Pubs intempestives !!!

Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre -  
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour,
J'ai un problème des fenêtres intempestives s'affichent quand je surf sur internet. J'ai regardé l'article Ouverture de fenêtres internet publicitaires (pop-up) et j'ai installé Navilog1, j'ai fait la recherche et maintenant, je ne sais pas quels sont les fichiers, dans ceux qui ont été trouvés, qui sont à supprimer. Je vous mets le rapport Fixnavi :

Search Navipromo version 3.5.2 commencé le 07/04/2008 à 17:57:45,12

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Shazia"

Mise à jour le 29.03.2008 à 22h00 par IL-MAFIOSO

Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***

InternetGameBox

*** Recherche dossiers dans C:\WINDOWS ***

*** Recherche dossiers dans C:\Program Files ***

C:\Program Files\InternetGameBox trouvé !

*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***

*** Recherche dossiers dans "C:\Documents and Settings\Shazia\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\Shazia\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\Shazia\menudm~1\progra~1" ***

*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUD?~1\PROGRA~1 ***

...\InternetGameBox trouvé !

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Fichier(s) caché(s) :

C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.dat
C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.exe
C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_nav.dat
C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_navps.dat

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\Shazia\locals~1\applic~1" *

Fichiers suspects :

kuyybmfj.exe trouvé !

* Recherche dans "C:\DOCUME~1\Alishane\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\EMULE_~1\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *

*** Recherche fichiers ***

C:\DOCUME~1\ALLUSE~1\Bureau\InternetGameBox.lnk trouvé !
C:\WINDOWS\system32\nvs2.inf trouvé !

*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé !

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :

* Dans "C:\Documents and Settings\Shazia\locals~1\applic~1" :

kuyybmfj.dat trouvé !

* Dans "C:\DOCUME~1\Alishane\locals~1\applic~1" :

* Dans "C:\DOCUME~1\EMULE_~1\locals~1\applic~1" :

* Dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" :

3)Recherche Certificats :

Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :

*** Analyse terminée le 07/04/2008 à 18:12:00,45 ***

Merci beaucoup de votre temps et de votre aide.
Bonne soirée
Configuration: Windows XP
Internet Explorer 7.0

18 réponses

  1. ludsfa Messages postés 1287 Statut Membre 15
     
    bonjour butterfly,
    bien vu.

    1) Double clique sur le raccourci Navilog1 présent sur le bureau et laisse-toi guider.
    Au menu principal, choisis 2 et valide.

    Le fix va t'informer qu'il va alors redémarrer ton PC
    Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts
    Appuie sur une touche comme demandé.
    (si ton PC ne redémarre pas automatiquement, fais le toi même)
    Au redémarrage de ton PC, choisis ta session habituelle.

    Patiente jusqu'au message :
    *** Nettoyage Termine le ..... ***
    Le bloc note va s'ouvrir.
    Sauvegarde le rapport de manière à le retrouver
    Referme le bloc note. Ton bureau va réapparaître

    PS:Si ton bureau ne réapparaît pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
    Tape explorer et valide. Cela te fera apparaître ton bureau

    2) Vas dans Démarrer/panneau de configuration/options internet
    - onglet "Contenu" puis onglet "Certificats" et si tu trouves ceci, en particulier dans "éditeurs approuvés", mais regarde ailleurs :
    electronic-group
    egroup
    Montorgueil
    VIP
    "Sunny Day Design Ltd"
    ooo <<Favorit>>
    Favorit

    Tu les supprimes.

    3) Redémarre normalement et poste le rapport cleannavi.txt
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Merci beaucoup
      Alors, je n'ai trouvé aucun des trucs que tu m'as dit de chercher. J'ai pourtant regardé dans "éditeurs approuvés", "éditeurs non approuvé" et tous les autres onglets. Je n'en ai trouvé aucun !
      Voici le rapport Cleannavi.txt

      Clean Navipromo version 3.5.2 commencé le 07/04/2008 à 18:38:33,96

      Outil exécuté depuis C:\Program Files\navilog1
      Session actuelle : "Shazia"

      Mise à jour le 29.03.2008 à 22h00 par IL-MAFIOSO


      Microsoft Windows XP [version 5.1.2600]
      Internet Explorer : 7.0.5730.11
      Système de fichiers : NTFS

      Mode suppression automatique
      avec prise en charge résultats Catchme et GNS


      *** Creation backups fichiers trouvés par Catchme ***

      Copie vers "C:\Program Files\navilog1\Backupnavi"

      Copie C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.dat réalisée avec succès !
      Copie C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.exe réalisée avec succès !
      Copie C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_nav.dat réalisée avec succès !
      Copie C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_navps.dat réalisée avec succès !

      *** Suppression des fichiers trouvés avec Catchme ***

      C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.dat supprimé !
      C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj.exe supprimé !
      C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_nav.dat supprimé !
      C:\Documents and Settings\Shazia\Local Settings\Application Data\kuyybmfj_navps.dat supprimé !

      ** 2ème passage avec résultats Catchme **

      * Dans C:\WINDOWS\system32 *


      C:\WINDOWS\prefetch\kuyybmfj*.pf trouvé !
      Copie C:\WINDOWS\prefetch\kuyybmfj*.pf réalisée avec succès !
      C:\WINDOWS\prefetch\kuyybmfj*.pf supprimé !

      * Dans "C:\Documents and Settings\Shazia\locals~1\applic~1" *


      *** Suppression avec sauvegardes résultats GenericNaviSearch ***

      * Suppression dans C:\WINDOWS\System32 *


      * Suppression dans "C:\Documents and Settings\Shazia\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\Alishane\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\EMULE_~1\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *



      *** Suppression dossiers dans C:\WINDOWS ***


      *** Suppression dossiers dans C:\Program Files ***

      C:\Program Files\InternetGameBox ...suppression...
      C:\Program Files\InternetGameBox supprimé !


      *** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***


      *** Suppression dossiers dans "C:\Documents and Settings\Shazia\applic~1" ***


      *** Suppression dossiers dans "C:\Documents and Settings\Shazia\locals~1\applic~1" ***


      *** Suppression dossiers dans "C:\Documents and Settings\Shazia\menudm~1\progra~1" ***


      *** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\MENUD?~1\PROGRA~1 ***

      ...\InternetGameBox ...suppression...
      ...\InternetGameBox supprimé !



      *** Suppression fichiers ***

      C:\DOCUME~1\ALLUSE~1\Bureau\InternetGameBox.lnk supprimé !
      C:\WINDOWS\system32\nvs2.inf supprimé !

      *** Suppression fichiers temporaires ***

      Nettoyage contenu C:\WINDOWS\Temp effectué !
      Nettoyage contenu C:\Documents and Settings\Shazia\locals~1\Temp effectué !

      *** Traitement Recherche complémentaire ***
      (Recherche fichiers spécifiques)

      1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

      2)Recherche, création sauvegardes et suppression Heuristique :


      * Dans C:\WINDOWS\system32 *


      * Dans "C:\Documents and Settings\Shazia\locals~1\applic~1" *


      * Dans "C:\DOCUME~1\Alishane\locals~1\applic~1" *


      * Dans "C:\DOCUME~1\EMULE_~1\locals~1\applic~1" *


      * Dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *


      *** Sauvegarde du Registre vers dossier Safebackup ***

      sauvegarde du Registre réalisée avec succès !

      *** Nettoyage Registre ***

      Nettoyage Registre Ok


      *** Certificats ***

      Certificat Egroup supprimé !
      Certificat Electronic-Group supprimé !
      Certificat OOO-Favorit supprimé !
      Certificat Sunny-Day-Design-Ltdt absent !

