Réponse 3 / 38
Utilisateur anonyme
27 sept. 2009 à 10:33
un scan online eset est en cour.
0
Réponse 4 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 10:40
t'embête pas, fais ce que suggère GenProc
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 38
Utilisateur anonyme
27 sept. 2009 à 10:42
ok

j'ai aussi "List Uninstall" qui a été fait avec le logiciel GenProc :

je ne pense pas que ça vous est utile mais je pose au cas où

DisplayName=hex(2):45,00,53,00,45,00,54,00,20,00,4f,00,6e,00,6c,00,69,00,6e,\
AbsoluCasino
Acer Arcade Deluxe
Acer Crystal Eye Webcam 2.0.8
Acer eDataSecurity Management
Acer Empowering Technology
Acer ePower Management
Acer eRecovery Management
Acer eSettings Management
Acer GameZone Console 2.0.1.1
Acer GridVista
Acer Mobility Center Plug-In
Acer ScreenSaver
Activation Assistant for the 2007 Microsoft Office suites
Ad-Aware
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1.3 - Français
Agere Systems HDA Modem
Alice Greenfingers
Apple Mobile Device Support
Apple Software Update
Assistant de connexion Windows Live
Audacity 1.2.6
avast! Antivirus
Azada
Bandoo
Billiard Art
Bonjour
Cake Mania
CamStudio 2.0 Fr
CCleaner (remove only)
Chicken Invaders 3
Choice Guard
Crawler Toolbar with Web Security Guard
Dealio Toolbar v4.0
Egypt Ball
Encyclopédie Microsoft Encarta 2005
eSobi v2
EvJO Photo-Image Resizer v2.5
Favorit
FormatFactory 2.10
Funny Bricks
Galerie de photos Windows Live
Google Chrome
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
Google Earth
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Installation Windows Live
Intel(R) Graphics Media Accelerator Driver
InterActual Player
iTunes
IVCsoft\\Internet Video Converter 1.41 FR
Java(TM) 6 Update 15
Java(TM) 6 Update 7
Junk Mail filter update
K-Lite Mega Codec Pack 4.9.0
Kick N Rush
Launch Manager
LauncherMA
LightScribe 1.4.142.1
LimeWire 5.1.3
LogMeIn
Ma-Config.com
Mad Medley Battle
MahJongg Solitaire 3D
Marvell Miniport Driver
Messenger Plus! Live
Microsoft .NET Framework 3.5 Language Pack SP1 - fra
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Works
MobileMe Control Panel
Module linguistique Microsoft .NET Framework 3.5 SP1- fra
Mozilla Firefox (3.5.3)
MSVCRT
MSXML 4.0 SP2 (KB954430)
Mystery Case Files - Huntsville
Mystery Solitaire - Secret Island
NTI Backup Now 5
NTI Backup Now Standard
NTI Media Maker 8
OpenOffice.org 3.0
Orion
Outil de mise à jour Google
Outil de téléchargement Windows Live
PaperPort
PC SECURITY TEST 2008
PhotoFiltre
PhotoNow!
PlayFLV
PowerDirector
QuickTime
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Safari
Search Settings 1.2.1
Shockwave
Skyrock Toolbar
Softonic_France_FF Toolbar
Solitaire V 1.0
Spelling Dictionaries Support For Adobe Reader 9
Streaming Video Recorder V2.0.1
Sudoku 3D Pro
SweetIM for Messenger 2.7
SweetIM Toolbar for Internet Explorer 3.4
Synaptics Pointing Device Driver
Trial Bike Ultra
Turbo Pizza
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VirginMega.Fr Premium
Windows Live Call
Windows Live Communications Platform
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker Bêta
Windows Live Sync
Windows Live Writer
Windows Media Player Firefox Plugin
Wondershare FLV Downloader Pro(Build 1.4.1.16)
Xfire (remove only)
Your monster voice 1

