Pb de cid sous vista SOS
claude la bellette
Messages postés
2
Statut
Membre
-
Claude la bellette -
Claude la bellette -
Bonjour,
J' ai besoin d' aide pour m'aider a suprimer les publicités CID
Je croit comprendre que chaque cas est different . je n'ai pas installer msn mais je crois que mon probleme est arrivé apres l'installation de u torrent. Deinstallation de u torrent et du dossier CID par ajout et suppression deprogrammes et le pb est toujours present.Ci joint le rapport hijackthis ainsi que le compte rendu
Merci pour l'aide que vous pourrez m'apporter
Rapport
Logfile of HijackThis v1.99.1
Scan saved at 20:21:57, on 03/05/2008
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Utilities\VolControl.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\BitComet\tools\CometBrowser.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Users\CLAUDE\Desktop\TEST.EXE.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TOSHIBA Volume Indicator] "C:\Program Files\Toshiba\Utilities\VolControl.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DownloadMix] "C:\ProgramData\Drive loud loud.gixy05j"
O4 - HKCU\..\Run: [ROAD ITCH AMOK PING] "C:\ProgramData\Global draw anti.rjxnp"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InterBaseGuardian - Inprise Corporation - C:\Program Files\Borland\InterBase\Bin\ibguard.exe
O23 - Service: InterBaseServer - Inprise Corporation - C:\Program Files\Borland\InterBase\Bin\ibserver.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
Compte rendu
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
Sûr
Programme inconnu.
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Très sûr
Cet élément a été classé comme bonne par nos visiteurs.
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
Sûr
Loads the System Tray icon for the WinAmp media player. Can be used to mantain file associations so programs like QuickTime and RealPlayer don t take over as default player for various media types. Available via Start -> Programs
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
Fuzzy Algorithmcheck (2.25 / 5.00), Nasty
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Sûr
Cet élément a été classé comme bonne par nos visiteurs.
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
Neutral
Microsoft s MSN Messenger 6
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Très sûr
Associated with GoogleToolbarNotifier from Google Inc.
O4 - HKCU\..\Run: [DownloadMix] "C:\ProgramData\Drive loud loud.gixy05j"
Fuzzy Algorithmcheck (2.94 / 5.00), Nasty
O4 - HKCU\..\Run: [ROAD ITCH AMOK PING] "C:\ProgramData\Global draw anti.rjxnp"
Fuzzy Algorithmcheck (2.94 / 5.00), Nasty
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
Très sûr
eHome Media Center PC related - Needed for Media Center Remote Functions
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
Très sûr
Fuzzy Algorithmcheck (4.04 / 5.00), Sûr
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
Très sûr
Fuzzy Algorithmcheck (4.04 / 5.00), Sûr
J' ai besoin d' aide pour m'aider a suprimer les publicités CID
Je croit comprendre que chaque cas est different . je n'ai pas installer msn mais je crois que mon probleme est arrivé apres l'installation de u torrent. Deinstallation de u torrent et du dossier CID par ajout et suppression deprogrammes et le pb est toujours present.Ci joint le rapport hijackthis ainsi que le compte rendu
Merci pour l'aide que vous pourrez m'apporter
Rapport
Logfile of HijackThis v1.99.1
Scan saved at 20:21:57, on 03/05/2008
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Utilities\VolControl.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\BitComet\tools\CometBrowser.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Users\CLAUDE\Desktop\TEST.EXE.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TOSHIBA Volume Indicator] "C:\Program Files\Toshiba\Utilities\VolControl.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DownloadMix] "C:\ProgramData\Drive loud loud.gixy05j"
O4 - HKCU\..\Run: [ROAD ITCH AMOK PING] "C:\ProgramData\Global draw anti.rjxnp"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InterBaseGuardian - Inprise Corporation - C:\Program Files\Borland\InterBase\Bin\ibguard.exe
O23 - Service: InterBaseServer - Inprise Corporation - C:\Program Files\Borland\InterBase\Bin\ibserver.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
Compte rendu
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
Sûr
Programme inconnu.
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Très sûr
Cet élément a été classé comme bonne par nos visiteurs.
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
Sûr
Loads the System Tray icon for the WinAmp media player. Can be used to mantain file associations so programs like QuickTime and RealPlayer don t take over as default player for various media types. Available via Start -> Programs
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
Fuzzy Algorithmcheck (2.25 / 5.00), Nasty
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
Sûr
Cet élément a été classé comme bonne par nos visiteurs.
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
Neutral
Microsoft s MSN Messenger 6
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Très sûr
Associated with GoogleToolbarNotifier from Google Inc.
O4 - HKCU\..\Run: [DownloadMix] "C:\ProgramData\Drive loud loud.gixy05j"
Fuzzy Algorithmcheck (2.94 / 5.00), Nasty
O4 - HKCU\..\Run: [ROAD ITCH AMOK PING] "C:\ProgramData\Global draw anti.rjxnp"
Fuzzy Algorithmcheck (2.94 / 5.00), Nasty
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
Très sûr
eHome Media Center PC related - Needed for Media Center Remote Functions
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
Très sûr
Fuzzy Algorithmcheck (4.04 / 5.00), Sûr
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
Très sûr
Fuzzy Algorithmcheck (4.04 / 5.00), Sûr
A voir également:
- Pb de cid sous vista SOS
- Windows vista - Télécharger - Divers Utilitaires
- Clé windows vista - Guide
- Windows Vista SP1 - Télécharger - Divers Utilitaires
- Live cid skype - Forum Skype et Microsoft Teams
- Comment débloquer un ordinateur windows vista - Forum Windows
2 réponses
salut
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
bonjour
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Bonjour,
j'ai effectue la procedure que vous m'avez fait parvenir avec succes.
par contre le rapport a disparu lors de la sauvegarde et j'ai recommence l'operation plusieurs fois,mais le programme ne trouve pas l'etape 3.depuis je n'ai aucun cid intempestifs et ce en me connectant a differentes heures sur internet.
voila la raison pour laquelle ma reponse a tarde.
merci beaucoup de votre aide
Claude
j'ai effectue la procedure que vous m'avez fait parvenir avec succes.
par contre le rapport a disparu lors de la sauvegarde et j'ai recommence l'operation plusieurs fois,mais le programme ne trouve pas l'etape 3.depuis je n'ai aucun cid intempestifs et ce en me connectant a differentes heures sur internet.
voila la raison pour laquelle ma reponse a tarde.
merci beaucoup de votre aide
Claude
Voici le rapport que vous m'avez demandé
-----------------------[ Lop S&D 4.2.0-7 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : CLAUDE ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 09/05/2008 | 20:42:24,39 ] [ PC : PC-DE-CLAUDE ]
[ MAJ : 06-05-2008 | 21:45 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[23/03/2008|02:18] C:\Users\CLAUDE\AppData\Roaming\Adobe\Acrobat
[21/03/2008|17:34] C:\Users\CLAUDE\AppData\Roaming\Adobe\Online Services
[18/03/2008|10:21] C:\Users\CLAUDE\AppData\Roaming\Adobe\Photoshop Album
[20/04/2008|01:19] C:\Users\CLAUDE\AppData\Roaming\Azureus\active
[13/04/2008|10:18] C:\Users\CLAUDE\AppData\Roaming\Azureus\torrents
[13/04/2008|10:18] C:\Users\CLAUDE\AppData\Roaming\Azureus\tmp
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\azureus.config
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\downloads.config
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\tracker.config
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\azureus.statistics
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\dht
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\net
[07/04/2008|06:41] C:\Users\CLAUDE\AppData\Roaming\Azureus\tables.config
[07/04/2008|06:07] C:\Users\CLAUDE\AppData\Roaming\Azureus\logs
[06/04/2008|23:29] C:\Users\CLAUDE\AppData\Roaming\Azureus\VuzeActivities.config
[06/04/2008|23:27] C:\Users\CLAUDE\AppData\Roaming\Azureus\unsentdata.config
[06/04/2008|23:27] C:\Users\CLAUDE\AppData\Roaming\Azureus\plugins
[06/04/2008|23:27] C:\Users\CLAUDE\AppData\Roaming\Azureus\updates
[06/04/2008|23:26] C:\Users\CLAUDE\AppData\Roaming\Azureus\restart.bat
[06/04/2008|23:26] C:\Users\CLAUDE\AppData\Roaming\Azureus\update.properties
[06/04/2008|00:23] C:\Users\CLAUDE\AppData\Roaming\Azureus\media
[06/04/2008|00:21] C:\Users\CLAUDE\AppData\Roaming\Azureus\shares
[06/04/2008|00:21] C:\Users\CLAUDE\AppData\Roaming\Azureus\.certs
[06/04/2008|00:21] C:\Users\CLAUDE\AppData\Roaming\Azureus\.keystore
[02/04/2008|22:35] C:\Users\CLAUDE\AppData\Roaming\eMule\config
[06/05/2008|13:21] C:\Users\CLAUDE\AppData\Roaming\Google\Local Search History
[02/11/2006|15:03] C:\Users\CLAUDE\AppData\Roaming\Identities\{F09DEB20-C877-4C92-A4F4-B30EA5DF074C}
[02/05/2008|18:44] C:\Users\CLAUDE\AppData\Roaming\Leadertech\PowerRegister
[09/05/2008|17:38] C:\Users\CLAUDE\AppData\Roaming\Macromedia\Flash Player
[09/05/2008|19:32] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Templates
[07/05/2008|00:19] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Windows Photo Gallery
[03/05/2008|21:11] C:\Users\CLAUDE\AppData\Roaming\Microsoft\UProof
[30/03/2008|13:38] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Proof
[30/03/2008|13:31] C:\Users\CLAUDE\AppData\Roaming\Microsoft\eHome
[22/03/2008|14:45] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Internet Explorer
[22/03/2008|12:57] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Services Windows Live
[20/03/2008|13:53] C:\Users\CLAUDE\AppData\Roaming\Microsoft\MSN Messenger
[16/03/2008|20:54] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Excel
[16/03/2008|03:22] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Network
[08/03/2008|17:39] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Pack Emoticones Love
[21/10/2007|19:56] C:\Users\CLAUDE\AppData\Roaming\Microsoft\IdentityCRL
[21/10/2007|19:56] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Windows Live Call
[13/10/2007|16:00] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Office
[13/10/2007|16:00] C:\Users\CLAUDE\AppData\Roaming\Microsoft\OIS
[25/09/2007|19:02] C:\Users\CLAUDE\AppData\Roaming\Microsoft\preuve
[11/09/2007|20:16] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Outlook
[05/09/2007|19:54] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Crypto
[04/09/2007|16:29] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Document Building Blocks
[04/09/2007|16:29] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Word
[03/09/2007|21:59] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Windows
[03/09/2007|20:46] C:\Users\CLAUDE\AppData\Roaming\Microsoft\AddIns
[26/08/2007|14:46] C:\Users\CLAUDE\AppData\Roaming\Microsoft\MMC
[25/08/2007|23:18] C:\Users\CLAUDE\AppData\Roaming\Microsoft\HTML Help
[18/08/2007|23:34] C:\Users\CLAUDE\AppData\Roaming\Microsoft\ModŠles
[18/08/2007|22:17] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Forms
[18/08/2007|20:48] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Macros compl‚mentaires
[18/08/2007|20:05] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Protect
[18/08/2007|20:03] C:\Users\CLAUDE\AppData\Roaming\Microsoft\CLR Security Config
[02/11/2006|15:04] C:\Users\CLAUDE\AppData\Roaming\Microsoft\SystemCertificates
[02/11/2006|15:03] C:\Users\CLAUDE\AppData\Roaming\Microsoft\Credentials
[18/03/2008|10:13] C:\Users\CLAUDE\AppData\Roaming\NMM-MetaData.db\NMM-MetaData.db
[16/03/2008|00:51] C:\Users\CLAUDE\AppData\Roaming\Nokia\ImageStore
[16/03/2008|00:27] C:\Users\CLAUDE\AppData\Roaming\Nokia\Music Manager
[16/03/2008|00:17] C:\Users\CLAUDE\AppData\Roaming\Nokia\ContentCopier
[16/03/2008|00:06] C:\Users\CLAUDE\AppData\Roaming\Nokia\PCSync
[16/03/2008|00:00] C:\Users\CLAUDE\AppData\Roaming\Nokia\GetConnectedWizard
[16/03/2008|00:00] C:\Users\CLAUDE\AppData\Roaming\Nokia\LaunchApplication
[15/03/2008|23:59] C:\Users\CLAUDE\AppData\Roaming\Nokia\ContactsEditor
[30/03/2008|16:19] C:\Users\CLAUDE\AppData\Roaming\Nokia Multimedia Player\Recent.npl
[09/05/2008|20:41] C:\Users\CLAUDE\AppData\Roaming\nvModes.001\nvModes.001
[09/05/2008|20:42] C:\Users\CLAUDE\AppData\Roaming\nvModes.dat\nvModes.dat
[16/03/2008|00:48] C:\Users\CLAUDE\AppData\Roaming\PC Suite\353672016423989
[16/03/2008|00:00] C:\Users\CLAUDE\AppData\Roaming\PC Suite\Settings
[17/02/2005|16:07] C:\Users\CLAUDE\AppData\Roaming\Template\Normal.wpt
[30/04/2008|20:10] C:\Users\CLAUDE\AppData\Roaming\Toshiba\ConfigFree
[03/09/2007|22:08] C:\Users\CLAUDE\AppData\Roaming\Toshiba\TOPI
[13/04/2008|10:25] C:\Users\CLAUDE\AppData\Roaming\TuneUp Software\TuneUp Utilities
[09/05/2008|17:54] C:\Users\CLAUDE\AppData\Roaming\vlc\vlcrc
[29/03/2008|22:06] C:\Users\CLAUDE\AppData\Roaming\vlc\cache
[01/05/2008|09:48] C:\Users\CLAUDE\AppData\Roaming\Winamp\studio.xnf
[01/05/2008|09:48] C:\Users\CLAUDE\AppData\Roaming\Winamp\winamp.ini
[01/05/2008|09:48] C:\Users\CLAUDE\AppData\Roaming\Winamp\winamp.m3u
[01/05/2008|09:48] C:\Users\CLAUDE\AppData\Roaming\Winamp\Winamp.m3u8
[30/03/2008|16:58] C:\Users\CLAUDE\AppData\Roaming\Winamp\Winamp.bm
[02/03/2008|12:21] C:\Users\CLAUDE\AppData\Roaming\Winamp\Plugins
[09/02/2008|16:05] C:\Users\CLAUDE\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\CLAUDE\AppData\Roaming\Winamp\demo.mp3
[25/09/2007|19:05] C:\Users\CLAUDE\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[09/05/2008 17:17][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
[30/08/2002 14:00][-rah-----] C:\Windows\tasks\desktop.ini
[09/05/2008 03:40][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{D9B30BB4-63C0-47D4-A444-A174F9308500}.job
[09/05/2008 20:41][--ah-----] C:\Windows\tasks\SA.DAT
[09/05/2008 20:40][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[18/03/2008|10:24] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[06/04/2008|00:21] C:\ProgramData\Azureus
[18/08/2007|19:58] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[11/04/2008|19:57] C:\ProgramData\Drive loud loud.gixy05j
[11/04/2008|19:57] C:\ProgramData\Drive loud loud.v88ov
[02/04/2008|22:32] C:\ProgramData\eMule
[03/05/2008|18:53] C:\ProgramData\Encbone
[18/08/2007|19:58] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[11/04/2008|19:59] C:\ProgramData\Global draw anti.rjxnp
[18/03/2008|10:19] C:\ProgramData\Google
[08/03/2008|17:50] C:\ProgramData\IM
[08/03/2008|17:47] C:\ProgramData\IncrediMail
[15/03/2008|20:52] C:\ProgramData\Installations
[11/04/2008|19:59] C:\ProgramData\Long slow road itch
[18/08/2007|19:58] C:\ProgramData\Menu D‚marrer
[05/09/2007|15:43] C:\ProgramData\Micro Application
[04/05/2008|13:30] C:\ProgramData\Microsoft
[09/04/2008|03:08] C:\ProgramData\Microsoft Help
[18/08/2007|19:58] C:\ProgramData\ModŠles
[20/12/2006|14:47] C:\ProgramData\NVIDIA
[16/03/2008|00:06] C:\ProgramData\PC Suite
[09/02/2008|16:28] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[09/02/2008|15:51] C:\ProgramData\Symantec
[04/05/2008|13:53] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[20/12/2006|12:22] C:\ProgramData\Toshiba
[18/08/2007|20:02] C:\ProgramData\ToshibaEurope
[05/04/2008|23:58] C:\ProgramData\TuneUp Software
[20/12/2006|13:17] C:\ProgramData\Ulead Systems
[22/03/2008|13:06] C:\ProgramData\WLInstaller
[30/03/2008|12:56] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[18/03/2008|10:24] C:\Program Files\Adobe
[09/02/2008|13:15] C:\Program Files\Alwil Software
[25/08/2007|22:31] C:\Program Files\Ancestrologie
[06/04/2008|00:39] C:\Program Files\Backspin Billiards
[06/04/2008|00:31] C:\Program Files\BFG
[03/05/2008|17:35] C:\Program Files\BitComet
[11/04/2008|20:27] C:\Program Files\BitDownload
[11/04/2008|19:57] C:\Program Files\BitTorrent Fastest Tool
[30/03/2008|15:32] C:\Program Files\Borland
[29/03/2008|22:21] C:\Program Files\CCleaner
[05/04/2008|23:58] C:\Program Files\Common Files
[20/12/2006|10:13] C:\Program Files\CONEXANT
[04/09/2007|10:56] C:\Program Files\desktop.ini
[16/03/2008|00:01] C:\Program Files\DIFX
[19/08/2007|11:55] C:\Program Files\directx
[02/04/2008|22:30] C:\Program Files\eMule
[19/01/2008|16:17] C:\Program Files\EPSON
[18/08/2007|19:58] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[18/04/2008|07:23] C:\Program Files\filehippo.com
[18/03/2008|10:19] C:\Program Files\Google
[05/09/2007|19:55] C:\Program Files\InstallShield Installation Information
[09/04/2008|03:19] C:\Program Files\Internet Explorer
[20/12/2006|13:18] C:\Program Files\InterVideo
[20/12/2006|09:52] C:\Program Files\Java
[05/09/2007|19:55] C:\Program Files\Micro Application
[18/03/2008|10:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[22/12/2006|13:33] C:\Program Files\Microsoft Digital Image 2006
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[03/09/2007|20:32] C:\Program Files\Microsoft Office
[17/03/2008|13:56] C:\Program Files\Microsoft SQL Server Compact Edition
[03/09/2007|20:32] C:\Program Files\Microsoft Visual Studio
[03/09/2007|20:20] C:\Program Files\Microsoft Visual Studio 8
[24/04/2008|20:15] C:\Program Files\Microsoft Works
[03/09/2007|20:31] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[03/09/2007|20:32] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[04/09/2007|09:20] C:\Program Files\MSXML 4.0
[20/12/2006|09:54] C:\Program Files\My Company Name
[15/03/2008|23:58] C:\Program Files\Nokia
[30/08/2006|17:01] C:\Program Files\outlout.lnk
[15/03/2008|23:56] C:\Program Files\PC Connectivity Solution
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[06/04/2008|00:17] C:\Program Files\Registry Mechanic
[09/02/2008|17:03] C:\Program Files\Spybot - Search & Destroy
[20/12/2006|10:08] C:\Program Files\Synaptics
[22/12/2006|13:32] C:\Program Files\TOSHIBA
[06/04/2008|00:00] C:\Program Files\TuneUp Utilities 2007
[19/08/2007|11:51] C:\Program Files\Ubi Soft
[20/12/2006|13:15] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[03/09/2007|21:01] C:\Program Files\VideoLAN
[09/02/2008|16:05] C:\Program Files\Winamp
[12/09/2007|19:10] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[04/09/2007|10:13] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[19/03/2008|19:12] C:\Program Files\Windows Live
[09/04/2008|03:19] C:\Program Files\Windows Mail
[20/12/2006|13:18] C:\Program Files\Windows Media Components
[10/10/2007|20:35] C:\Program Files\Windows Media Player
[18/08/2007|19:58] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[03/02/2008|20:27] C:\Program Files\Windows Sidebar
[04/05/2008|09:15] C:\Program Files\WinRAR
[29/03/2008|22:21] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[18/03/2008|10:24] C:\Program Files\Common Files\Adobe
[03/09/2007|20:32] C:\Program Files\Common Files\DESIGNER
[20/12/2006|13:18] C:\Program Files\Common Files\InstallShield
[20/12/2006|09:52] C:\Program Files\Common Files\Java
[17/03/2008|13:49] C:\Program Files\Common Files\microsoft shared
[15/03/2008|23:58] C:\Program Files\Common Files\Nokia
[15/03/2008|23:58] C:\Program Files\Common Files\PCSuite
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[09/02/2008|15:54] C:\Program Files\Common Files\Symantec Shared
[04/09/2007|10:13] C:\Program Files\Common Files\System
[20/12/2006|13:18] C:\Program Files\Common Files\Ulead Systems
[17/03/2008|13:49] C:\Program Files\Common Files\WindowsLiveInstaller
[05/04/2008|23:58] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 67
iexplore.exe ~ [2352]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\Drive loud loud.gixy05j
C:\ProgramData\Drive loud loud.v88ov
C:\ProgramData\Global draw anti.rjxnp
C:\ProgramData\Drive loud loud.v88ov
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Long slow road itch
C:\ProgramData\Long slow road itch\slow nurb.exe
C:\Program Files\Bitdownload
C:\Program Files\Bitdownload\session.store
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-09 20:43:51
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
=> C:\Users\CLAUDE\AppData\Roaming\Microsoft\Windows\Recent\Tune.Up.Utilities.2008.FR.CRACK.Serial-CR7.lnk
/!\ [Fich:16][Doss:12] C:\Users\CLAUDE\AppData\Local\Temp
/!\ [Fich:75][Doss:1] C:\Users\CLAUDE\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:7][Doss:4] C:\Users\CLAUDE\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 20:45:31,24 ]----------------------