      *** Nettoyage terminé le 07/04/2008 à 18:46:51,20 ***
      0
  2. ludsfa Messages postés 1287 Statut Membre 15
     
    re,

    Télécharge puis installe Hijackthis (Trend Micro)
    Poste ensuite un rapport dans ta prochaine réponse.
    AIDE : http://www.infos-du-net.com/forum/271838-11-tuto-utiliser-hijackthis
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Voici le rapport Hijackthis :

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 19:10:01, on 07/04/2008
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16608)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
      c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
      c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
      C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
      C:\Program Files\McAfee\MPF\MPFSrv.exe
      C:\Program Files\SiteAdvisor\6253\SAService.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\PROGRA~1\McAfee.com\Agent\mcagent.exe
      C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\WINDOWS\stsystra.exe
      C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
      C:\Program Files\Dell\Media Experience\DMXLauncher.exe
      C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
      C:\WINDOWS\system32\rundll32.exe
      C:\Program Files\RAMpage\RAMpage.exe
      C:\Program Files\Logitech\ImageStudio\LogiTray.exe
      C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
      C:\WINDOWS\system32\LVCOMSX.EXE
      C:\Program Files\Logitech\Video\LogiTray.exe
      C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
      C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe
      C:\PAPA\3.0\Apps\apdproxy.exe
      C:\Program Files\TF1Vision\TF1vision.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\Program Files\Inventel\Gateway\wlancfg.exe
      C:\Program Files\QuickTime\QTTask.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\Program Files\Logitech\Video\FxSvr2.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\Program Files\Digital Line Detect\DLG.exe
      C:\Program Files\WiFiConnector\NintendoWFCReg.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
      C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SYMBIA~1.EXE
      C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SCBAL.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\WINDOWS\system32\NOTEPAD.EXE
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.dell.com/fr-fr
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6253\SiteAdv.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
      O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6253\SiteAdv.dll
      O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
      O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
      O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
      O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
      O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
      O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
      O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
      O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
      O4 - HKLM\..\Run: [RAMpage] "C:\Program Files\RAMpage\RAMpage.exe" U=1 M=50 T=4 D=Y P="C:\Program Files\RAMpage\RAMpageConfig.exe"
      O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
      O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
      O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
      O4 - HKLM\..\Run: [PC Suite for Smartphones] "C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe" /startoptions
      O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\PAPA\3.0\Apps\apdproxy.exe"
      O4 - HKLM\..\Run: [e-TF1] C:\Program Files\TF1Vision\TF1vision.exe
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [Gestionnaire de liaison sans fil] "C:\Program Files\Inventel\Gateway\wlancfg.exe"
      O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
      O4 - HKLM\..\Run: [Store file readme bash] C:\Documents and Settings\All Users\Application Data\city about store file\test shim.exe
      O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
      O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
      O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [LiveThe] C:\DOCUME~1\Shazia\APPLIC~1\SURFPA~1\mapitrayball.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O4 - Global Startup: Digital Line Detect.lnk = ?
      O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
      O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet7_22.dll' missing
      O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
      O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab
      O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
      O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
      O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
      O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangocash.com/cab/Zango/ie/bridge-c8.cab?9b91da394bb089c426c4c8fcb2032040a0984db8ccad09aad24d7ebc200f0941a5b810e6eae0e4827334f18e895434b50ff31e0c2b0e8f858ddc2e736e:e3eb4becbb5c1ba39dd084361d36488e
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
      O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
      O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
      O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
      O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
      O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
      O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
      O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
      O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
      O23 - Service: Service SiteAdvisor (SiteAdvisor Service) - Unknown owner - C:\Program Files\SiteAdvisor\6253\SAService.exe
      0
  3. ludsfa Messages postés 1287 Statut Membre 15
     
    on continue

    Télécharge Lop S&D.exe sur ton Bureau. https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

    * Double-clique dessus pour lancer l'installation
    * Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
    * Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
    * Patiente jusqu'à la fin du scan
    * Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Euh, maintenant je fais quoi ?
      0
  4. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
     
    -----------------------[ Lop S&D 4.1.0-8 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Shazia ] [ "C:\Lop SD" ]
    [ 07/04/2008 | 19:46:46,53 ] [ PC : DCDLQ02J ]
    [ MAJ : 06-04-2008 | 11:07 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [06/02/2008|18:22] C:\DOCUME~1\Alishane\APPLIC~1\.
    [06/02/2008|18:22] C:\DOCUME~1\Alishane\APPLIC~1\..
    [28/02/2008|16:39] C:\DOCUME~1\Alishane\APPLIC~1\Adobe
    [20/08/2004|12:30] C:\DOCUME~1\Alishane\APPLIC~1\desktop.ini
    [24/11/2007|12:28] C:\DOCUME~1\Alishane\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
    [19/07/2007|13:08] C:\DOCUME~1\Alishane\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
    [16/07/2007|21:04] C:\DOCUME~1\Alishane\APPLIC~1\Google
    [20/08/2004|12:41] C:\DOCUME~1\Alishane\APPLIC~1\Identities
    [29/12/2005|11:05] C:\DOCUME~1\Alishane\APPLIC~1\Jasc Software Inc
    [19/07/2007|12:10] C:\DOCUME~1\Alishane\APPLIC~1\Macromedia
    [19/07/2007|16:54] C:\DOCUME~1\Alishane\APPLIC~1\Microsoft
    [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Real
    [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\SiteAdvisor
    [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Sony Ericsson
    [29/12/2005|10:57] C:\DOCUME~1\Alishane\APPLIC~1\Sun
    [06/02/2008|18:39] C:\DOCUME~1\Alishane\APPLIC~1\surf part bows
    [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Teleca
    [29/12/2005|11:03] C:\DOCUME~1\Alishane\APPLIC~1\You've Got Pictures Screensaver

    [19/02/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [19/02/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [20/11/2007|08:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [21/04/2006|01:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [02/05/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
    [30/06/2007|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [21/10/2006|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [06/01/2006|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BullGuard
    [14/02/2008|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file
    [20/08/2004|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [20/04/2006|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [27/10/2006|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [29/12/2005|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [18/10/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [17/04/2006|03:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [21/02/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
    [21/02/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
    [20/01/2007|01:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [30/12/2007|23:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [20/12/2007|00:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [04/01/2006|01:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [05/02/2006|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\RedLeg
    [20/08/2004|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [07/09/2007|00:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SiteAdvisor
    [22/06/2006|17:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [09/06/2007|10:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
    [02/01/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
    [29/12/2005|11:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
    [17/01/2006|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [20/08/2004|12:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [20/08/2004|12:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [29/12/2005|11:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Jasc Software Inc
    [20/08/2004|12:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
    [29/12/2005|11:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

    [27/04/2006|23:40] C:\DOCUME~1\EMULE_~1\APPLIC~1\.
    [27/04/2006|23:40] C:\DOCUME~1\EMULE_~1\APPLIC~1\..
    [20/08/2004|12:30] C:\DOCUME~1\EMULE_~1\APPLIC~1\desktop.ini
    [20/08/2004|12:41] C:\DOCUME~1\EMULE_~1\APPLIC~1\Identities
    [26/03/2006|00:41] C:\DOCUME~1\EMULE_~1\APPLIC~1\Jasc Software Inc
    [24/02/2006|17:13] C:\DOCUME~1\EMULE_~1\APPLIC~1\Media Player Classic
    [17/04/2006|02:53] C:\DOCUME~1\EMULE_~1\APPLIC~1\Microsoft
    [29/12/2005|10:57] C:\DOCUME~1\EMULE_~1\APPLIC~1\Sun
    [29/12/2005|11:03] C:\DOCUME~1\EMULE_~1\APPLIC~1\You've Got Pictures Screensaver