C:\Program Files\Acer
C:\Program Files\Acer Arcade Deluxe
C:\Program Files\Acer GameZone
C:\Program Files\Acer Inc
C:\Program Files\Acer Incorporated
C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
C:\Program Files\Adobe
C:\Program Files\Advanced System Optimizer
C:\Program Files\Alwil Software
C:\Program Files\Apowersoft
C:\Program Files\Apple Software Update
C:\Program Files\ASCII Art Generator
C:\Program Files\Astonsoft
C:\Program Files\Audacity
C:\Program Files\AviSynth 2.5
C:\Program Files\AxBx
C:\Program Files\Bandoo
C:\Program Files\Big Kahuna Reef
C:\Program Files\Bonjour
C:\Program Files\BoontyGames
C:\Program Files\Brother
C:\Program Files\CamStudio
C:\Program Files\CCleaner
C:\Program Files\Common Files
C:\Program Files\Conduit
C:\Program Files\Convesoft
C:\Program Files\Crawler
C:\Program Files\Cyberlink
C:\Program Files\data.llp
C:\Program Files\Deenero
C:\Program Files\DoremiSoft
C:\Program Files\DoubleSafety
C:\Program Files\eRightSoft
C:\Program Files\ESET
C:\Program Files\eSobi
C:\Program Files\Eusing Free Registry Cleaner
C:\Program Files\EvJOSoft
C:\Program Files\ffdshow
C:\Program Files\FormatFactory
C:\Program Files\Free FLV Converter
C:\Program Files\Games-Attack
C:\Program Files\GfedEurofr18F
C:\Program Files\Gold Wave Editor Pro
C:\Program Files\Google
C:\Program Files\HTV
C:\Program Files\Intel
C:\Program Files\InterActual
C:\Program Files\Internet Download Manager
C:\Program Files\Internet Explorer
C:\Program Files\iPod
C:\Program Files\iTunes
C:\Program Files\IVCsoft
C:\Program Files\Java
C:\Program Files\JRE
C:\Program Files\K-Lite Codec Pack
C:\Program Files\Launch Manager
C:\Program Files\Lavasoft
C:\Program Files\LimeWire
C:\Program Files\LogMeIn
C:\Program Files\ma-config.com
C:\Program Files\MahJongg Solitaire 3D
C:\Program Files\Marvell
C:\Program Files\Messenger Plus Live
C:\Program Files\Micro Application
C:\Program Files\Microsoft
C:\Program Files\Microsoft Encarta
C:\Program Files\Microsoft Games
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Silverlight
C:\Program Files\Microsoft SQL Server Compact Edition
C:\Program Files\Microsoft Works
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSBuild
C:\Program Files\MSXML 4.0
C:\Program Files\MyPlayCity.com
C:\Program Files\NewTech Infosystems
C:\Program Files\OpenOffice.org 3
C:\Program Files\Panda Security
C:\Program Files\Patch MsnCreative
C:\Program Files\PhotoFiltre
C:\Program Files\PlayFLV
C:\Program Files\QUAD Utilities
C:\Program Files\QuickMediaConverter
C:\Program Files\QuickTime
C:\Program Files\Real
C:\Program Files\Realtek
C:\Program Files\Reference Assemblies
C:\Program Files\RegistryFix7
C:\Program Files\S.N.Safe&Software
C:\Program Files\Safari
C:\Program Files\ScanSoft
C:\Program Files\Search Settings
C:\Program Files\skycorp
C:\Program Files\skyrocktbar
C:\Program Files\Softonic_France_FF
C:\Program Files\Software Informer
C:\Program Files\Solitaire
C:\Program Files\SourceTec
C:\Program Files\Sudoku 3D Pro
C:\Program Files\SweetIM
C:\Program Files\Synaptics
C:\Program Files\Systweak
C:\Program Files\Total Video Converter
C:\Program Files\Uniblue
C:\Program Files\VideoLAN
C:\Program Files\VirginMega
C:\Program Files\Windows Calendar
C:\Program Files\Windows Collaboration
C:\Program Files\Windows Defender
C:\Program Files\Windows Live
C:\Program Files\Windows Live SkyDrive
C:\Program Files\Windows Mail
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\Windows Photo Gallery
C:\Program Files\Windows Sidebar
C:\Program Files\Wondershare
C:\Program Files\Xfire
C:\Program Files\Your monster voice 1
C:\Program Files\ZHPFix

