Problème de Pub (CID ou yes messenger)

mika903 Messages postés 727 Statut Membre -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour,
comment s'il vous plait s'en debarraser (CID ou yes messenger ),

je vous prie de bien vouloir m'aider car j'ai 17 ans et je veut surfer tranquille.

avec mes remercimant.

MICKAEL

--

hjfhdbfn dnbd x,n ndbvib
Configuration: Windows XP
Firefox 2.0.0.9

21 réponses

  • 1
  • 2
  1. maxell007 Messages postés 180 Statut Membre 1
     
    Salut mickel

    essaye avec : SpyBot - Search & Destroy
    Ad-aware Se personal

    sé deux la sont tres bon comme anti-spyware.
    telechargere les et fais des analyse et bien sure des mise a jours.

    di moi quoi apres sa :)

    @+ bonne chance
    0
  2. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut à vous

    il faut employer les gros moyens !

    Télécharge ceci :

    Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis

    Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

    Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

    ++
    0
  3. mika903 Messages postés 727 Statut Membre 33
     
    bonsoir ,

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:16:58, on 27/11/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\AlertModule\AlertModule.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\cleanmgr.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
    O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    0
  4. mika903 Messages postés 727 Statut Membre 33
     
    bonsoir tout le monde reponder moi svp
    merci mes cher amis francais.
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Bonsoir :

    Télécharge ceci: (by Moe) :

    http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

    Double clic sur Lopxpsetup.exe pour lancer l'installation
    Au menu, choisir l'option 1
    Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
    Une rapport sera alors crée, à copie/colle en entier sur le forum.

    ++
    0
  7. mika903 Messages postés 727 Statut Membre 33
     
    salut ok je vais essayer

    je te remerci
    0
  8. mika903 Messages postés 727 Statut Membre 33
     
    defois mon deuxieme pc a des pub je lance un jackthis.
    0
  9. mika903 Messages postés 727 Statut Membre 33
     
    re et voici et aussi defois ma souris se deplace tout seul c pas normal ou defois au demarrage de windows ne se connecte pas c'est un virus ou un probleme de ma souris c un microsoft avec fil.

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 16:11, on 28/11/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\WINDOWS\ATKKBService.exe
    G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\WINDOWS\system32\rundll32.exe
    G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
    C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
    C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\inKline Global\PC Booster\PCBooster.exe
    C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
    G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Wanadoo\GestionnaireInternet.exe
    C:\Program Files\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\AlertModule\AlertModule.exe
    C:\Program Files\Wanadoo\Watch.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Fichiers communs\DVDVideoSoft\LanguageEditor.exe
    C:\Program Files\Outlook Express\msimn.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
    R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
    O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
    O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
    O4 - HKLM\..\Run: [USB Storage Toolbox] "G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE"
    O4 - HKLM\..\Run: [Vaderetro Outlook] "C:\PROGRA~1\Goto Software\Vade Retro\VrMoRegister.exe -s"
    O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe"
    O4 - HKLM\..\Run: [Part browse safe hold] C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
    O4 - HKLM\..\Run: [up shim comp hold] C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\InstallShield\UpdateService\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
    O4 - HKCU\..\Run: [SweetIM] "C:\Program Files\Macrogaming\SweetIM\SweetIM.exe"
    O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
    O4 - Startup: Intégrateur PROjectMT 98.lnk = ?
    O4 - Startup: Shrink Pic.lnk = ?
    O4 - Global Startup: Adobe Gamma Loader.lnk = ?
    O8 - Extra context menu item: &Clean Traces - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\Privacy Package\dapcleanerie.htm
    O8 - Extra context menu item: &Download with &DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie.htm
    O8 - Extra context menu item: Download &all with DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie2.htm
    O8 - Extra context menu item: Download All Files by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGetAll.htm
    O8 - Extra context menu item: Download by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGet.htm
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\hidownload.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://eugenemontel31.spaces.live.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\Skype4COM.dll
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
    O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
    O23 - Service: VideoAcceleratorEngine - Speedbit Ltd. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe
    0
  10. mika903 Messages postés 727 Statut Membre 33
     
    coucou aider moi merci.

    mes cher amis

    mickael
    0
  11. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    salut

    poste le rapporlopxp !!

    ++
    0
  12. mika903 Messages postés 727 Statut Membre 33
     
    salut ca marche pas ton logiciel dossier inacessible

    hjfhdbfn dnbd x,n ndbvib
    0
  13. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ???

    il suffit de clicé sur le lien ! je viens d'essayer, cher moi ça fonctionne très bien ....

    0
  14. mika903 Messages postés 727 Statut Membre 33
     
    bonsoir c'est bon j'ai arriver .