    [21/02/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [21/02/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [21/02/2007|10:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
    [21/02/2006|18:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [04/01/2006|13:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [19/11/2007|01:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\SiteAdvisor

    [20/08/2004|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [20/08/2004|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [20/08/2004|12:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\.
    [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\..
    [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

    [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\.
    [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\..
    [20/11/2007|08:45] C:\DOCUME~1\Shazia\APPLIC~1\Adobe
    [09/06/2007|10:44] C:\DOCUME~1\Shazia\APPLIC~1\AdobeUM
    [14/12/2006|15:27] C:\DOCUME~1\Shazia\APPLIC~1\Ahead
    [15/01/2006|20:25] C:\DOCUME~1\Shazia\APPLIC~1\Apple Computer
    [19/12/2007|23:37] C:\DOCUME~1\Shazia\APPLIC~1\Azureus
    [30/03/2007|22:33] C:\DOCUME~1\Shazia\APPLIC~1\BSplayer
    [08/02/2007|10:26] C:\DOCUME~1\Shazia\APPLIC~1\BSplayer Pro
    [23/01/2007|20:52] C:\DOCUME~1\Shazia\APPLIC~1\Corel
    [08/01/2006|00:08] C:\DOCUME~1\Shazia\APPLIC~1\CyberLink
    [20/08/2004|12:30] C:\DOCUME~1\Shazia\APPLIC~1\desktop.ini
    [05/06/2006|21:10] C:\DOCUME~1\Shazia\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
    [11/06/2006|11:34] C:\DOCUME~1\Shazia\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
    [19/04/2006|15:41] C:\DOCUME~1\Shazia\APPLIC~1\FotoWire
    [05/01/2007|14:08] C:\DOCUME~1\Shazia\APPLIC~1\Google
    [07/01/2006|21:07] C:\DOCUME~1\Shazia\APPLIC~1\Help
    [05/01/2006|22:54] C:\DOCUME~1\Shazia\APPLIC~1\Identities
    [06/02/2006|12:59] C:\DOCUME~1\Shazia\APPLIC~1\Jasc Software Inc
    [14/04/2006|19:29] C:\DOCUME~1\Shazia\APPLIC~1\Lavasoft
    [04/01/2006|16:28] C:\DOCUME~1\Shazia\APPLIC~1\Leadertech
    [10/03/2006|19:22] C:\DOCUME~1\Shazia\APPLIC~1\Macromedia
    [14/02/2006|22:53] C:\DOCUME~1\Shazia\APPLIC~1\Media Player Classic
    [10/04/2007|12:21] C:\DOCUME~1\Shazia\APPLIC~1\Microsoft
    [03/01/2006|22:00] C:\DOCUME~1\Shazia\APPLIC~1\Microsoft Web Folders
    [08/07/2007|15:34] C:\DOCUME~1\Shazia\APPLIC~1\Real
    [04/04/2007|14:51] C:\DOCUME~1\Shazia\APPLIC~1\Screenshot Sender
    [01/03/2008|11:41] C:\DOCUME~1\Shazia\APPLIC~1\SiteAdvisor
    [04/01/2006|16:30] C:\DOCUME~1\Shazia\APPLIC~1\Sonic
    [09/06/2007|10:36] C:\DOCUME~1\Shazia\APPLIC~1\Sony Ericsson
    [29/12/2005|10:57] C:\DOCUME~1\Shazia\APPLIC~1\Sun
    [15/03/2008|14:05] C:\DOCUME~1\Shazia\APPLIC~1\surf part bows
    [09/06/2007|11:26] C:\DOCUME~1\Shazia\APPLIC~1\Teleca
    [01/03/2006|20:31] C:\DOCUME~1\Shazia\APPLIC~1\Template
    [10/04/2007|23:43] C:\DOCUME~1\Shazia\APPLIC~1\U3
    [14/04/2006|21:07] C:\DOCUME~1\Shazia\APPLIC~1\Ulead Systems
    [04/11/2007|10:48] C:\DOCUME~1\Shazia\APPLIC~1\vlc
    [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\Yahoo!
    [29/12/2005|11:03] C:\DOCUME~1\Shazia\APPLIC~1\You've Got Pictures Screensaver