C:\Program Files\Common Files\Adobe
C:\Program Files\Common Files\Apple
C:\Program Files\Common Files\BOONTY Shared
C:\Program Files\Common Files\InstallShield
C:\Program Files\Common Files\Java
C:\Program Files\Common Files\LightScribe
C:\Program Files\Common Files\microsoft shared
C:\Program Files\Common Files\muvee Technologies
C:\Program Files\Common Files\Real
C:\Program Files\Common Files\ScanSoft Shared
C:\Program Files\Common Files\Services
C:\Program Files\Common Files\Softwin
C:\Program Files\Common Files\SpeechEngines
C:\Program Files\Common Files\System
C:\Program Files\Common Files\Windows Live
C:\Program Files\Common Files\Wise Installation Wizard
C:\Program Files\Common Files\xing shared

C:\Users\admin\AppData\Roaming\Acer GameZone Console
C:\Users\admin\AppData\Roaming\Adobe
C:\Users\admin\AppData\Roaming\Any Video Converter
C:\Users\admin\AppData\Roaming\Apowersoft
C:\Users\admin\AppData\Roaming\Apple Computer
C:\Users\admin\AppData\Roaming\Bandoo
C:\Users\admin\AppData\Roaming\Broad Intelligence
C:\Users\admin\AppData\Roaming\Brother
C:\Users\admin\AppData\Roaming\DeepBurner
C:\Users\admin\AppData\Roaming\Desktopicon
C:\Users\admin\AppData\Roaming\DMCache
C:\Users\admin\AppData\Roaming\Download Manager
C:\Users\admin\AppData\Roaming\DreamDale
C:\Users\admin\AppData\Roaming\dvdcss
C:\Users\admin\AppData\Roaming\Games-Attack
C:\Users\admin\AppData\Roaming\GetRightToGo
C:\Users\admin\AppData\Roaming\Gold Wave Editor Pro
C:\Users\admin\AppData\Roaming\Google
C:\Users\admin\AppData\Roaming\GrabPro
C:\Users\admin\AppData\Roaming\Identities
C:\Users\admin\AppData\Roaming\IDM
C:\Users\admin\AppData\Roaming\InstallShield
C:\Users\admin\AppData\Roaming\LimeWire
C:\Users\admin\AppData\Roaming\Macromedia
C:\Users\admin\AppData\Roaming\MagicBall4
C:\Users\admin\AppData\Roaming\Malwarebytes
C:\Users\admin\AppData\Roaming\Media Player Classic
C:\Users\admin\AppData\Roaming\Mozilla
C:\Users\admin\AppData\Roaming\MP-Manager
C:\Users\admin\AppData\Roaming\MPMAN
C:\Users\admin\AppData\Roaming\OpenOffice.org
C:\Users\admin\AppData\Roaming\Orbit
C:\Users\admin\AppData\Roaming\PeerNetworking
C:\Users\admin\AppData\Roaming\Real
C:\Users\admin\AppData\Roaming\ScanSoft
C:\Users\admin\AppData\Roaming\Systweak
C:\Users\admin\AppData\Roaming\Template
C:\Users\admin\AppData\Roaming\Uniblue
C:\Users\admin\AppData\Roaming\URSE Games
C:\Users\admin\AppData\Roaming\UserTile.png
C:\Users\admin\AppData\Roaming\vlc
C:\Users\admin\AppData\Roaming\WinAVI
C:\Users\admin\AppData\Roaming\Windows Live Writer
C:\Users\admin\AppData\Roaming\wklnhst.dat
C:\Users\admin\AppData\Roaming\Xfire
C:\Users\admin\AppData\Roaming\Xilisoft Corporation
C:\Users\admin\AppData\Roaming\Zylom