    Rapport Lopxp fait le 28/11/2007 à 22:18:35
    Exécuté dans : C:\Program Files\Lopxp

    Liste des processus actifs :

    PID : 1684 C:\WINDOWS\Explorer.EXE
    PID : 1948 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    PID : 1984 C:\Program Files\MSN Messenger\msnmsgr.exe
    PID : 2024 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    PID : 264 C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    PID : 280 C:\PROGRA~1\Wanadoo\ComComp.exe
    PID : 296 C:\PROGRA~1\Wanadoo\Toaster.exe
    PID : 300 C:\PROGRA~1\Wanadoo\Inactivity.exe
    PID : 308 C:\PROGRA~1\Wanadoo\PollingModule.exe
    PID : 328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
    PID : 1604 C:\WINDOWS\system32\wscntfy.exe
    PID : 2532 C:\PROGRA~1\Wanadoo\Watch.exe
    PID : 1168 C:\Program Files\Mozilla Firefox\firefox.exe
    PID : 3220 C:\WINDOWS\system32\cmd.exe
    PID : 1240 C:\Documents and Settings\the undertaker\Mes documents\tools\pv.exe

    ___________________________________________________________________________

    [Tâches planifiées]

    ___________________________________________________________________________

    [Listing des dossiers Application Data]

    cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)

    +- C:\Documents and Settings\All Users\Application Data

    cr: 08/11/2006 13:26:37 | mo: 08/11/2006 13:26:37 -=- Ahead ----= Ahead
    cr: 24/10/2006 08:42:12 | mo: 24/11/2006 13:01:12 -=- DVDSHR~1 -= DVD Shrink
    cr: 24/10/2006 10:02:27 | mo: 10/05/2007 12:11:34 -=- MICROS~1 -= Microsoft

    +- C:\Documents and Settings\All Users.WINDOWS\Application Data

    cr: 23/09/2007 20:39:48 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
    cr: 09/11/2007 21:14:05 | mo: 09/11/2007 21:14:05 -=- Google ---= Google
    cr: 17/11/2007 22:30:15 | mo: 17/11/2007 22:30:15 -=- Lavasoft -= Lavasoft
    cr: 30/10/2007 23:25:05 | mo: 30/10/2007 23:25:05 -=- Messenger Plus! -= Messenger Plus!
    cr: 23/09/2007 21:32:57 | mo: 26/11/2007 21:47:19 -=- MICROS~1 -= Microsoft
    cr: 23/09/2007 20:35:47 | mo: 23/09/2007 20:35:47 -=- MSNMES~1.013 -= MSN Messenger 6.2.0137
    cr: 16/11/2007 21:52:50 | mo: 16/11/2007 21:52:50 -=- PY_Software -= PY_Software
    cr: 15/11/2007 22:48:40 | mo: 16/11/2007 17:39:42 -=- Spybot - Search & Destroy -= Spybot - Search & Destroy
    cr: 03/10/2007 17:59:33 | mo: 03/10/2007 17:59:33 -=- Windows Live Toolbar -= Windows Live Toolbar

    +- C:\Documents and Settings\Boomscud\Application Data

    cr: 24/10/2006 08:36:16 | mo: 23/09/2007 20:33:50 -=- MICROS~1 -= Microsoft
    cr: 24/10/2006 08:40:34 | mo: 24/10/2006 08:40:34 -=- Sun ------= Sun

    +- C:\Documents and Settings\the undertaker\Application Data

    cr: 26/11/2007 18:18:53 | mo: 26/11/2007 18:18:53 -=- Identities ------= Identities
    cr: 26/11/2007 18:50:24 | mo: 26/11/2007 18:50:24 -=- Macromedia ------= Macromedia
    cr: 26/11/2007 18:18:16 | mo: 27/11/2007 20:00:16 -=- Microsoft ------= Microsoft
    cr: 26/11/2007 18:40:47 | mo: 27/11/2007 08:02:45 -=- Mozilla --= Mozilla
    cr: 27/11/2007 08:02:42 | mo: 27/11/2007 08:02:42 -=- Talkback -= Talkback

    +- C:\Documents and Settings\the undertaker\Local Settings\Application Data

    cr: 26/11/2007 18:21:49 | mo: 26/11/2007 18:21:49 -=- Help -----= Help
    cr: 27/11/2007 08:42:17 | mo: 27/11/2007 08:42:17 -=- Identities -----= Identities
    cr: 26/11/2007 18:18:16 | mo: 28/11/2007 20:44:10 -=- Microsoft -----= Microsoft
    cr: 26/11/2007 18:40:47 | mo: 26/11/2007 18:40:47 -=- Mozilla --= Mozilla

    ___________________________________________________________________________

    [Listing du dossier Program Files]