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [07/04/2008 19:00][--ah-----] C:\WINDOWS\tasks\AFCA0E8B918580F7.job
    [07/04/2008 16:46][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{A9989D15-2FA0-46B9-88F2-9E3B1A2E96BA}.job
    [15/12/2007 02:16][--a------] C:\WINDOWS\tasks\McDefragTask.job
    [01/01/2008 02:00][--a------] C:\WINDOWS\tasks\McQcTask.job
    [05/04/2008 22:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [05/01/2006 00:45][--a------] C:\WINDOWS\tasks\Rappel d'abonnement 1 auprŠs de l'ISP.job
    [07/04/2008 18:44][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [07/04/2008|19:09] C:\Program Files\.
    [07/04/2008|19:09] C:\Program Files\..
    [21/04/2006|14:38] C:\Program Files\Adobe
    [16/12/2006|15:05] C:\Program Files\Ahead
    [29/03/2008|17:05] C:\Program Files\Ankama Games
    [26/09/2007|22:13] C:\Program Files\Apple Software Update
    [29/12/2005|11:00] C:\Program Files\ATI Technologies
    [20/02/2007|16:49] C:\Program Files\Azureus
    [20/02/2007|16:47] C:\Program Files\BitComet
    [04/01/2006|02:06] C:\Program Files\Canon
    [22/04/2006|00:22] C:\Program Files\CDBurnerXP Pro 3
    [02/02/2008|14:50] C:\Program Files\Circle Developement
    [29/12/2005|10:58] C:\Program Files\CONEXANT
    [11/02/2007|17:30] C:\Program Files\Corel
    [04/01/2006|16:11] C:\Program Files\Crack Ulead Photoimpact Xl v8.5 Fr
    [29/12/2005|11:00] C:\Program Files\CyberLink
    [10/02/2008|16:05] C:\Program Files\Datel
    [04/02/2006|16:44] C:\Program Files\decotransforme
    [19/04/2006|15:31] C:\Program Files\Dell
    [29/12/2005|11:05] C:\Program Files\Dell Inc
    [29/12/2005|11:00] C:\Program Files\Digital Line Detect
    [19/04/2006|15:41] C:\Program Files\directx
    [19/04/2006|15:31] C:\Program Files\DivX
    [04/03/2008|12:14] C:\Program Files\Dofus
    [14/04/2006|21:04] C:\Program Files\dp-uga5f
    [08/01/2006|18:41] C:\Program Files\EA GAMES
    [02/01/2007|13:06] C:\Program Files\eMule
    [13/02/2008|18:00] C:\Program Files\Fichiers communs
    [04/12/2007|09:35] C:\Program Files\FlashGet
    [19/04/2006|15:31] C:\Program Files\FunWebProducts
    [02/04/2007|22:27] C:\Program Files\FXIWIN19
    [11/02/2007|17:31] C:\Program Files\GIMP-2.0
    [08/07/2007|14:26] C:\Program Files\Google
    [04/06/2006|14:37] C:\Program Files\Hewlett-Packard
    [18/04/2007|16:26] C:\Program Files\Infogrames
    [02/02/2008|19:30] C:\Program Files\InstallShield Installation Information
    [29/12/2005|11:00] C:\Program Files\Intel
    [13/02/2008|18:51] C:\Program Files\Internet Explorer
    [09/06/2007|10:36] C:\Program Files\Intuwave
    [26/09/2007|16:14] C:\Program Files\Inventel
    [17/11/2007|23:35] C:\Program Files\iPod
    [17/11/2007|23:35] C:\Program Files\iTunes
    [29/12/2005|11:05] C:\Program Files\Jasc Software Inc
    [18/12/2007|21:03] C:\Program Files\Java
    [14/02/2006|22:50] C:\Program Files\K-Lite Codec Pack
    [18/10/2007|11:45] C:\Program Files\Lavasoft
    [29/12/2005|11:03] C:\Program Files\Learn2.com
    [14/11/2007|21:07] C:\Program Files\LimeWire
    [13/06/2006|19:44] C:\Program Files\Logitech
    [21/02/2008|20:49] C:\Program Files\McAfee
    [21/02/2007|11:31] C:\Program Files\McAfee.com
    [02/11/2007|21:17] C:\Program Files\MediaCoder
    [29/12/2005|10:57] C:\Program Files\Messenger
    [02/02/2008|14:50] C:\Program Files\Messenger Plus! Live
    [23/09/2006|21:00] C:\Program Files\Micro Application
    [03/01/2006|22:00] C:\Program Files\microsoft frontpage
    [19/02/2006|01:34] C:\Program Files\Microsoft Office
    [19/06/2006|12:57] C:\Program Files\Microsoft Works
    [19/04/2006|15:31] C:\Program Files\Modem Helper
    [20/08/2004|12:35] C:\Program Files\Movie Maker
    [21/02/2007|11:20] C:\Program Files\Mozilla Firefox
    [20/08/2004|12:34] C:\Program Files\MSN
    [20/08/2004|12:34] C:\Program Files\MSN Gaming Zone
    [02/02/2008|14:50] C:\Program Files\MSN Messenger
    [19/11/2006|18:01] C:\Program Files\MSXML 4.0
    [07/04/2008|18:46] C:\Program Files\Navilog1
    [20/08/2004|12:35] C:\Program Files\NetMeeting
    [29/12/2005|11:00] C:\Program Files\NetWaiting
    [19/04/2006|15:28] C:\Program Files\Odebit
    [20/08/2004|12:34] C:\Program Files\Online Services
    [13/06/2007|13:27] C:\Program Files\Outlook Express
    [02/01/2007|13:10] C:\Program Files\PCFriendly
    [16/04/2007|06:36] C:\Program Files\Picasa2
    [17/11/2007|23:32] C:\Program Files\QuickTime
    [05/02/2006|13:37] C:\Program Files\radio.blog.2.5
    [05/01/2006|19:18] C:\Program Files\RAMpage
    [05/01/2006|19:18] C:\Program Files\rampg16
    [29/12/2005|11:02] C:\Program Files\Real
    [07/01/2006|13:41] C:\Program Files\Samir Software
    [20/08/2004|12:35] C:\Program Files\Services en ligne
    [29/12/2005|10:58] C:\Program Files\Sigmatel
    [19/12/2007|07:57] C:\Program Files\SiteAdvisor
    [23/01/2008|17:36] C:\Program Files\Slayers Online
    [02/02/2008|19:30] C:\Program Files\Sony
    [09/06/2007|12:03] C:\Program Files\Sony Ericsson
    [06/04/2008|14:27] C:\Program Files\Spyware-Secure
    [14/02/2008|19:59] C:\Program Files\surf part bows
    [09/06/2007|10:36] C:\Program Files\Symbian
    [07/07/2007|08:26] C:\Program Files\TF1Vision
    [31/03/2007|17:46] C:\Program Files\TGTSoft
    [07/04/2008|19:09] C:\Program Files\Trend Micro
    [19/04/2006|15:31] C:\Program Files\Ulead Systems
    [19/12/2006|20:06] C:\Program Files\Uninstall Information
    [27/01/2008|21:32] C:\Program Files\Veoh Networks
    [04/11/2007|10:48] C:\Program Files\VideoLAN
    [29/12/2005|11:03] C:\Program Files\Viewpoint
    [30/03/2007|22:33] C:\Program Files\Webteh
    [21/07/2007|17:38] C:\Program Files\WiFiConnector
    [02/11/2007|00:48] C:\Program Files\WinAVI MP4 Converter
    [17/01/2006|23:02] C:\Program Files\Windows Journal Viewer
    [09/06/2007|07:49] C:\Program Files\Windows Live
    [04/01/2006|15:54] C:\Program Files\Windows Media Components
    [07/12/2006|23:49] C:\Program Files\Windows Media Connect 2
    [07/12/2006|23:49] C:\Program Files\Windows Media Player
    [20/08/2004|12:34] C:\Program Files\Windows NT
    [17/04/2006|05:17] C:\Program Files\WinRAR
    [27/01/2008|13:20] C:\Program Files\World of Warcraft
    [23/12/2007|15:54] C:\Program Files\World of Warcraft.1f07518f.temp
    [29/12/2007|16:29] C:\Program Files\World of Warcraft.5397f455.temp
    [22/12/2007|21:27] C:\Program Files\World of Warcraft.temp
    [20/08/2004|12:37] C:\Program Files\xerox
    [21/02/2006|07:19] C:\Program Files\Xilisoft
    [19/02/2008|22:51] C:\Program Files\Yahoo!

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [13/02/2008|18:00] C:\Program Files\Fichiers communs\.
    [13/02/2008|18:00] C:\Program Files\Fichiers communs\..
    [17/04/2006|03:00] C:\Program Files\Fichiers communs\Adobe
    [17/04/2006|03:02] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [16/12/2006|15:05] C:\Program Files\Fichiers communs\Ahead
    [02/05/2006|12:51] C:\Program Files\Fichiers communs\AOL
    [30/06/2007|14:23] C:\Program Files\Fichiers communs\Apple
    [03/01/2008|15:31] C:\Program Files\Fichiers communs\Blizzard Entertainment
    [17/10/2007|19:19] C:\Program Files\Fichiers communs\Carlson
    [03/01/2006|22:01] C:\Program Files\Fichiers communs\Designer
    [11/11/2006|13:28] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
    [19/04/2006|15:41] C:\Program Files\Fichiers communs\FotoWire
    [09/04/2006|16:47] C:\Program Files\Fichiers communs\GTK
    [04/06/2006|14:38] C:\Program Files\Fichiers communs\Hewlett-Packard
    [05/01/2006|18:17] C:\Program Files\Fichiers communs\InstallShield
    [29/12/2005|10:56] C:\Program Files\Fichiers communs\Java
    [13/06/2006|19:44] C:\Program Files\Fichiers communs\Logitech
    [16/11/2007|19:22] C:\Program Files\Fichiers communs\McAfee
    [17/09/2006|18:44] C:\Program Files\Fichiers communs\Microsoft Shared
    [20/08/2004|12:35] C:\Program Files\Fichiers communs\MSSoap
    [29/12/2005|11:02] C:\Program Files\Fichiers communs\Nullsoft
    [08/07/2007|15:30] C:\Program Files\Fichiers communs\Real
    [13/02/2008|18:00] C:\Program Files\Fichiers communs\Scanner
    [20/08/2004|12:35] C:\Program Files\Fichiers communs\Services
    [19/04/2006|15:24] C:\Program Files\Fichiers communs\Sonic Shared
    [09/06/2007|10:36] C:\Program Files\Fichiers communs\Sony Ericsson Shared
    [20/08/2004|12:30] C:\Program Files\Fichiers communs\SpeechEngines
    [13/06/2007|13:27] C:\Program Files\Fichiers communs\System
    [09/06/2007|10:36] C:\Program Files\Fichiers communs\Teleca Shared
    [19/04/2006|15:26] C:\Program Files\Fichiers communs\Ulead Systems
    [19/04/2006|15:31] C:\Program Files\Fichiers communs\Vbox
    [18/10/2007|11:45] C:\Program Files\Fichiers communs\Wise Installation Wizard
    [08/07/2007|15:30] C:\Program Files\Fichiers communs\xing shared

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file\test shim.exe
    C:\Program Files\Circle Developement
    C:\Program Files\Circle Developement\Uninstall.exe
    C:\WINDOWS\Tasks\AFCA0E8B918580F7.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Store file readme bash"="C:\\Documents and Settings\\All Users\\Application Data\\city about store file\\test shim.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 72 ( 70 ## added by CiD )

    /!\ 1 Not 127.0.0.1 !!

    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-04-07 19:47:54
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:13][Doss:2] C:\DOCUME~1\Shazia\LOCALS~1\Temp
    /!\ [Fich:2459][Doss:0] C:\DOCUME~1\Shazia\Cookies
    /!\ [Fich:9165][Doss:51] C:\DOCUME~1\Shazia\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 19:49:40,01 ]----------------------
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. ludsfa Messages postés 1287 Statut Membre 15
     
    on continue,

    On supprime

    Relance Lop S&D

    * Choisis cette fois ci l'Option 2 (Suppression)
    * Ne ferme pas la fenêtre lors de la suppression !
    * Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Voici le rapport


      -----------------------[ Lop S&D 4.1.0-8 XP/Vista ]---------------------

      [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
      [ USER : Shazia ] [ "C:\Lop SD" ]
      [ 07/04/2008 | 20:24:06,68 ] [ PC : DCDLQ02J ]
      [ MAJ : 06-04-2008 | 11:07 ]

      \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

      Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file\test shim.exe
      Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
      Supprimé! - C:\WINDOWS\Tasks\AFCA0E8B918580F7.job
      Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file
      Supprimé! - C:\Program Files\Circle Developement
      Restauré! - Fichier Hosts

      \\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////

      Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file\test shim.exe
      Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\city about store file

      //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


      -------------[ Listing des dossiers dans Application Data ]------------

      [06/02/2008|18:22] C:\DOCUME~1\Alishane\APPLIC~1\.
      [06/02/2008|18:22] C:\DOCUME~1\Alishane\APPLIC~1\..
      [28/02/2008|16:39] C:\DOCUME~1\Alishane\APPLIC~1\Adobe
      [20/08/2004|12:30] C:\DOCUME~1\Alishane\APPLIC~1\desktop.ini
      [24/11/2007|12:28] C:\DOCUME~1\Alishane\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
      [19/07/2007|13:08] C:\DOCUME~1\Alishane\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
      [16/07/2007|21:04] C:\DOCUME~1\Alishane\APPLIC~1\Google
      [20/08/2004|12:41] C:\DOCUME~1\Alishane\APPLIC~1\Identities
      [29/12/2005|11:05] C:\DOCUME~1\Alishane\APPLIC~1\Jasc Software Inc
      [19/07/2007|12:10] C:\DOCUME~1\Alishane\APPLIC~1\Macromedia
      [19/07/2007|16:54] C:\DOCUME~1\Alishane\APPLIC~1\Microsoft
      [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Real
      [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\SiteAdvisor
      [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Sony Ericsson
      [29/12/2005|10:57] C:\DOCUME~1\Alishane\APPLIC~1\Sun
      [06/02/2008|18:39] C:\DOCUME~1\Alishane\APPLIC~1\surf part bows
      [16/07/2007|00:10] C:\DOCUME~1\Alishane\APPLIC~1\Teleca
      [29/12/2005|11:03] C:\DOCUME~1\Alishane\APPLIC~1\You've Got Pictures Screensaver

      [07/04/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
      [07/04/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
      [20/11/2007|08:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
      [21/04/2006|01:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
      [02/05/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
      [30/06/2007|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
      [21/10/2006|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
      [06/01/2006|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BullGuard
      [20/08/2004|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
      [20/04/2006|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
      [27/10/2006|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
      [29/12/2005|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
      [18/10/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
      [17/04/2006|03:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
      [21/02/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
      [21/02/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
      [20/01/2007|01:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
      [30/12/2007|23:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
      [20/12/2007|00:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
      [04/01/2006|01:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
      [05/02/2006|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\RedLeg
      [20/08/2004|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
      [07/09/2007|00:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SiteAdvisor
      [22/06/2006|17:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
      [09/06/2007|10:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
      [02/01/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
      [29/12/2005|11:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
      [17/01/2006|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

      [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
      [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
      [20/08/2004|12:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
      [20/08/2004|12:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
      [29/12/2005|11:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Jasc Software Inc
      [20/08/2004|12:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
      [29/12/2005|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
      [29/12/2005|11:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

      [27/04/2006|23:40] C:\DOCUME~1\EMULE_~1\APPLIC~1\.
      [27/04/2006|23:40] C:\DOCUME~1\EMULE_~1\APPLIC~1\..
      [20/08/2004|12:30] C:\DOCUME~1\EMULE_~1\APPLIC~1\desktop.ini
      [20/08/2004|12:41] C:\DOCUME~1\EMULE_~1\APPLIC~1\Identities
      [26/03/2006|00:41] C:\DOCUME~1\EMULE_~1\APPLIC~1\Jasc Software Inc
      [24/02/2006|17:13] C:\DOCUME~1\EMULE_~1\APPLIC~1\Media Player Classic
      [17/04/2006|02:53] C:\DOCUME~1\EMULE_~1\APPLIC~1\Microsoft
      [29/12/2005|10:57] C:\DOCUME~1\EMULE_~1\APPLIC~1\Sun
      [29/12/2005|11:03] C:\DOCUME~1\EMULE_~1\APPLIC~1\You've Got Pictures Screensaver

      [21/02/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
      [21/02/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
      [21/02/2007|10:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
      [21/02/2006|18:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
      [04/01/2006|13:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
      [19/11/2007|01:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\SiteAdvisor

      [20/08/2004|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
      [20/08/2004|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
      [20/08/2004|12:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

      [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\.
      [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\..
      [03/01/2006|22:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

      [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\.
      [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\..
      [20/11/2007|08:45] C:\DOCUME~1\Shazia\APPLIC~1\Adobe
      [09/06/2007|10:44] C:\DOCUME~1\Shazia\APPLIC~1\AdobeUM
      [14/12/2006|15:27] C:\DOCUME~1\Shazia\APPLIC~1\Ahead
      [15/01/2006|20:25] C:\DOCUME~1\Shazia\APPLIC~1\Apple Computer
      [19/12/2007|23:37] C:\DOCUME~1\Shazia\APPLIC~1\Azureus
      [30/03/2007|22:33] C:\DOCUME~1\Shazia\APPLIC~1\BSplayer
      [08/02/2007|10:26] C:\DOCUME~1\Shazia\APPLIC~1\BSplayer Pro
      [23/01/2007|20:52] C:\DOCUME~1\Shazia\APPLIC~1\Corel
      [08/01/2006|00:08] C:\DOCUME~1\Shazia\APPLIC~1\CyberLink
      [20/08/2004|12:30] C:\DOCUME~1\Shazia\APPLIC~1\desktop.ini
      [05/06/2006|21:10] C:\DOCUME~1\Shazia\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
      [11/06/2006|11:34] C:\DOCUME~1\Shazia\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web
      [19/04/2006|15:41] C:\DOCUME~1\Shazia\APPLIC~1\FotoWire
      [05/01/2007|14:08] C:\DOCUME~1\Shazia\APPLIC~1\Google
      [07/01/2006|21:07] C:\DOCUME~1\Shazia\APPLIC~1\Help
      [05/01/2006|22:54] C:\DOCUME~1\Shazia\APPLIC~1\Identities
      [06/02/2006|12:59] C:\DOCUME~1\Shazia\APPLIC~1\Jasc Software Inc
      [14/04/2006|19:29] C:\DOCUME~1\Shazia\APPLIC~1\Lavasoft
      [04/01/2006|16:28] C:\DOCUME~1\Shazia\APPLIC~1\Leadertech
      [10/03/2006|19:22] C:\DOCUME~1\Shazia\APPLIC~1\Macromedia
      [14/02/2006|22:53] C:\DOCUME~1\Shazia\APPLIC~1\Media Player Classic
      [10/04/2007|12:21] C:\DOCUME~1\Shazia\APPLIC~1\Microsoft
      [03/01/2006|22:00] C:\DOCUME~1\Shazia\APPLIC~1\Microsoft Web Folders
      [08/07/2007|15:34] C:\DOCUME~1\Shazia\APPLIC~1\Real
      [04/04/2007|14:51] C:\DOCUME~1\Shazia\APPLIC~1\Screenshot Sender
      [01/03/2008|11:41] C:\DOCUME~1\Shazia\APPLIC~1\SiteAdvisor
      [04/01/2006|16:30] C:\DOCUME~1\Shazia\APPLIC~1\Sonic
      [09/06/2007|10:36] C:\DOCUME~1\Shazia\APPLIC~1\Sony Ericsson
      [29/12/2005|10:57] C:\DOCUME~1\Shazia\APPLIC~1\Sun
      [15/03/2008|14:05] C:\DOCUME~1\Shazia\APPLIC~1\surf part bows
      [09/06/2007|11:26] C:\DOCUME~1\Shazia\APPLIC~1\Teleca
      [01/03/2006|20:31] C:\DOCUME~1\Shazia\APPLIC~1\Template
      [10/04/2007|23:43] C:\DOCUME~1\Shazia\APPLIC~1\U3
      [14/04/2006|21:07] C:\DOCUME~1\Shazia\APPLIC~1\Ulead Systems
      [04/11/2007|10:48] C:\DOCUME~1\Shazia\APPLIC~1\vlc
      [13/02/2008|17:59] C:\DOCUME~1\Shazia\APPLIC~1\Yahoo!
      [29/12/2005|11:03] C:\DOCUME~1\Shazia\APPLIC~1\You've Got Pictures Screensaver

      ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

      [07/04/2008 16:46][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{A9989D15-2FA0-46B9-88F2-9E3B1A2E96BA}.job
      [15/12/2007 02:16][--a------] C:\WINDOWS\tasks\McDefragTask.job
      [01/01/2008 02:00][--a------] C:\WINDOWS\tasks\McQcTask.job
      [05/04/2008 22:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [05/01/2006 00:45][--a------] C:\WINDOWS\tasks\Rappel d'abonnement 1 auprŠs de l'ISP.job
      [07/04/2008 18:44][--ah-----] C:\WINDOWS\tasks\SA.DAT
      [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

      ---------------[ Listing des dossiers dans C:\Program Files ]--------------

      [07/04/2008|20:24] C:\Program Files\.
      [07/04/2008|20:24] C:\Program Files\..
      [21/04/2006|14:38] C:\Program Files\Adobe
      [16/12/2006|15:05] C:\Program Files\Ahead
      [29/03/2008|17:05] C:\Program Files\Ankama Games
      [26/09/2007|22:13] C:\Program Files\Apple Software Update
      [29/12/2005|11:00] C:\Program Files\ATI Technologies
      [20/02/2007|16:49] C:\Program Files\Azureus
      [20/02/2007|16:47] C:\Program Files\BitComet
      [04/01/2006|02:06] C:\Program Files\Canon
      [22/04/2006|00:22] C:\Program Files\CDBurnerXP Pro 3
      [29/12/2005|10:58] C:\Program Files\CONEXANT
      [11/02/2007|17:30] C:\Program Files\Corel
      [04/01/2006|16:11] C:\Program Files\Crack Ulead Photoimpact Xl v8.5 Fr
      [29/12/2005|11:00] C:\Program Files\CyberLink
      [10/02/2008|16:05] C:\Program Files\Datel
      [04/02/2006|16:44] C:\Program Files\decotransforme
      [19/04/2006|15:31] C:\Program Files\Dell
      [29/12/2005|11:05] C:\Program Files\Dell Inc
      [29/12/2005|11:00] C:\Program Files\Digital Line Detect
      [19/04/2006|15:41] C:\Program Files\directx
      [19/04/2006|15:31] C:\Program Files\DivX
      [04/03/2008|12:14] C:\Program Files\Dofus
      [14/04/2006|21:04] C:\Program Files\dp-uga5f
      [08/01/2006|18:41] C:\Program Files\EA GAMES
      [02/01/2007|13:06] C:\Program Files\eMule
      [13/02/2008|18:00] C:\Program Files\Fichiers communs
      [04/12/2007|09:35] C:\Program Files\FlashGet
      [19/04/2006|15:31] C:\Program Files\FunWebProducts
      [02/04/2007|22:27] C:\Program Files\FXIWIN19
      [11/02/2007|17:31] C:\Program Files\GIMP-2.0
      [08/07/2007|14:26] C:\Program Files\Google
      [04/06/2006|14:37] C:\Program Files\Hewlett-Packard
      [18/04/2007|16:26] C:\Program Files\Infogrames
      [02/02/2008|19:30] C:\Program Files\InstallShield Installation Information
      [29/12/2005|11:00] C:\Program Files\Intel
      [13/02/2008|18:51] C:\Program Files\Internet Explorer
      [09/06/2007|10:36] C:\Program Files\Intuwave
      [26/09/2007|16:14] C:\Program Files\Inventel
      [17/11/2007|23:35] C:\Program Files\iPod
      [17/11/2007|23:35] C:\Program Files\iTunes
      [29/12/2005|11:05] C:\Program Files\Jasc Software Inc
      [18/12/2007|21:03] C:\Program Files\Java
      [14/02/2006|22:50] C:\Program Files\K-Lite Codec Pack
      [18/10/2007|11:45] C:\Program Files\Lavasoft
      [29/12/2005|11:03] C:\Program Files\Learn2.com
      [14/11/2007|21:07] C:\Program Files\LimeWire
      [13/06/2006|19:44] C:\Program Files\Logitech
      [21/02/2008|20:49] C:\Program Files\McAfee
      [21/02/2007|11:31] C:\Program Files\McAfee.com
      [02/11/2007|21:17] C:\Program Files\MediaCoder
      [29/12/2005|10:57] C:\Program Files\Messenger
      [02/02/2008|14:50] C:\Program Files\Messenger Plus! Live
      [23/09/2006|21:00] C:\Program Files\Micro Application
      [03/01/2006|22:00] C:\Program Files\microsoft frontpage
      [19/02/2006|01:34] C:\Program Files\Microsoft Office
      [19/06/2006|12:57] C:\Program Files\Microsoft Works
      [19/04/2006|15:31] C:\Program Files\Modem Helper
      [20/08/2004|12:35] C:\Program Files\Movie Maker
      [21/02/2007|11:20] C:\Program Files\Mozilla Firefox
      [20/08/2004|12:34] C:\Program Files\MSN
      [20/08/2004|12:34] C:\Program Files\MSN Gaming Zone
      [02/02/2008|14:50] C:\Program Files\MSN Messenger
      [19/11/2006|18:01] C:\Program Files\MSXML 4.0
      [07/04/2008|18:46] C:\Program Files\Navilog1
      [20/08/2004|12:35] C:\Program Files\NetMeeting
      [29/12/2005|11:00] C:\Program Files\NetWaiting
      [19/04/2006|15:28] C:\Program Files\Odebit
      [20/08/2004|12:34] C:\Program Files\Online Services
      [13/06/2007|13:27] C:\Program Files\Outlook Express
      [02/01/2007|13:10] C:\Program Files\PCFriendly
      [16/04/2007|06:36] C:\Program Files\Picasa2
      [17/11/2007|23:32] C:\Program Files\QuickTime
      [05/02/2006|13:37] C:\Program Files\radio.blog.2.5
      [05/01/2006|19:18] C:\Program Files\RAMpage
      [05/01/2006|19:18] C:\Program Files\rampg16
      [29/12/2005|11:02] C:\Program Files\Real
      [07/01/2006|13:41] C:\Program Files\Samir Software
      [20/08/2004|12:35] C:\Program Files\Services en ligne
      [29/12/2005|10:58] C:\Program Files\Sigmatel
      [19/12/2007|07:57] C:\Program Files\SiteAdvisor
      [23/01/2008|17:36] C:\Program Files\Slayers Online
      [02/02/2008|19:30] C:\Program Files\Sony
      [09/06/2007|12:03] C:\Program Files\Sony Ericsson
      [06/04/2008|14:27] C:\Program Files\Spyware-Secure
      [14/02/2008|19:59] C:\Program Files\surf part bows
      [09/06/2007|10:36] C:\Program Files\Symbian
      [07/07/2007|08:26] C:\Program Files\TF1Vision
      [31/03/2007|17:46] C:\Program Files\TGTSoft
      [07/04/2008|19:09] C:\Program Files\Trend Micro
      [19/04/2006|15:31] C:\Program Files\Ulead Systems
      [19/12/2006|20:06] C:\Program Files\Uninstall Information
      [27/01/2008|21:32] C:\Program Files\Veoh Networks
      [04/11/2007|10:48] C:\Program Files\VideoLAN
      [29/12/2005|11:03] C:\Program Files\Viewpoint
      [30/03/2007|22:33] C:\Program Files\Webteh
      [21/07/2007|17:38] C:\Program Files\WiFiConnector
      [02/11/2007|00:48] C:\Program Files\WinAVI MP4 Converter
      [17/01/2006|23:02] C:\Program Files\Windows Journal Viewer
      [09/06/2007|07:49] C:\Program Files\Windows Live
      [04/01/2006|15:54] C:\Program Files\Windows Media Components
      [07/12/2006|23:49] C:\Program Files\Windows Media Connect 2
      [07/12/2006|23:49] C:\Program Files\Windows Media Player
      [20/08/2004|12:34] C:\Program Files\Windows NT
      [17/04/2006|05:17] C:\Program Files\WinRAR
      [27/01/2008|13:20] C:\Program Files\World of Warcraft
      [23/12/2007|15:54] C:\Program Files\World of Warcraft.1f07518f.temp
      [29/12/2007|16:29] C:\Program Files\World of Warcraft.5397f455.temp
      [22/12/2007|21:27] C:\Program Files\World of Warcraft.temp
      [20/08/2004|12:37] C:\Program Files\xerox
      [21/02/2006|07:19] C:\Program Files\Xilisoft
      [19/02/2008|22:51] C:\Program Files\Yahoo!

      ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

      [13/02/2008|18:00] C:\Program Files\Fichiers communs\.
      [13/02/2008|18:00] C:\Program Files\Fichiers communs\..
      [17/04/2006|03:00] C:\Program Files\Fichiers communs\Adobe
      [17/04/2006|03:02] C:\Program Files\Fichiers communs\Adobe Systems Shared
      [16/12/2006|15:05] C:\Program Files\Fichiers communs\Ahead
      [02/05/2006|12:51] C:\Program Files\Fichiers communs\AOL
      [30/06/2007|14:23] C:\Program Files\Fichiers communs\Apple
      [03/01/2008|15:31] C:\Program Files\Fichiers communs\Blizzard Entertainment
      [17/10/2007|19:19] C:\Program Files\Fichiers communs\Carlson
      [03/01/2006|22:01] C:\Program Files\Fichiers communs\Designer
      [11/11/2006|13:28] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
      [19/04/2006|15:41] C:\Program Files\Fichiers communs\FotoWire
      [09/04/2006|16:47] C:\Program Files\Fichiers communs\GTK
      [04/06/2006|14:38] C:\Program Files\Fichiers communs\Hewlett-Packard
      [05/01/2006|18:17] C:\Program Files\Fichiers communs\InstallShield
      [29/12/2005|10:56] C:\Program Files\Fichiers communs\Java
      [13/06/2006|19:44] C:\Program Files\Fichiers communs\Logitech
      [16/11/2007|19:22] C:\Program Files\Fichiers communs\McAfee
      [17/09/2006|18:44] C:\Program Files\Fichiers communs\Microsoft Shared
      [20/08/2004|12:35] C:\Program Files\Fichiers communs\MSSoap
      [29/12/2005|11:02] C:\Program Files\Fichiers communs\Nullsoft
      [08/07/2007|15:30] C:\Program Files\Fichiers communs\Real
      [13/02/2008|18:00] C:\Program Files\Fichiers communs\Scanner
      [20/08/2004|12:35] C:\Program Files\Fichiers communs\Services
      [19/04/2006|15:24] C:\Program Files\Fichiers communs\Sonic Shared
      [09/06/2007|10:36] C:\Program Files\Fichiers communs\Sony Ericsson Shared
      [20/08/2004|12:30] C:\Program Files\Fichiers communs\SpeechEngines
      [13/06/2007|13:27] C:\Program Files\Fichiers communs\System
      [09/06/2007|10:36] C:\Program Files\Fichiers communs\Teleca Shared
      [19/04/2006|15:26] C:\Program Files\Fichiers communs\Ulead Systems
      [19/04/2006|15:31] C:\Program Files\Fichiers communs\Vbox
      [18/10/2007|11:45] C:\Program Files\Fichiers communs\Wise Installation Wizard
      [08/07/2007|15:30] C:\Program Files\Fichiers communs\xing shared

      ----------------------[ Recherche avec S_Lop ]---------------------

      Aucun fichier / dossier Lop trouvé !

      -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

      Aucun fichier / dossier Lop trouvé !

      ----------------------[ Verification du Registre ]----------------------

      ..... OK !

      --------------------[ Verification du fichier Hosts ]---------------------

      Fichier Hosts PROPRE


      ----------------[ Recherche de fichiers avec Catchme ]-----------------

      catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-04-07 20:25:13
      Windows 5.1.2600 Service Pack 2 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 0

      --------------------[ Recherche d'autres infections ]---------------------

      Aucune autre infection trouvée !

      /!\ [Fich:11][Doss:2] C:\DOCUME~1\Shazia\LOCALS~1\Temp
      /!\ [Fich:2459][Doss:0] C:\DOCUME~1\Shazia\Cookies
      /!\ [Fich:9174][Doss:51] C:\DOCUME~1\Shazia\LOCALS~1\TEMPOR~1\content.IE5

      --------------------[ Fin du rapport a 20:26:31,42 ]----------------------


      J'attends tes ordres !!! ^_^
      0
  7. ludsfa Messages postés 1287 Statut Membre 15
     
    on continue,

    télécharge BTFix 1.017 (de bibi26) : http://cluster1.easy-hebergement.net/

    * Décompresse l' archive sur ton Bureau.
    * Ouvre le dossier BTFix
    * Double clique sur BTFix.exe
    * Clique sur Rechercher.
    * Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Je n'arrive pas à ouvrir ton site, mon anti virus me l'interdit... Est-ce que tu peux me mettre le lien du fichier .zip directement ou alors y a-t-il un autre site web ?
      0
  8. ludsfa Messages postés 1287 Statut Membre 15
     
    non ce que tu fais tu désactive ton antivirus.
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Malgré le fait que je désactive l'antivirus, la page ne veut pas s'afficher...
      0
  9. ludsfa Messages postés 1287 Statut Membre 15
     
    paris butterfly on à bientôt finit .
    désactive tes protections résidente antivirus .
    Télécharge BTfix:http://cluster1.easy-hebergement.net/
    et suis les instructions du message précédent.

    normalement tu n'as plus de pub.
    Mais il reste une infection toolbar qui n'est pas à prendre à la légère car elle génère des pubs.
    fais l'analyse et ensuite on en à plus pour longtemp.
    Si vraiment tu as un soucis dis le moi.
    ludo
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Ok, j'ai réussi à avoir le fichier zip avec mon autre ordi et je l'ai envoyé ici, enfin bon, la galère. Je fais la manip et te tiens au courant.
      0
  10. ludsfa Messages postés 1287 Statut Membre 15
     
    attend je t'envois un autre lien et tu suis la procédure .

    http://www.infos-du-net.com/telecharger/BTFix,0305-10960.html
    0
  11. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
     
    Et voici le rapport !

    BTFix 1.094 (par bibi26) - 07/04/2008 22:24:31 - Analyse
    Lancé depuis C:\Documents and Settings\Shazia\Bureau\BTFix\BTFix\BTFix.exe

    ---> Fichiers/Dossiers trouvés

    - C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.15.inf
    - C:\Program Files\FunWebProducts\

    ---> Analyse terminée le 07/04/2008 22:24:32
    0
  12. ludsfa Messages postés 1287 Statut Membre 15
     
    Note comment démarrer en Mode sans échec. Attention tu n' as pas accès à Internet dans ce mode, note bien ce que tu as à faire.

    * Démarre l' ordinateur.
    * Une fois le chargement du BIOS terminé, il y a un écran noir.
    * Appuie sur la touche F8 ou F5 à répétition jusqu' à l' affichage du menu des options avancées de Windows.
    * En utilisant les touches du curseur, sélectionne le mode sans échec approprié et appuie sur Entrée.
    * Choisis ton compte usuel et non Administrateur.

    * Puis ouvre BTFix
    * Clique sur Nettoyer
    * Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      Mais si mon compte usuel est le même que mon compte Admin ?
      0
  13. ludsfa Messages postés 1287 Statut Membre 15
     
    alors vas y comme ça
    0
    1. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
       
      BTFix 1.094 (par bibi26) - 07/04/2008 22:42:20 - Nettoyage - Mode sans échec
      Lancé depuis C:\Documents and Settings\Shazia\Bureau\BTFix\BTFix\BTFix.exe

      ---> Fichiers/dossiers supprimés (Première passe)

      - Fichiers temporaires effacés
      - C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.15.inf
      - C:\Program Files\FunWebProducts\ScreenSaver\Images\
      - C:\Program Files\FunWebProducts\ScreenSaver\
      - C:\Program Files\FunWebProducts\

      ---> Nettoyage terminé le 07/04/2008 22:42:26
      0
  14. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
     
    C'est terminé ? lol
    0
  15. ludsfa Messages postés 1287 Statut Membre 15
     
    pour le fun tu m'envois un hijackthis.
    0
  16. Paris Butterfly Messages postés 15 Date d'inscription   Statut Membre
     
    Aussitôt dit...

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 23:05:07, on 07/04/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
    c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    C:\Program Files\McAfee\MPF\MPFSrv.exe
    C:\Program Files\SiteAdvisor\6253\SAService.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\McAfee.com\Agent\mcagent.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
    C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\RAMpage\RAMpage.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
    C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe
    C:\PAPA\3.0\Apps\apdproxy.exe
    C:\Program Files\TF1Vision\TF1vision.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Inventel\Gateway\wlancfg.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Digital Line Detect\DLG.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\WiFiConnector\NintendoWFCReg.exe
    C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
    C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SYMBIA~1.EXE
    C:\PROGRA~1\Symbian\Shared\SYMBIA~1\SCBAL.exe
    C:\PROGRA~1\Intuwave\Shared\MROUTE~1\MROUTE~2.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6253\SiteAdv.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6253\SiteAdv.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
    O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 - HKLM\..\Run: [RAMpage] "C:\Program Files\RAMpage\RAMpage.exe" U=1 M=50 T=4 D=Y P="C:\Program Files\RAMpage\RAMpageConfig.exe"
    O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
    O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
    O4 - HKLM\..\Run: [PC Suite for Smartphones] "C:\Program Files\Sony Ericsson\Mobile4\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\PAPA\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [e-TF1] C:\Program Files\TF1Vision\TF1vision.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [Gestionnaire de liaison sans fil] "C:\Program Files\Inventel\Gateway\wlancfg.exe"
    O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [LiveThe] C:\DOCUME~1\Shazia\APPLIC~1\SURFPA~1\mapitrayball.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Digital Line Detect.lnk = ?
    O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet7_22.dll' missing
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} - http://static.zangocash.com/cab/Zango/ie/bridge-c8.cab?9b91da394bb089c426c4c8fcb2032040a0984db8ccad09aad24d7ebc200f0941a5b810e6eae0e4827334f18e895434b50ff31e0c2b0e8f858ddc2e736e:e3eb4becbb5c1ba39dd084361d36488e
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
    O23 - Service: Service SiteAdvisor (SiteAdvisor Service) - Unknown owner - C:\Program Files\SiteAdvisor\6253\SAService.exe
    0
    1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
       
      Salut

      Avant de faire quoi que ce soit

      B - spybot version 1.5
      http://www.commentcamarche.net/telecharger/telecharger 122 spybot
      voir demo d utilisation
      http://perso.orange.fr/rginformatique/section%20virus/demo%20spybot.htm
      https://www.malekal.com/spybot-search-destroy-proteger-desinfecter-pc-virus/
      Pour mettre Spybot en français, tu cliques sur Language en haut à gauche sous Spybot-Search & Destroy et tu choisis French.


      +++
      0
  17. ludsfa Messages postés 1287 Statut Membre 15
     
    peux tu repasser un coup de lopsd option un et deux à suivre .et après un autre hijackthis.
    0
  18. ludsfa Messages postés 1287 Statut Membre 15
     
    ensuite

    Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES http://dcangeldark.blogspot.com/2008/02/hijackthis-202-corriger-des-lignes.html

    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
    O4 - Global Startup: Digital Line Detect.lnk = ?
    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet7_22.dll' missing


    Télécharge OTMoveIt (d'OldTimer).http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe Sauvegarde-le sur ton Bureau.
    Sélectionne tous ce qui est écrit ci dessous.


    c:\program files\newdotnet\newdotnet7_22.dll' missing


    ---> Clique-droit puis Copier (ou Ctrl+C)

    Double-clique sur OTMoveIt.exe afin de le lancer.
    Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
    Clique maintenant sur MoveIt!

    Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    ensuite redémarre ton pc et fait moi un dernier log hijackthis.
    0
  19. ludsfa Messages postés 1287 Statut Membre 15
     
    salut Marie.
    comment vas tu?
    bonne soirée à toi.
    0
    1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
       
      impek ;;))
      0