C:\ProgramData\Acer GameZone Console
C:\ProgramData\Adobe
C:\ProgramData\Apowersoft
C:\ProgramData\Apple
C:\ProgramData\Apple Computer
C:\ProgramData\Bandoo
C:\ProgramData\BOONTY
C:\ProgramData\Brother
C:\ProgramData\CyberLink
C:\ProgramData\Downloaded Installations
C:\ProgramData\eMule
C:\ProgramData\ESET
C:\ProgramData\eSobi
C:\ProgramData\FloodLightGames
C:\ProgramData\Games-Attack
C:\ProgramData\GoBit Games
C:\ProgramData\Google
C:\ProgramData\Google Updater
C:\ProgramData\Kaspersky Lab
C:\ProgramData\Kaspersky Lab Setup Files
C:\ProgramData\Lavasoft
C:\ProgramData\LogMeIn
C:\ProgramData\ma-config.com
C:\ProgramData\Malwarebytes
C:\ProgramData\McAfee
C:\ProgramData\Messenger Plus
C:\ProgramData\Micro Application
C:\ProgramData\Microsoft
C:\ProgramData\Microsoft Help
C:\ProgramData\NtiDvdCopy
C:\ProgramData\ScanSoft
C:\ProgramData\SiteAdvisor
C:\ProgramData\Spybot - Search & Destroy
C:\ProgramData\SweetIM
C:\ProgramData\Systweak
C:\ProgramData\TEMP
C:\ProgramData\tgioyvlx.pxu
C:\ProgramData\Video Converter Studio
C:\ProgramData\WindowsSearch
C:\ProgramData\WLInstaller
C:\ProgramData\Xfire
C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}

C:\Users\admin\AppData\Local\Adobe
C:\Users\admin\AppData\Local\Apple
C:\Users\admin\AppData\Local\Apple Computer
C:\Users\admin\AppData\Local\Apps
C:\Users\admin\AppData\Local\Broad Intelligence
C:\Users\admin\AppData\Local\d3d9caps.dat
C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\admin\AppData\Local\Deployment
C:\Users\admin\AppData\Local\Downloaded Installations
C:\Users\admin\AppData\Local\edsinstaller.txt-20090427.log
C:\Users\admin\AppData\Local\eMule
C:\Users\admin\AppData\Local\ESET
C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
C:\Users\admin\AppData\Local\Google
C:\Users\admin\AppData\Local\LogMeIn
C:\Users\admin\AppData\Local\Microsoft
C:\Users\admin\AppData\Local\Microsoft Games
C:\Users\admin\AppData\Local\Mozilla
C:\Users\admin\AppData\Local\ociui.bat
C:\Users\admin\AppData\Local\ociui.dat
C:\Users\admin\AppData\Local\PlayMovie
C:\Users\admin\AppData\Local\PowerCinema
C:\Users\admin\AppData\Local\Temp
C:\Users\admin\AppData\Local\VirtualStore
C:\Users\admin\AppData\Local\WinAVI
C:\Users\admin\AppData\Local\Windows Live Writer
C:\Users\admin\AppData\Local\Zylom Games

File : C:\Windows\Installer\11090b6.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\1109387.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\11096bb.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\11ce432.msi
Title : Installation Database
Author: Google Inc.

======================
File : C:\Windows\Installer\13d33.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\152d4ec.msi
Title : ADOBER~1.0|Adobe Reader 9
Author: Adobe Systems Incorporated

======================
File : C:\Windows\Installer\177256.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\17bf6.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\18a393.msi
Title : Installation Database
Author: NewTech Infosystems

======================
File : C:\Windows\Installer\18a39a.msi
Title : LightScribe
Author: Hewlett-Packard Company

======================
File : C:\Windows\Installer\18a39f.msi
Title : Installation Database
Author: Macrovision Corporation

======================
File : C:\Windows\Installer\18a3a4.msi
Title : Installation Database
Author: CyberLink Corp.

======================
File : C:\Windows\Installer\18a3a8.msi
Title : Installation Database
Author: CyberLink Corp.

======================
File : C:\Windows\Installer\18a3ac.msi
Title : Installation Database
Author: CyberLink Corp.

======================
File : C:\Windows\Installer\1a469e4.msi
Title : Installation Database
Author: SweetIM Technologies Ltd.

======================
File : C:\Windows\Installer\1a469e9.msi
Title : Installation Database
Author: SweetIM Technologies Ltd.

======================
File : C:\Windows\Installer\2055ee0.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2055ee5.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2087e94.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\29879a.msi
Title : Spelling Dictionaries for Adobe Reader 9
Author: Adobe Systems Incorporated

======================
File : C:\Windows\Installer\2acd51.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\2c4ccd.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4cd2.msi
Title : Installation Database
Author: Microsoft

======================
File : C:\Windows\Installer\2c4cd7.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4cdc.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4ce1.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4ce6.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4ceb.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4cf0.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4cfc.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d01.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d06.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d0b.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d10.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d16.msi
Title : Installation Database
Author: Microsoft Corp.