    +- C:\Program Files

    cr: 22/11/2007 22:10:59 | mo: 22/11/2007 22:11:06 -=- 7-Zip ----= 7-Zip
    cr: 21/11/2007 22:22:07 | mo: 21/11/2007 22:25:35 -=- A4Desk ---= A4Desk
    cr: 21/11/2007 22:14:53 | mo: 21/11/2007 22:14:54 -=- A4Desktrialfr ---= A4Desktrialfr
    cr: 16/11/2007 21:51:54 | mo: 23/11/2007 22:26:34 -=- Active WebCam ---= Active WebCam
    cr: 12/12/2006 19:23:32 | mo: 23/09/2007 20:34:13 -=- Adobe ----= Adobe
    cr: 30/11/2006 17:20:48 | mo: 08/12/2006 18:09:47 -=- ADSL Drivers ----= ADSL Drivers
    cr: 30/10/2007 23:23:09 | mo: 30/10/2007 23:23:09 -=- Adverts --= Adverts
    cr: 24/10/2006 08:38:29 | mo: 21/08/2004 12:24:27 -=- Ahead ----= Ahead
    cr: 03/10/2007 13:20:41 | mo: 03/10/2007 13:20:41 -=- Alwil Software ----= Alwil Software
    cr: 20/11/2007 22:01:23 | mo: 27/11/2007 21:52:21 -=- Amor AVI MPEG WMV RM to MP3 Converter ----= Amor AVI MPEG WMV RM to MP3 Converter
    cr: 18/11/2007 19:47:16 | mo: 25/11/2007 21:37:53 -=- Ares -----= Ares
    cr: 28/10/2007 22:58:51 | mo: 28/10/2007 22:58:51 -=- Autofr ---= Autofr
    cr: 15/11/2007 22:28:15 | mo: 16/11/2007 17:13:14 -=- AxBx -----= AxBx
    cr: 28/06/2007 23:48:18 | mo: 28/06/2007 23:48:18 -=- Bullfrog -= Bullfrog
    cr: 16/11/2007 22:24:13 | mo: 16/11/2007 22:25:27 -=- CCleaner -= CCleaner
    cr: 22/09/2007 20:51:56 | mo: 22/09/2007 20:51:56 -=- COMPLU~1 -= ComPlus Applications
    cr: 29/09/2007 19:26:14 | mo: 29/09/2007 19:26:14 -=- Croteam --= Croteam
    cr: 27/10/2007 21:21:26 | mo: 30/10/2007 22:42:35 -=- Dachshund Software --= Dachshund Software
    cr: 31/10/2006 13:48:26 | mo: 31/10/2006 13:48:26 -=- Davilex --= Davilex
    cr: 18/11/2007 22:26:07 | mo: 25/11/2007 21:39:06 -=- DivX -----= DivX
    cr: 01/08/2007 09:20:57 | mo: 01/08/2007 09:21:07 -=- DVCam 3(PC Camera) -----= DVCam 3(PC Camera)
    cr: 24/10/2006 08:42:10 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
    cr: 20/10/2007 13:36:10 | mo: 20/10/2007 13:36:10 -=- Eidos ----= Eidos
    cr: 27/06/2007 23:47:49 | mo: 27/06/2007 23:47:49 -=- Eidos Interactive ----= Eidos Interactive
    cr: 26/09/2007 20:11:49 | mo: 26/09/2007 20:27:22 -=- Electronic Arts ----= Electronic Arts
    cr: 16/05/2007 19:44:14 | mo: 30/10/2007 22:43:46 -=- Executive Software ----= Executive Software
    cr: 24/10/2006 10:04:33 | mo: 17/11/2007 22:26:37 -=- FICHIE~1 -= Fichiers communs
    cr: 24/10/2006 08:37:23 | mo: 03/10/2007 20:41:36 -=- FlashGet -= FlashGet
    cr: 17/08/2007 19:28:59 | mo: 17/08/2007 19:29:16 -=- Future Beat 3D -= Future Beat 3D
    cr: 24/10/2006 09:47:13 | mo: 24/10/2006 09:47:13 -=- Hasbro Interactive -= Hasbro Interactive
    cr: 02/11/2007 08:26:45 | mo: 03/11/2007 20:27:39 -=- HotTVPlayer -= HotTVPlayer
    cr: 12/05/2007 18:25:45 | mo: 12/05/2007 18:25:45 -=- Infogrames -= Infogrames
    cr: 16/11/2007 17:14:25 | mo: 16/11/2007 17:14:25 -=- inKline Global -= inKline Global
    cr: 29/10/2006 16:38:07 | mo: 16/11/2007 17:14:23 -=- InstallShield Installation Information -= InstallShield Installation Information
    cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- INTERN~1 -= internet explorer
    cr: 03/10/2007 13:34:54 | mo: 03/10/2007 13:34:54 -=- Inventel -= Inventel
    cr: 31/10/2007 22:02:43 | mo: 31/10/2007 22:02:43 -=- Lavalys --= Lavalys
    cr: 17/11/2007 22:30:16 | mo: 17/11/2007 22:30:16 -=- Lavasoft -= Lavasoft
    cr: 31/10/2006 14:17:12 | mo: 31/07/2007 09:46:46 -=- Maxis ----= Maxis
    cr: 30/10/2007 23:22:45 | mo: 30/10/2007 23:22:53 -=- Messenger Plus! Live ----= Messenger Plus! Live
    cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MICROS~1 -= microsoft frontpage
    cr: 24/10/2006 13:53:45 | mo: 24/10/2006 13:53:45 -=- Microsoft Games -= Microsoft Games
    cr: 03/10/2007 20:55:55 | mo: 19/10/2007 21:28:50 -=- Miranda IM -= Miranda IM
    cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MOVIEM~1 -= movie maker
    cr: 24/10/2006 08:41:38 | mo: 24/10/2006 08:41:38 -=- mozilla --= mozilla
    cr: 03/10/2007 19:01:20 | mo: 27/11/2007 22:51:19 -=- Mozilla Firefox --= Mozilla Firefox
    cr: 12/11/2007 20:44:19 | mo: 27/11/2007 22:33:22 -=- Mozilla Thunderbird --= Mozilla Thunderbird
    cr: 23/09/2007 19:58:46 | mo: 23/09/2007 19:58:46 -=- MSNGAM~1 -= msn gaming zone
    cr: 19/10/2007 21:10:55 | mo: 30/10/2007 23:22:50 -=- MSN Messenger -= MSN Messenger
    cr: 18/08/2007 20:43:58 | mo: 18/08/2007 20:43:59 -=- Multimedia Combo Set -= Multimedia Combo Set
    cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:10 -=- NETMEE~1 -= netmeeting
    cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- OUTLOO~1 -= outlook express
    cr: 10/11/2007 21:57:11 | mo: 25/11/2007 21:39:38 -=- RayV -----= RayV
    cr: 23/09/2007 20:39:31 | mo: 23/09/2007 20:39:32 -=- SATSUK~1 -= Satsuki Decodeur Pack
    cr: 03/10/2007 13:35:05 | mo: 03/10/2007 13:35:05 -=- Securitoo -= Securitoo
    cr: 22/09/2007 20:56:48 | mo: 22/09/2007 20:56:48 -=- SERVIC~1 -= Services en ligne
    cr: 18/10/2007 20:24:06 | mo: 18/10/2007 20:45:23 -=- SM -------= SM
    cr: 15/11/2007 22:48:40 | mo: 15/11/2007 22:49:01 -=- Spybot - Search & Destroy -------= Spybot - Search & Destroy
    cr: 27/11/2007 22:15:53 | mo: 27/11/2007 22:15:53 -=- Trend Micro -------= Trend Micro
    cr: 25/11/2007 21:33:58 | mo: 25/11/2007 21:33:58 -=- Uninstall Information -------= Uninstall Information
    cr: 03/11/2006 15:07:05 | mo: 03/11/2006 15:07:05 -=- VideoLAN -= VideoLAN
    cr: 03/10/2007 13:35:57 | mo: 28/11/2007 21:19:57 -=- Wanadoo --= Wanadoo
    cr: 27/06/2007 10:34:09 | mo: 29/06/2007 23:57:19 -=- Wildlife Park --= Wildlife Park
    cr: 24/10/2006 08:41:13 | mo: 05/11/2007 22:11:35 -=- WINAMP ---= WINAMP
    cr: 30/10/2007 23:22:50 | mo: 30/10/2007 23:22:50 -=- Windows Live ---= Windows Live
    cr: 03/10/2007 17:59:07 | mo: 18/10/2007 20:45:20 -=- Windows Live Toolbar ---= Windows Live Toolbar
    cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:11 -=- WINDOW~1 -= windows media player
    cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:50:53 -=- WINDOW~2 -= windows nt
    cr: 22/09/2007 20:56:59 | mo: 22/09/2007 20:56:59 -=- WINDOW~3 -= WindowsUpdate
    cr: 24/10/2006 08:41:33 | mo: 26/09/2007 18:59:46 -=- WinRAR ---= WinRAR
    cr: 24/10/2006 08:22:34 | mo: 24/10/2006 08:22:34 -=- xerox ----= xerox
    cr: 16/11/2007 22:24:44 | mo: 27/11/2007 21:50:36 -=- Yahoo! ---= Yahoo!
    cr: 24/11/2007 22:17:18 | mo: 24/11/2007 22:17:18 -=- ZillaSoft.ws ---= ZillaSoft.ws

    ___________________________________________________________________________

    [Recherche programmes connus, liés à CiD]

    C:\Program Files\Messenger Plus! Live

    ___________________________________________________________________________

    [Clés registre de démarrage]

    ___________________________________________________________________________

    [Popups autorisés]

    [-] Internet Explorer :

    La version d'Internet Explorer utilisée, ne gère pas l'autorisation des popups.

    [-] Mozilla Firefox
    0
  15. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    les deux rapports hijackthis ne correspondent pas du tout, l'un présente une infection, lop, l'autre pas ...

    il faut exécuter lopxp sur le PC infecté !! ;-)

    ++
    0
  16. mika903 Messages postés 727 Statut Membre 33
     
    salut c'est normal le premiere rapprot est celui de ma chambre qui a des pub et le deuxeme rapprot c'est mon pc qui est au salon avec defois des pub ?
    0
  17. mika903 Messages postés 727 Statut Membre 33
     
    le quel pc est infecte le premiere rapport ou le deuxieme ?

    stp

    mickael
    0
  18. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    le 1er PC, soit doit être du naviprimo, et le 2ème c'est du lop !

    on va commencer par le 2ème PC ( donc on va commencer par celui du salon uniquement !! )

    exécute lopxp sur le sur le 2ème PC stp

    ++
    0
  19. mika903 Messages postés 727 Statut Membre 33
     
    OK TIENS CELUI DU SALON C FAIT

    Rapport Lopxp fait le 29/11/2007 à 12:29:48
    Exécuté dans : C:\Program Files\Lopxp

    Liste des processus actifs :

    PID : 592 C:\WINDOWS\System32\smss.exe
    PID : 664 C:\WINDOWS\system32\csrss.exe
    PID : 688 C:\WINDOWS\system32\winlogon.exe
    PID : 732 C:\WINDOWS\system32\services.exe
    PID : 744 C:\WINDOWS\system32\lsass.exe
    PID : 896 C:\WINDOWS\system32\svchost.exe
    PID : 952 C:\WINDOWS\system32\svchost.exe
    PID : 1016 C:\WINDOWS\System32\svchost.exe
    PID : 1128 C:\WINDOWS\system32\svchost.exe
    PID : 1164 C:\WINDOWS\system32\svchost.exe
    PID : 1312 G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
    PID : 1324 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    PID : 1372 C:\Program Files\Alwil Software\Avast4\ashServ.exe
    PID : 1592 C:\WINDOWS\system32\spoolsv.exe
    PID : 1872 C:\WINDOWS\Explorer.EXE
    PID : 1972 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    PID : 2012 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
    PID : 2016 C:\WINDOWS\system32\rundll32.exe
    PID : 2044 C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
    PID : 164 C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
    PID : 208 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    PID : 284 C:\Program Files\inKline Global\PC Booster\PCBooster.exe
    PID : 300 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    PID : 308 C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
    PID : 472 C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
    PID : 500 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    PID : 540 C:\WINDOWS\ATKKBService.exe
    PID : 360 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
    PID : 124 C:\WINDOWS\System32\FTRTSVC.exe
    PID : 1048 C:\WINDOWS\system32\nvsvc32.exe
    PID : 1220 C:\WINDOWS\system32\svchost.exe
    PID : 1712 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
    PID : 1828 C:\WINDOWS\system32\wdfmgr.exe
    PID : 2228 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    PID : 2244 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    PID : 2460 C:\WINDOWS\system32\wscntfy.exe
    PID : 2768 C:\WINDOWS\System32\alg.exe
    PID : 2896 C:\WINDOWS\System32\svchost.exe
    PID : 3212 C:\Program Files\Wanadoo\GestionnaireInternet.exe
    PID : 3244 C:\Program Files\Wanadoo\ComComp.exe
    PID : 3272 C:\PROGRA~1\Wanadoo\Toaster.exe
    PID : 3280 C:\PROGRA~1\Wanadoo\Inactivity.exe
    PID : 3288 C:\PROGRA~1\Wanadoo\PollingModule.exe
    PID : 3328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
    PID : 3516 C:\Program Files\Wanadoo\Watch.exe
    PID : 2712 C:\Program Files\Outlook Express\msimn.exe
    PID : 1232 C:\PROGRA~1\MOZILLA FIREFOX\FIREFOX.EXE
    PID : 1280 C:\WINDOWS\system32\cmd.exe
    PID : 2640 C:\Program Files\Lopxp\tools\pv.exe

    ___________________________________________________________________________

    [Tâches planifiées]

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    Cr : 02/07/2007 à 07:03
    Mo : 08/11/2007 à 20:39
    Fichier exécuté : C\Program Files\Apple Software Update\SoftwareUpdate.exe -task

    ___________________________________________________________________________

    [Listing des dossiers Application Data]

    cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)

    +- C:\Documents and Settings\Administrateur\Application Data

    cr: 24/03/2007 19:23:08 | mo: 24/03/2007 19:23:08 -=- Identities Identities
    cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft

    +- C:\Documents and Settings\Administrateur\Local Settings\Application Data

    cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft

    +- C:\Documents and Settings\All Users\Application Data

    cr: 02/01/2007 15:37:13 | mo: 07/11/2007 07:37:36 -=- Adobe ----= Adobe
    cr: 23/12/2006 10:53:02 | mo: 23/12/2006 10:53:02 -=- Ahead ----= Ahead
    cr: 31/03/2007 16:36:10 | mo: 31/03/2007 18:01:16 -=- AntiSpyInfo ----= AntiSpyInfo
    cr: 21/06/2007 07:53:01 | mo: 21/06/2007 07:53:01 -=- AOL Downloads ----= AOL Downloads
    cr: 02/07/2007 07:02:47 | mo: 02/07/2007 07:02:47 -=- Apple ----= Apple
    cr: 07/03/2007 17:46:44 | mo: 04/07/2007 07:11:33 -=- Apple Computer ----= Apple Computer
    cr: 24/07/2007 12:59:19 | mo: 27/07/2007 12:34:47 -=- Audio 4 part browse ----= Audio 4 part browse
    cr: 27/06/2007 09:03:31 | mo: 27/06/2007 09:03:31 -=- AVS4YOU --= AVS4YOU
    cr: 12/04/2007 07:06:37 | mo: 12/04/2007 07:06:37 -=- Azureus --= Azureus
    cr: 24/07/2007 12:59:24 | mo: 27/07/2007 12:34:48 -=- Barb Info Hold Audio --= Barb Info Hold Audio
    cr: 27/12/2006 13:02:05 | mo: 27/12/2006 13:02:05 -=- BOONTY ---= BOONTY
    cr: 11/04/2007 12:11:10 | mo: 11/04/2007 12:11:10 -=- DVD Shrink ---= DVD Shrink
    cr: 23/12/2006 15:12:51 | mo: 23/12/2006 15:12:52 -=- Google ---= Google
    cr: 23/08/2007 18:10:08 | mo: 23/08/2007 18:10:08 -=- Grisoft --= Grisoft
    cr: 28/09/2007 20:11:54 | mo: 28/09/2007 20:11:54 -=- InstallShield --= InstallShield
    cr: 10/07/2007 20:37:07 | mo: 10/07/2007 20:37:07 -=- Lavasoft -= Lavasoft
    cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- McAfee ---= McAfee
    cr: 10/02/2007 18:13:55 | mo: 03/08/2007 07:59:30 -=- mealsoftwareblahlong ---= mealsoftwareblahlong
    cr: 27/10/2007 12:49:31 | mo: 27/10/2007 12:49:31 -=- Messenger Plus! ---= Messenger Plus!
    cr: 23/12/2006 10:52:02 | mo: 23/05/2007 15:35:37 -=- MICROS~1 -= Microsoft
    cr: 22/10/2007 14:42:31 | mo: 14/11/2007 22:30:12 -=- Nero -----= Nero
    cr: 05/01/2007 10:50:35 | mo: 14/01/2007 12:38:18 -=- NFS Underground -----= NFS Underground
    cr: 05/01/2007 09:49:37 | mo: 05/01/2007 09:49:37 -=- NFS Underground Demo -----= NFS Underground Demo
    cr: 23/12/2006 10:48:12 | mo: 23/12/2006 10:48:12 -=- NVIDIA ---= NVIDIA
    cr: 17/02/2007 08:35:04 | mo: 19/06/2007 12:13:18 -=- nView_Profiles ---= nView_Profiles
    cr: 04/04/2007 17:21:55 | mo: 04/04/2007 17:33:22 -=- Pinnacle -= Pinnacle
    cr: 04/04/2007 17:24:59 | mo: 04/04/2007 17:33:35 -=- Pinnacle Studio -= Pinnacle Studio
    cr: 18/01/2007 19:44:35 | mo: 18/01/2007 19:44:35 -=- pixelStorm -= pixelStorm
    cr: 02/07/2007 14:16:51 | mo: 02/07/2007 14:16:51 -=- SiComponents -= SiComponents
    cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- SiteAdvisor -= SiteAdvisor
    cr: 04/10/2007 17:41:53 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
    cr: 17/03/2007 14:50:28 | mo: 25/06/2007 18:37:38 -=- Spybot - Search & Destroy ----= Spybot - Search & Destroy
    cr: 21/03/2007 11:48:11 | mo: 31/10/2007 17:17:40 -=- TEMP -----= TEMP
    cr: 20/01/2007 19:09:14 | mo: 20/01/2007 19:09:14 -=- UDL ------= UDL
    cr: 20/06/2007 17:29:47 | mo: 20/06/2007 17:29:55 -=- VadeRetro ------= VadeRetro
    cr: 28/12/2006 16:56:54 | mo: 28/12/2006 16:56:54 -=- Windows Genuine Advantage ------= Windows Genuine Advantage
    cr: 05/01/2007 09:10:30 | mo: 05/01/2007 09:10:30 -=- Windows Live Toolbar ------= Windows Live Toolbar
    cr: 31/08/2007 07:48:03 | mo: 31/08/2007 07:48:31 -=- WindowsLiveInstaller ------= WindowsLiveInstaller
    cr: 31/08/2007 07:47:56 | mo: 13/11/2007 17:47:20 -=- WLInstaller ------= WLInstaller
    cr: 02/03/2007 17:28:13 | mo: 02/03/2007 17:28:13 -=- Yahoo! ---= Yahoo!

    +- C:\Documents and Settings\mika\Application Data

    cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft

    +- C:\Documents and Settings\mika\Local Settings\Application Data

    cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft

    ___________________________________________________________________________

    [Listing du dossier Program Files]

    +- C:\Program Files

    cr: 20/09/2007 17:21:48 | mo: 20/09/2007 17:21:48 -=- 1964 -----= 1964
    cr: 25/12/2006 20:16:22 | mo: 23/11/2007 15:20:12 -=- Adobe ----= Adobe
    cr: 27/10/2007 12:46:29 | mo: 27/10/2007 12:46:29 -=- Adverts --= Adverts
    cr: 24/12/2006 08:23:14 | mo: 24/12/2006 08:23:14 -=- Agfa -----= Agfa
    cr: 24/12/2006 08:23:33 | mo: 24/12/2006 08:23:33 -=- AGFAnet --= AGFAnet
    cr: 23/12/2006 14:46:53 | mo: 23/12/2006 14:46:53 -=- Alwil Software --= Alwil Software
    cr: 02/07/2007 07:03:23 | mo: 02/07/2007 07:03:24 -=- Apple Software Update --= Apple Software Update
    cr: 23/12/2006 10:08:21 | mo: 23/12/2006 10:08:21 -=- ATI Technologies --= ATI Technologies
    cr: 23/12/2006 10:12:34 | mo: 23/12/2006 10:12:37 -=- AvRack ---= AvRack
    cr: 14/11/2007 21:30:50 | mo: 14/11/2007 21:30:50 -=- AxBx -----= AxBx
    cr: 27/12/2006 13:01:15 | mo: 27/12/2006 13:01:15 -=- Boonty ---= Boonty
    cr: 27/12/2006 13:01:40 | mo: 27/12/2006 13:01:40 -=- BoontyGames ---= BoontyGames
    cr: 27/12/2006 15:23:33 | mo: 27/12/2006 15:25:23 -=- Brother --= Brother
    cr: 27/12/2006 15:25:34 | mo: 27/12/2006 15:30:52 -=- Brownie --= Brownie
    cr: 23/05/2007 14:25:03 | mo: 12/06/2007 09:26:55 -=- capb2i ---= capb2i
    cr: 23/12/2006 09:57:07 | mo: 23/12/2006 09:57:07 -=- COMPLU~1 -= ComPlus Applications
    cr: 22/10/2007 08:45:52 | mo: 22/10/2007 08:45:52 -=- DMV ------= DMV
    cr: 20/01/2007 19:06:26 | mo: 21/01/2007 08:18:43 -=- epson ----= epson
    cr: 06/11/2007 14:41:34 | mo: 07/11/2007 11:50:55 -=- EsetOnlineScanner ----= EsetOnlineScanner
    cr: 05/02/2007 17:44:37 | mo: 05/02/2007 17:44:37 -=- eurobarre ----= eurobarre
    cr: 23/12/2006 10:52:43 | mo: 13/11/2007 17:47:40 -=- FICHIE~1 -= Fichiers communs
    cr: 23/12/2006 15:12:51 | mo: 12/06/2007 15:52:20 -=- Google ---= Google
    cr: 20/06/2007 17:29:39 | mo: 20/06/2007 17:29:39 -=- Goto Software ---= Goto Software
    cr: 20/07/2007 16:46:08 | mo: 10/11/2007 09:07:00 -=- ICQToolbar ---= ICQToolbar
    cr: 14/11/2007 21:32:00 | mo: 14/11/2007 21:32:00 -=- inKline Global ---= inKline Global
    cr: 23/12/2006 10:08:19 | mo: 16/11/2007 18:44:45 -=- InstallShield Installation Information ---= InstallShield Installation Information
    cr: 23/12/2006 09:57:34 | mo: 13/11/2007 17:57:38 -=- INTERN~1 -= Internet Explorer
    cr: 23/12/2006 14:04:25 | mo: 24/03/2007 14:35:41 -=- Inventel -= Inventel
    cr: 10/10/2007 18:01:36 | mo: 10/10/2007 18:01:36 -=- IVCsoft --= IVCsoft
    cr: 12/01/2007 07:56:48 | mo: 07/09/2007 14:28:49 -=- Java -----= Java
    cr: 03/01/2007 14:47:58 | mo: 03/01/2007 14:47:58 -=- KONAMI ---= KONAMI
    cr: 04/09/2007 08:40:50 | mo: 29/11/2007 12:29:50 -=- Lopxp ----= Lopxp
    cr: 18/03/2007 18:57:15 | mo: 03/04/2007 11:02:51 -=- Macrogaming ----= Macrogaming
    cr: 27/10/2007 12:46:23 | mo: 27/10/2007 12:46:24 -=- Messenger Plus! Live ----= Messenger Plus! Live
    cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MICROS~1 -= microsoft frontpage
    cr: 23/12/2006 10:25:48 | mo: 23/12/2006 10:26:12 -=- Microsoft Office -= Microsoft Office
    cr: 01/01/2007 17:17:50 | mo: 01/01/2007 17:18:36 -=- Microsoft Référence -= Microsoft Référence
    cr: 23/12/2006 10:00:30 | mo: 23/11/2007 14:23:22 -=- MOVIEM~1 -= movie maker
    cr: 23/12/2006 10:05:05 | mo: 23/12/2006 10:05:05 -=- mozilla --= mozilla
    cr: 23/12/2006 15:16:00 | mo: 29/11/2007 12:13:46 -=- Mozilla Firefox --= Mozilla Firefox
    cr: 07/11/2007 17:48:43 | mo: 07/11/2007 17:55:45 -=- Mozilla Thunderbird --= Mozilla Thunderbird
    cr: 02/01/2007 14:52:21 | mo: 02/01/2007 14:52:22 -=- MSI ------= MSI
    cr: 24/12/2006 14:03:17 | mo: 05/01/2007 09:10:06 -=- MSN Apps -= MSN Apps
    cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MSNGAM~1 -= msn gaming zone
    cr: 04/02/2007 09:32:58 | mo: 13/11/2007 17:53:29 -=- MSN Messenger -= MSN Messenger
    cr: 23/12/2006 10:18:14 | mo: 02/06/2007 13:24:48 -=- My Company Name -= My Company Name
    cr: 31/08/2007 09:02:24 | mo: 02/09/2007 07:53:03 -=- Navilog1 -= Navilog1
    cr: 01/01/2007 13:31:09 | mo: 14/11/2007 22:30:13 -=- Nero -----= Nero
    cr: 23/12/2006 09:57:49 | mo: 31/01/2007 16:16:16 -=- NETMEE~1 -= NetMeeting
    cr: 31/08/2007 16:02:34 | mo: 31/08/2007 16:02:43 -=- OpenOffice.org 2.2 -= OpenOffice.org 2.2
    cr: 23/12/2006 09:57:46 | mo: 23/12/2006 09:58:15 -=- OUTLOO~1 -= Outlook Express
    cr: 03/10/2007 14:53:03 | mo: 03/10/2007 14:53:03 -=- Panda Security -= Panda Security
    cr: 16/05/2007 12:22:30 | mo: 02/06/2007 13:24:45 -=- Pidgin ---= Pidgin
    cr: 07/03/2007 17:47:37 | mo: 04/07/2007 07:11:49 -=- QuickTime ---= QuickTime
    cr: 23/12/2006 10:12:30 | mo: 23/12/2006 10:12:34 -=- Realtek AC97 ---= Realtek AC97
    cr: 23/12/2006 10:12:37 | mo: 23/12/2006 10:12:37 -=- Realtek Sound Manager ---= Realtek Sound Manager
    cr: 07/06/2007 16:09:56 | mo: 07/06/2007 16:09:56 -=- Replay Converter ---= Replay Converter
    cr: 02/11/2007 11:06:05 | mo: 02/11/2007 11:06:05 -=- Securitoo ---= Securitoo
    cr: 23/12/2006 09:59:06 | mo: 23/12/2006 09:59:06 -=- SERVIC~1 -= Services en ligne
    cr: 24/07/2007 12:59:54 | mo: 24/07/2007 12:59:54 -=- Shim mags -= Shim mags
    cr: 17/03/2007 15:08:09 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
    cr: 20/01/2007 19:07:28 | mo: 20/01/2007 19:08:47 -=- Smart Panel ----= Smart Panel
    cr: 12/06/2007 06:54:48 | mo: 19/06/2007 08:49:21 -=- Spyware Doctor ----= Spyware Doctor
    cr: 03/01/2007 17:57:45 | mo: 03/01/2007 17:59:11 -=- Traction Software ----= Traction Software
    cr: 02/01/2007 15:37:25 | mo: 02/01/2007 15:37:25 -=- Ubi Soft -= Ubi Soft
    cr: 02/01/2007 15:31:48 | mo: 02/01/2007 15:31:48 -=- UbiSoft --= UbiSoft
    cr: 12/01/2007 18:11:28 | mo: 12/01/2007 18:11:28 -=- Uninstall Information --= Uninstall Information
    cr: 23/12/2006 14:12:09 | mo: 29/11/2007 12:04:58 -=- Wanadoo --= Wanadoo
    cr: 20/06/2007 07:32:12 | mo: 13/11/2007 18:00:16 -=- Windows Live --= Windows Live
    cr: 02/10/2007 14:01:37 | mo: 23/11/2007 13:53:22 -=- Windows Live Safety Center --= Windows Live Safety Center
    cr: 23/12/2006 09:56:57 | mo: 22/10/2007 14:41:51 -=- WINDOW~2 -= Windows Media Player
    cr: 23/12/2006 09:56:31 | mo: 24/03/2007 18:13:13 -=- WINDOW~1 -= Windows NT
    cr: 23/12/2006 09:59:09 | mo: 23/12/2006 09:59:09 -=- WINDOW~3 -= WindowsUpdate
    cr: 10/01/2007 18:29:09 | mo: 25/04/2007 18:10:09 -=- WinRAR ---= WinRAR
    cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- xerox ----= xerox
    cr: 02/03/2007 17:21:04 | mo: 02/03/2007 17:26:31 -=- Yahoo! ---= Yahoo!

    ___________________________________________________________________________

    [Recherche programmes connus, liés à CiD]

    C:\Program Files\Messenger Plus! Live
    C:\Documents and Settings\micka‰l\Application Data\Microsoft\Internet Explorer\Quick Launch\BitDownload Downloads.lnk

    C:\DOCUME~1\micka‰l\Local Settings\Temp\QZTEMP\BitDownload-setup.exe

    ___________________________________________________________________________

    [Clés registre de démarrage]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    Part browse safe hold REG_SZ C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
    up shim comp hold REG_SZ C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe

    ___________________________________________________________________________

    [Popups autorisés]

    [-] Internet Explorer :

    zonenxt.msn-int.com
    zonenxt.msn-ppe.com
    zone.msn.com
    *.spaces.live.com
    mysearchnow.com
    www.mysearchnow.com
    www.skyrock.com
    searchweb2.com
    www.searchweb2.com
    www.windowslive.fr
    favorites.live.com
    music.orange.fr

    [-] Mozilla Firefox

    host popup 1 www.bioxit.com
    host popup 1 trials.adobe.com
    host popup 1 www.nrjblog.fr
    host popup 1 ivcsoft.free.fr
    host popup 1 www.forumfr.com
    host popup 1 www.t45ol.com
    host popup 1 membres.lycos.fr
    host popup 1 jt.france2.fr
    host cookie 2 popupsponsor.com
    host popup 1 video.msn.com
    host cookie 2 popuptraffic.com
    host popup 1 www.perdudevue-org.net
    host cookie 2 paypopup.com
    host popup 1 video.voila.fr
    host popup 1 messaging.myspace.com
    host popup 1 www.futura-sciences.com
    host popup 1 nrjblog.fr
    host popup 1 www.mynrj.com
    host popup 1 www.infos-du-net.com
    host popup 1 www.01net.com
    host popup 1 webmessenger.msn.com
    host popup 1 mail.google.com
    host popup 1 www.kamini.fr
    host popup 1 www.lexode.com
    host popup 1 www.skyrock.com
    host popup 1 www.clubic.com
    host popup 1 www.emoticons-plus.com
    host popup 1 www.gametronik.com
    host popup 1 info.assedic.fr
    host popup 1 www.mikasounds.com
    host popup 1 www.pandasoftware.fr
    host popup 1 fr.launch.yahoo.com
    host popup 1 www.jeuxvideopc.com

    [-] Suite Mozilla / SeaMonkey

    ___________________________________________________________________________

    [Suggestion nettoyage registre]

    REGEDIT4

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Part browse safe hold"=-

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "up shim comp hold"=-

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
    "mysearchnow.com"=-
    "www.mysearchnow.com"=-

    - Fin du rapport -
    0
  20. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok, je dois y aller

    je te donne la marche à suivre plus tard dans la journée !

    @+
    0
  21. mika903 Messages postés 727 Statut Membre 33
     
    ok j'attend toujours les reponse ?
    0
  • 1
  • 2