======================
File : C:\Windows\Installer\2c4d1b.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\2c4d26.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\3164b1.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\32a670.msi
Title : LauncherMA
Author: Micro Application

======================
File : C:\Windows\Installer\3ef4de.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\40261.msi
Title : Installation Database
Author: Google Inc.

======================
File : C:\Windows\Installer\40266.msi
Title : Java(TM) SE Runtime Environment 6.0
Author: Sun Microsystems, Inc.

======================
File : C:\Windows\Installer\4026a.msi
Title : Installation database
Author: OpenOffice.org

======================
File : C:\Windows\Installer\4026e.msi
Title : Installation Database
Author: LogMeIn, Inc.

======================
File : C:\Windows\Installer\434fe2.msi
Title : PaperPort 9,0
Author: ScanSoft, Inc.

======================
File : C:\Windows\Installer\55ab03.msi
Title : Ad-Aware 2008
Author: Lavasoft AB Sweden

======================
File : C:\Windows\Installer\7863cc.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\7863d6.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\7ad77.msi
Title : Orion
Author: Convesoft

======================
File : C:\Windows\Installer\7ad7d.msi
Title : Acer eDataSecurity Management
Author: Egis Inc.

======================
File : C:\Windows\Installer\7ad82.msi
Title : eSobi Setup
Author: esobi Inc.

======================
File : C:\Windows\Installer\7e7b30.msi
Title : Installation Database
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\806da.msi
Title : Java(TM) SE Runtime Environment 6.0
Author: Sun Microsystems, Inc.

======================
File : C:\Windows\Installer\84f5aa.msi
Title : Installation Database
Author: Apple Inc.

======================
File : C:\Windows\Installer\8565c.msi
Title : Installation Database
Author: Microsoft Corp

======================
File : C:\Windows\Installer\9a728.msi
Title : Microsoft Works
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\9a72e.msi
Title : Activation Assistant
Author: Microsoft Corporation

======================
File : C:\Windows\Installer\a2349d.msi
Title : Installation Database
Author: VirginMega.Fr

======================
File : C:\Windows\Installer\bff10.msi
Title : Installation Database
Author: Google

======================
File : C:\Windows\Installer\d09926.msi
Title : Installation Database
Author: Cybelsoft

======================
File : C:\Windows\Installer\ebfe82.msi
Title : Widgi Toolbar
Author: Spigot, Inc.

======================
File : C:\Windows\Installer\ebfe88.msi
Title : Search Settings
Author: Spigot, Inc.
0
Réponse 6 / 38
Utilisateur anonyme
27 sept. 2009 à 11:04
le scan navilog1 est en cours depuis 10 minutes

je sais que ça prend du temps
c'est juste pour que vous sachiez que j'ai pas abandonné le topic
0
Réponse 7 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 11:08
d'accord, c'est gentil de prévenir, et d'ailleurs c'est assez rare

par contre attention, il est précisé de lancer ces scans en mode sans échec. D'une part ça facilitera les suppressions, d'autre part ton ordi moulinera moins
0
Réponse 8 / 38
Utilisateur anonyme
27 sept. 2009 à 11:24
oui j'avais vraiment des saloperies :-(

Fix Navipromo version 4.0.2 commencé le 27/09/2009 11:14:42,91

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 27.08.2009 à 11h00 par IL-MAFIOSO

Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T3400 @ 2.16GHz )
BIOS : Ver 1.00PARTTBL
USER : admin ( Administrator )
BOOT : Fail-safe boot




C:\ (Local Disk) - NTFS - Total:223 Go (Free:148 Go)
E:\ (CD or DVD)


Recherche executée en mode sans échec

Nettoyage executé en mode sans échec


C:\Program Files\Games-Attack supprimé !
c:\progra~2\micros~1\windows\startm~1\programs\Games-Attack supprimé !
C:\ProgramData\Games-Attack supprimé !
C:\Users\admin\AppData\Roaming\Games-Attack supprimé !
C:\Users\admin\AppData\Local\ociui.dat supprimé !
C:\Users\admin\AppData\Local\ociui.bat supprimé !


Nettoyage contenu C:\Windows\Temp effectué !
Nettoyage contenu C:\Users\admin\AppData\Local\Temp effectué !


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok






*** Scan terminé 27/09/2009 11:17:25,97 ***



En ce qui concerne ToolbarS&D le logiciel ne fonctionne pas. Je peux cliquer dessus puis je choisi français puis je choisi rechercher mais après il ne se passe rien du tout.
0
Réponse 9 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 11:42
Dans ce cas essaye avec AD-Remover http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe
je crois qu'il génère un rapport, fais voir
0
Réponse 10 / 38
Utilisateur anonyme
27 sept. 2009 à 11:44
ok
0
Réponse 11 / 38
Utilisateur anonyme
27 sept. 2009 à 12:22
.
======= RAPPORT D'AD-REMOVER 1.1.4.5_W | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 27/09/2009 à 9:20 AM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 11:44:13, 27/09/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Basic Service Pack 2 v6.0.6002
Nom du PC: PC-DE-ADMIN | Utilisateur actuel: admin
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCU\Software\AppDataLow\Software\Dealio
HKCU\Software\CToolbar
HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\Classes\CTBR.R404Pro
HKLM\Software\Classes\CToolbar.TB4Client
HKLM\Software\Classes\CToolbar.TB4Script
HKLM\Software\Classes\CToolbar.TB4Server
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
HKLM\Software\microsoft\shared tools\msconfig\startupreg\SearchSettings
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0B1AAC97-8563-41D9-AE47-58E6A222F0E1}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{94C3BB3A-56A1-43DE-A242-8B41F46E97EF}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\CToolbar_UNINSTALL
HKLM\Software\SweetIM
HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-3190056787-1849804901-669965420-1000\Software\Sweetim
HKU\S-1-5-21-3190056787-1849804901-669965420-1000\Software\Appdatalow\Software\Dealio
HKLM\Software\Mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
HKCU\software\microsoft\internet explorer\searchscopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
HKCU\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1AC67655DD68F8240B2860F2D511EBD8
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\351716A953E21214898904032EAE2E81
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\5D19F074C042AD34BAB463D4175A062E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A189D17A469616C4688D23E192996267
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E337925F629CF4C4FB08F3D9674DD839
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\Program Files\Crawler
C:\Program Files\Mozilla Firefox\extensions\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
C:\Program Files\Search Settings
C:\Program Files\SweetIM
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Barre d'outils Crawler
C:\ProgramData\SweetIM
C:\Users\admin\AppData\LocalLow\Dealio
C:\Users\admin\AppData\LocalLow\Search Settings
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\hc3d5u55.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\hc3d5u55.default\searchplugins\askcom.xml
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\hc3d5u55.default\searchplugins\sweetim.xml
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\hc3d5u55.default\SweetIMToolbarData
C:\Users\admin\Desktop\AbsoluCasino.lnk
C:\Windows\Installer\1a469e4.msi
C:\Windows\Installer\1a469e9.msi
C:\Windows\Installer\ebfe82.msi
C:\Windows\Installer\ebfe88.msi
C:\Windows\Prefetch\CASINO.EXE-0E4E187F.pf
C:\Windows\Prefetch\CASINOSETUP.EXE-7A73F657.pf
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.3 *
.
Nom du profil: hc3d5u55.default (admin)
.
(Prefs.js) user_pref("browser.search.defaultenginename", "Fast Browser Search");
(Prefs.js) user_pref("browser.search.selectedEngine", "Fast Browser Search");
(Prefs.js) user_pref("browser.search.defaulturl", "hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q=");
(Prefs.js) user_pref("browser.startup.homepage", "hxxp://fr.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official");
(Prefs.js) user_pref("browser.startup.homepage_override.mstone", "rv:1.9.1.3");
.
(prefs.js) TROUVÉ: user_pref("browser.search.defaultengine", "Ask.com");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.mode.debug", "false");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.previous.keyword.URL", "chrome://browser-region/locale/region.properties");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"p=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.sweetim.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.live.*/*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*youtube.com/\" param=\"search_query=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.ebay.*/search/*\" param=\"satitle=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.amazon.com/s/*\" param=\"field-keywords=\" /></TOOLBAR>");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.search.history.capacity", "10");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.simapp_id", "{CDBC8EF3-3431-11DE-ABE4-001D72EB9F34}");
(prefs.js) TROUVÉ: user_pref("sweetim.toolbar.version", "1.0.0.8");
.
* Internet Explorer Version 8.0.6001.18813 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vb32&d=0409&m=aspire_5735
SearchAssistant:
Start Page: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vb32&d=0409&m=aspire_5735
Search Page:
Search Bar:
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: tbr:res?id=tabs&rep=1
.
============== Suspect (Cracks, Serials ... ) ==============
.
C:\Users\admin\.housecall6.6\patch.exe
.
===================================
.
12469 Octet(s) - C:\Ad-Report-SCAN.log
.
21 Fichier(s) - C:\Users\admin\AppData\Local\Temp
1 Fichier(s) - C:\Windows\Temp
.
0 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 12:16:41 | 27/09/2009
.
============== E.O.F ==============
.
0
Réponse 12 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 12:27
ok relance le mais cette fois ci choisis l'option de suppression
0
Réponse 13 / 38
Utilisateur anonyme
27 sept. 2009 à 12:31
ok
0
Réponse 14 / 38
Utilisateur anonyme
27 sept. 2009 à 12:57
la suppression a été faite
0
Réponse 15 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 12:58
tu relances GenProc pour voir où on en est ?
0
Réponse 16 / 38
Utilisateur anonyme
27 sept. 2009 à 12:59
ok
0
Réponse 17 / 38
Utilisateur anonyme
27 sept. 2009 à 13:02
Etape 1/ Télécharge :

Toolbar-S&D (Team IDN) sur ton Bureau.


important Redémarre en mode sans échec comme indiqué ICI ; Choisis ta session courante *** admin *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[3]" sur ton bureau).



Etape 2/

Lance Toolbar-S&D situé sur le Bureau. Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.

Etape 3/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.


Etape 4/

Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport TB.txt situé dans C:\ ;
- Un nouveau rapport HijackThis ;
- Un nouveau rapport GenProc ;

Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.




un nouveau rapport hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:02:50, on 27/09/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\PROGRA~1\Bandoo\BndCore.exe
C:\Windows\system32\conime.exe
C:\Users\admin\Documents\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll (file missing)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Softonic France FF Toolbar - {6d6b212b-2245-4898-8b16-9a11b81ff9e1} - C:\Program Files\Softonic_France_FF\tbSof1.dll
O3 - Toolbar: Skyrock Toolbar - {A057A204-BACC-4D26-969A-2AB983EE729B} - C:\PROGRA~1\SKYROC~1\SKYROC~1.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\Windows\WIDEST~1\FREEQU~1\QUICKA~1.DLL c:\progra~1\bandoo\bndhook.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bandoo Coordinator - Discordia Limited - C:\PROGRA~1\Bandoo\Bandoo.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9c82bf41789f3) (gupdate1c9c82bf41789f3) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)
0
Réponse 18 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 13:04
encore Toolbar ? poste le contenu du fichier C:\GenProc\Arguments\Arguments.txt
0
Réponse 19 / 38
Utilisateur anonyme
27 sept. 2009 à 13:07
# Détections [1] GenProc 2.631 27/09/2009 à 10:25:53
Navipromo:le 27/09/2009 à 10:26:58 "C:\Users\admin\AppData\Roaming\Games-Attack"
Toolbar:le 27/09/2009 à 10:27:03 "C:\Program Files\Crawler"

# Détections [2] GenProc 2.631 27/09/2009 à 10:30:09
Navipromo:le 27/09/2009 à 10:31:19 "C:\Users\admin\AppData\Roaming\Games-Attack"
Toolbar:le 27/09/2009 à 10:31:25 "C:\Program Files\Crawler"

# Détections [3] GenProc 2.631 27/09/2009 à 12:59:26
Toolbar:le 27/09/2009 à 13:00:30 "C:\Program Files\Crawler"
0
Réponse 20 / 38
eZula Messages postés 3391 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
27 sept. 2009 à 13:11
donc c'est le dossier Crawler qui n'aurait pas été supprimé. Regarde dans C:\ il doit y avoir le rapport de suppression du programme, vérifions
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses