Pb pub cid

charliee Messages postés 14 Statut Membre -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour,
depius plusieur moi j'ai des pub CID en permanence j'ai sup messenger+ mais je ne compren rien a tt ce ki ai informatique, si quelqu'un peut menvoyer les demarches a faire ca serai vraiment sympa( mais le + simple possible svp je suis vraiment pas calé la dessus)Merci d'avance.
Configuration: Windows Vista
Internet Explorer 7.0

12 réponses

  1. freelog Messages postés 2181 Statut Membre 136
     
    http://www.commentcamarche.net/faq/sujet 5996 comment bloquer les fenetres cid
    0
    1. charliee Messages postés 14 Statut Membre
       
      merci d'avoir repondu rapidment, j'ai fais la 1ere methode supp manuellement mais les pub sont tjr la par contre la 2eme methode j'y compren pa gran chose lorsque j'ai voulu telecharger Lopxp ca na pas marché, ca a 1 rapport avec windows vista?
      Vous n'aurez pa un methode + simple car j'ai pas envie de faire une betise j'y connais vraiment au language informatique.Merci
      0
  2. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    Télécharge ceci :

    Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis

    Tuto : http://pageperso.aol.fr/balltrap34/demohijack.htm

    Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

    ++

    0
    1. charliee Messages postés 14 Statut Membre
       
      Merci de m'avoir repondu si raidement c'est super sympa je tenvoie le truc
      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 18:30:11, on 06/06/2008
      Platform: Windows Vista (WinNT 6.00.1904)
      MSIE: Internet Explorer v7.00 (7.00.6000.16643)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\Dwm.exe
      C:\Windows\Explorer.EXE
      C:\Windows\system32\taskeng.exe
      C:\Program Files\Common Files\Symantec Shared\ccApp.exe
      C:\Program Files\Windows Sidebar\sidebar.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Windows\ehome\ehtray.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Windows Media Player\wmpnscfg.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      C:\Windows\ehome\ehmsas.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Internet Explorer\ieuser.exe
      C:\Program Files\Steam\Steam.exe
      C:\Windows\system32\taskeng.exe
      C:\Windows\system32\conime.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Windows Media Player\wmplayer.exe
      C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
      C:\Windows\system32\SearchFilterHost.exe

      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
      O1 - Hosts: ::1 localhost
      O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - (no file)
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
      O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
      O4 - HKCU\..\Run: [intersect] "C:\ProgramData\Bore File File.y797e"
      O4 - HKCU\..\Run: [bait deaf idle setup] "C:\ProgramData\four mp3 ace.g10lx8"
      O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
      O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
      O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: VPro520.lnk = ?
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
      O13 - Gopher Prefix:
      O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
      O16 - DPF: {33DFB28A-9792-4AFC-B594-D589365DF67D} (Bahu Photo Uploader) - https://bahu.com/BahuPhotoUploader.cab
      O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/VistaMSNPUplden-us.cab
      O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
      O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
      O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
      O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
      O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
      O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
      O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
      O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
      O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
      O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
      O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
      O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
      0
  3. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    Télécharge LOP S&D d'Eric71 ici https://sites.google.com/site/eric71mespages/lop.sd.exe

    Double-clique dessus pour lancer l'installation.
    Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
    Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
    Patiente jusqu'à la fin du scan.
    Poste le rapport généré (situé aussi ici C:\lopR.txt )

    ( Si le Bureau ne réapparaît pas, lance le gestionnaire des tâches en cliquant sur Ctrl + Alt + Suppr , puis Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      Voila je t'envoie le rapport, ca a été un peu long et ca a fait beuguer mon ordi mais je suppose que c'est peut-etre normal. Voici le rapport


      -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

      [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
      [ USER : Les chiffons ] [ "C:\Lop SD" ] [ Selection : 1 ]
      [ 06/06/2008 | 19:10:41,82 ] [ PC : PC ]
      [ MAJ : 01-06-2008 | 15:51 ]
      [ UAC => 0 ]

      -------------[ Listing des dossiers dans Application Data ]------------

      [23/04/2008|12:45] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Flash Player
      [27/03/2008|20:53] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Lightroom
      [27/03/2008|19:07] C:\Users\LESCHI~1\AppData\Roaming\Adobe\CameraRaw
      [08/09/2007|19:38] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Linguistics
      [19/08/2007|00:31] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Acrobat

      [23/02/2008|20:23] C:\Users\LESCHI~1\AppData\Roaming\Apple Computer\iTunes

      [25/12/2007|20:02] C:\Users\LESCHI~1\AppData\Roaming\ArcSoft\PhilipsVLounge

      [24/05/2008|21:58] C:\Users\LESCHI~1\AppData\Roaming\EoRezo\eoDesktop
      [24/05/2008|21:58] C:\Users\LESCHI~1\AppData\Roaming\EoRezo\db

      [06/06/2008|15:05] C:\Users\LESCHI~1\AppData\Roaming\Google\Local Search History

      [18/08/2007|21:11] C:\Users\LESCHI~1\AppData\Roaming\Hewlett-Packard\HP Software UI

      [06/06/2008|15:40] C:\Users\LESCHI~1\AppData\Roaming\HP\CRMLogs
      [20/03/2008|20:47] C:\Users\LESCHI~1\AppData\Roaming\HP\Digital Imaging
      [07/09/2007|20:36] C:\Users\LESCHI~1\AppData\Roaming\HP\ScLogs

      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Identities\{27ECA087-3248-49F4-A0CA-148556DDEA93}


      [30/09/2007|19:32] C:\Users\LESCHI~1\AppData\Roaming\InstallShield\ISEngine12.0

      [24/05/2008|22:02] C:\Users\LESCHI~1\AppData\Roaming\ItsLabel\ItsTV

      [06/06/2008|17:34] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\promotion
      [19/02/2008|20:30] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\.NetworkShare
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\.AppSpecialShare
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\xml
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\themes

      [23/04/2008|12:43] C:\Users\LESCHI~1\AppData\Roaming\Macromedia\Flash Player


      [06/06/2008|14:32] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Templates
      [31/05/2008|22:26] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Outlook
      [31/05/2008|22:10] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Office
      [31/05/2008|22:10] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Publisher
      [31/05/2008|22:08] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\IMJP10
      [25/05/2008|13:38] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Word
      [08/05/2008|15:44] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\MSN Messenger
      [06/04/2008|14:59] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\OneNote
      [03/04/2008|17:38] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\UProof
      [27/03/2008|19:11] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\HTML Help
      [25/03/2008|14:23] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Excel
      [27/02/2008|20:23] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows Photo Gallery
      [11/02/2008|20:59] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
      [16/01/2008|19:09] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\MMC
      [06/12/2007|23:55] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\OIS
      [19/11/2007|20:30] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows Live Call
      [19/11/2007|20:30] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\IdentityCRL
      [30/10/2007|19:22] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Speech
      [26/09/2007|16:15] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\preuve
      [07/09/2007|20:41] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Internet Explorer
      [06/09/2007|20:18] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\PowerPoint
      [06/09/2007|19:37] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Clip Organizer
      [02/09/2007|00:40] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\CLView
      [01/09/2007|23:54] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\QuickStyles
      [01/09/2007|22:52] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Proof
      [01/09/2007|22:50] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Document Building Blocks
      [01/09/2007|22:50] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\AddIns
      [23/08/2007|17:07] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\eHome
      [19/08/2007|18:27] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows
      [19/08/2007|16:55] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Crypto
      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Protect
      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\SystemCertificates
      [18/08/2007|21:11] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\CLR Security Config
      [18/08/2007|21:09] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Credentials



      [28/05/2008|21:43] C:\Users\LESCHI~1\AppData\Roaming\Real\RealPlayer
      [28/05/2008|18:19] C:\Users\LESCHI~1\AppData\Roaming\Real\RealMediaSDK
      [28/05/2008|18:18] C:\Users\LESCHI~1\AppData\Roaming\Real\Msg
      [17/04/2008|20:00] C:\Users\LESCHI~1\AppData\Roaming\Real\rnadmin

      [05/03/2008|03:31] C:\Users\LESCHI~1\AppData\Roaming\Roxio\MediaManager9
      [05/03/2008|03:22] C:\Users\LESCHI~1\AppData\Roaming\Roxio\MyDVD9
      [05/03/2008|03:22] C:\Users\LESCHI~1\AppData\Roaming\Roxio\VideoUI9
      [06/10/2007|19:01] C:\Users\LESCHI~1\AppData\Roaming\Roxio\Dragon
      [22/08/2007|00:40] C:\Users\LESCHI~1\AppData\Roaming\Roxio\RoxioCentral

      [18/10/2007|18:11] C:\Users\LESCHI~1\AppData\Roaming\Symantec\Cleanup




      [18/03/2008|19:21] C:\Users\LESCHI~1\AppData\Roaming\WinBatch\Settings


      [02/01/2008|18:04] C:\Users\LESCHI~1\AppData\Roaming\Yahoo!\Companion

      ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

      [06/06/2008 18:49][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
      [06/06/2008 19:10][--ah-----] C:\Windows\tasks\SA.DAT
      [06/06/2008 19:09][--a------] C:\Windows\tasks\SCHEDLGU.TXT

      ------[ Listing des dossiers dans C:\ProgramData ]------

      [01/06/2007|22:58] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
      [27/03/2008|19:07] C:\ProgramData\Adobe
      [02/11/2006|15:02] C:\ProgramData\Application Data
      [27/05/2008|19:35] C:\ProgramData\bike road bin
      [05/01/2008|23:45] C:\ProgramData\Bore File File.qar6qsj
      [05/01/2008|23:45] C:\ProgramData\Bore File File.t043wv
      [09/01/2008|22:58] C:\ProgramData\Bore File File.y797e
      [18/08/2007|21:05] C:\ProgramData\Bureau
      [02/11/2006|15:02] C:\ProgramData\Desktop
      [02/11/2006|15:02] C:\ProgramData\Documents
      [27/10/2007|21:11] C:\ProgramData\eMule
      [18/08/2007|21:05] C:\ProgramData\Favoris
      [02/11/2006|15:02] C:\ProgramData\Favorites
      [05/01/2008|23:46] C:\ProgramData\four mp3 ace.g10lx8
      [06/06/2008|15:05] C:\ProgramData\Google
      [01/06/2007|23:14] C:\ProgramData\Hewlett-Packard
      [07/09/2007|20:36] C:\ProgramData\HP
      [01/04/2008|20:56] C:\ProgramData\hpzinstall.log
      [05/01/2008|23:45] C:\ProgramData\Htm Support Bait Deaf
      [01/06/2007|22:41] C:\ProgramData\Intel
      [18/10/2007|17:37] C:\ProgramData\LUUnInstall.LiveUpdate
      [18/08/2007|21:05] C:\ProgramData\Menu D‚marrer
      [06/06/2008|14:29] C:\ProgramData\Microsoft
      [06/06/2008|14:31] C:\ProgramData\Microsoft Help
      [18/08/2007|21:05] C:\ProgramData\ModŠles
      [01/06/2007|22:53] C:\ProgramData\muvee Technologies
      [07/05/2008|15:00] C:\ProgramData\NVIDIA
      [01/06/2007|22:59] C:\ProgramData\PC-Doctor
      [01/06/2007|22:50] C:\ProgramData\Roxio
      [19/08/2007|14:06] C:\ProgramData\Sonic
      [02/11/2006|15:02] C:\ProgramData\Start Menu
      [06/06/2008|14:40] C:\ProgramData\Symantec
      [18/10/2007|17:29] C:\ProgramData\Symantec Temporary Files
      [02/11/2006|15:02] C:\ProgramData\Templates
      [23/05/2008|23:02] C:\ProgramData\TrackMania
      [07/09/2007|20:31] C:\ProgramData\WEBREG
      [27/02/2008|14:29] C:\ProgramData\WLInstaller
      [02/01/2008|18:04] C:\ProgramData\Yahoo! Companion

      ---------------[ Listing des dossiers dans C:\Program Files ]--------------

      [01/06/2007|22:58] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
      [27/03/2008|22:33] C:\Program Files\Adobe
      [18/08/2007|23:31] C:\Program Files\BoontyGames
      [27/02/2008|18:58] C:\Program Files\Common Files
      [31/08/2007|13:15] C:\Program Files\desktop.ini
      [25/12/2007|19:58] C:\Program Files\DIFX
      [02/01/2008|18:04] C:\Program Files\DivX
      [02/06/2007|08:07] C:\Program Files\EasyBits
      [27/10/2007|21:11] C:\Program Files\eMule
      [24/05/2008|22:01] C:\Program Files\EoRezo
      [18/08/2007|21:05] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
      [11/02/2008|10:28] C:\Program Files\GIMP-2.0
      [06/06/2008|15:05] C:\Program Files\Google
      [30/09/2007|19:33] C:\Program Files\Hercules
      [01/06/2007|23:00] C:\Program Files\Hewlett-Packard
      [01/04/2008|20:55] C:\Program Files\HP
      [11/02/2008|20:55] C:\Program Files\InstallShield Installation Information
      [24/05/2008|22:41] C:\Program Files\Intel
      [10/04/2008|13:25] C:\Program Files\Internet Explorer
      [18/10/2007|18:19] C:\Program Files\Java
      [06/06/2008|15:16] C:\Program Files\Lavasoft
      [06/06/2008|17:31] C:\Program Files\LimeWire
      [06/06/2008|17:16] C:\Program Files\Lopxp
      [20/08/2007|12:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
      [02/11/2006|14:37] C:\Program Files\Microsoft Games
      [03/06/2008|19:07] C:\Program Files\Microsoft Office
      [03/06/2008|19:08] C:\Program Files\Microsoft Small Business
      [04/06/2008|20:05] C:\Program Files\Microsoft SQL Server
      [27/03/2008|21:35] C:\Program Files\Microsoft Visual Studio
      [06/06/2008|14:26] C:\Program Files\Microsoft Visual Studio 8
      [01/06/2007|22:57] C:\Program Files\Microsoft Works
      [03/06/2008|18:59] C:\Program Files\Microsoft.NET
      [24/05/2008|22:25] C:\Program Files\MixVibes5
      [02/06/2007|08:20] C:\Program Files\Movie Maker
      [06/06/2008|14:30] C:\Program Files\MSBuild
      [27/09/2007|14:40] C:\Program Files\MSECache
      [02/11/2006|14:37] C:\Program Files\MSN
      [18/08/2007|21:17] C:\Program Files\MSXML 4.0
      [05/06/2008|19:36] C:\Program Files\Mumble
      [01/06/2007|22:53] C:\Program Files\muvee Technologies
      [18/01/2008|17:50] C:\Program Files\Norton 360
      [10/04/2008|14:35] C:\Program Files\Norton Security Scan
      [01/06/2007|23:10] C:\Program Files\PC-Doctor 5 for Windows
      [25/12/2007|19:57] C:\Program Files\Philips
      [01/06/2007|22:52] C:\Program Files\Real
      [01/04/2008|20:52] C:\Program Files\Realtek
      [02/11/2006|14:37] C:\Program Files\Reference Assemblies
      [06/09/2007|15:33] C:\Program Files\Rockstar Games
      [01/06/2007|22:51] C:\Program Files\Roxio
      [11/02/2008|10:10] C:\Program Files\Seagrand
      [01/06/2007|23:02] C:\Program Files\Services en ligne
      [06/06/2008|19:10] C:\Program Files\Steam
      [31/05/2008|10:15] C:\Program Files\Symantec
      [08/04/2008|22:27] C:\Program Files\Teamspeak2_RC2
      [06/06/2008|18:29] C:\Program Files\Trend Micro
      [02/11/2006|15:01] C:\Program Files\Uninstall Information
      [11/02/2008|20:45] C:\Program Files\Visicom Media
      [13/05/2008|17:44] C:\Program Files\vmntoolbar
      [30/08/2007|12:24] C:\Program Files\Windows Calendar
      [02/06/2007|08:20] C:\Program Files\Windows Collaboration
      [01/06/2007|22:41] C:\Program Files\Windows Defender
      [02/06/2007|08:20] C:\Program Files\Windows Journal
      [27/02/2008|14:30] C:\Program Files\Windows Live
      [30/11/2007|18:35] C:\Program Files\Windows Live Toolbar
      [14/05/2008|19:56] C:\Program Files\Windows Mail
      [10/10/2007|13:48] C:\Program Files\Windows Media Player
      [18/08/2007|21:05] C:\Program Files\Windows NT
      [02/06/2007|08:20] C:\Program Files\Windows Photo Gallery
      [10/01/2008|00:03] C:\Program Files\Windows Sidebar
      [20/12/2007|22:04] C:\Program Files\Xvid
      [02/01/2008|18:04] C:\Program Files\Yahoo!

      ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

      [27/02/2008|18:58] C:\Program Files\Common Files\Adobe
      [25/12/2007|19:58] C:\Program Files\Common Files\ArcSoft
      [01/06/2007|22:57] C:\Program Files\Common Files\DESIGNER
      [07/09/2007|20:17] C:\Program Files\Common Files\Hewlett-Packard
      [07/09/2007|20:19] C:\Program Files\Common Files\HP
      [24/11/2007|00:24] C:\Program Files\Common Files\InstallShield
      [01/06/2007|22:41] C:\Program Files\Common Files\Intel
      [11/10/2007|20:35] C:\Program Files\Common Files\Java
      [01/06/2007|22:52] C:\Program Files\Common Files\LightScribe
      [01/06/2007|22:51] C:\Program Files\Common Files\LS Getting Started
      [06/06/2008|14:30] C:\Program Files\Common Files\microsoft shared
      [11/02/2008|20:55] C:\Program Files\Common Files\muvee Technologies
      [27/03/2008|22:32] C:\Program Files\Common Files\PX Storage Engine
      [01/06/2007|22:52] C:\Program Files\Common Files\Real
      [01/06/2007|22:50] C:\Program Files\Common Files\Roxio Shared
      [02/11/2006|13:18] C:\Program Files\Common Files\Services
      [01/06/2007|22:51] C:\Program Files\Common Files\Sonic Shared
      [25/12/2007|19:57] C:\Program Files\Common Files\SPC520NC
      [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
      [05/06/2008|23:02] C:\Program Files\Common Files\Steam
      [01/06/2007|22:51] C:\Program Files\Common Files\SureThing Shared
      [06/06/2008|15:39] C:\Program Files\Common Files\Symantec Shared
      [27/03/2008|21:31] C:\Program Files\Common Files\System
      [27/02/2008|14:31] C:\Program Files\Common Files\WindowsLiveInstaller
      [01/06/2007|22:52] C:\Program Files\Common Files\xing shared

      ---------------------------[ Process ]--------------------------

      ... 56

      iexplore.exe ~ [2632]

      ----------------------[ Recherche avec S_Lop ]---------------------

      C:\ProgramData\Bore File File.qar6qsj
      C:\ProgramData\Bore File File.t043wv
      C:\ProgramData\Bore File File.y797e
      C:\ProgramData\four mp3 ace.g10lx8
      C:\ProgramData\Bore File File.t043wv
      C:\ProgramData\Bore File File.y797e
      C:\ProgramData\four mp3 ace.g10lx8

      -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

      C:\ProgramData\bike road bin
      C:\ProgramData\Htm Support Bait Deaf
      C:\ProgramData\Htm Support Bait Deaf\Dent Dash.exe
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.adserver5[1].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@banner.cotedazurpalace[2].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@cotedazurpalace[2].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@adopt.euroclick[2].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@partygaming.122.2o7[1].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@partypoker[1].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.vegasaffiliates[1].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@2xmoinscher[2].txt
      C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.2xmoinscher[1].txt

      ----------------------[ Verification du Registre ]----------------------

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

      ..... OK !

      --------------------[ Verification du fichier Hosts ]---------------------

      Fichier Hosts PROPRE


      ----------------[ Recherche de fichiers avec Catchme ]-----------------

      catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-06-06 19:13:24
      Windows 6.0.6000 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 0

      --------------------[ Recherche d'autres infections ]---------------------


      Aucune autre infection trouvée !

      [F:930][D:61]-> C:\Users\LESCHI~1\AppData\Local\Temp
      [F:1488][D:1]-> C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies
      [F:2143][D:12]-> C:\Users\LESCHI~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
      [F:35][D:4]-> C:\$Recycle.Bin

      [ UAC => 1 ]

      --------------------[ Fin du rapport a 19:24:38,45 ]----------------------
      0
  4. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    Relance LOP S&D d'Eric71

    Choisis cette fois ci l'Option 2 ( Suppression )
    Ne ferme pas la fenêtre lors de la suppression !
    Poste le rapport généré (situé aussi ici C:\lopR.txt )

    ( Si le Bureau ne réapparaît pas , lance le gestionnaire des tâches en cliquant sur Ctrl + Alt + Suppr , puis Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      voila le 2eme rapport, je te remrcie encore une fois de bien vouloir m'aider, c'est normal que je recoit beaucoup moins de pub?


      -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

      [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
      [ USER : Les chiffons ] [ "C:\Lop SD" ] [ Selection : 2 ]
      [ 06/06/2008 | 20:06:01,17 ] [ PC : PC ]
      [ MAJ : 01-06-2008 | 15:51 ]
      [ UAC => 0 ]


      \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

      Supprimé! - C:\ProgramData\Htm Support Bait Deaf\Dent Dash.exe
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.adserver5[1].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@banner.cotedazurpalace[2].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@cotedazurpalace[2].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@adopt.euroclick[2].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@partygaming.122.2o7[1].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@partypoker[1].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.vegasaffiliates[1].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@2xmoinscher[2].txt
      Supprimé! - C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies\les_chiffons@www.2xmoinscher[1].txt
      Supprimé! - C:\ProgramData\Bore File File.qar6qsj
      Supprimé! - C:\ProgramData\Bore File File.t043wv
      Supprimé! - C:\ProgramData\Bore File File.y797e
      Supprimé! - C:\ProgramData\four mp3 ace.g10lx8
      Supprimé! - C:\ProgramData\bike road bin
      Supprimé! - C:\ProgramData\Htm Support Bait Deaf
      Restauré! - Fichier Hosts

      //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

      Supprimé! - C:\Program Files\vmntoolbar

      //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


      -------------[ Listing des dossiers dans Application Data ]------------

      [23/04/2008|12:45] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Flash Player
      [27/03/2008|20:53] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Lightroom
      [27/03/2008|19:07] C:\Users\LESCHI~1\AppData\Roaming\Adobe\CameraRaw
      [08/09/2007|19:38] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Linguistics
      [19/08/2007|00:31] C:\Users\LESCHI~1\AppData\Roaming\Adobe\Acrobat

      [23/02/2008|20:23] C:\Users\LESCHI~1\AppData\Roaming\Apple Computer\iTunes

      [25/12/2007|20:02] C:\Users\LESCHI~1\AppData\Roaming\ArcSoft\PhilipsVLounge

      [24/05/2008|21:58] C:\Users\LESCHI~1\AppData\Roaming\EoRezo\eoDesktop
      [24/05/2008|21:58] C:\Users\LESCHI~1\AppData\Roaming\EoRezo\db

      [06/06/2008|15:05] C:\Users\LESCHI~1\AppData\Roaming\Google\Local Search History

      [18/08/2007|21:11] C:\Users\LESCHI~1\AppData\Roaming\Hewlett-Packard\HP Software UI

      [06/06/2008|19:45] C:\Users\LESCHI~1\AppData\Roaming\HP\CRMLogs
      [20/03/2008|20:47] C:\Users\LESCHI~1\AppData\Roaming\HP\Digital Imaging
      [07/09/2007|20:36] C:\Users\LESCHI~1\AppData\Roaming\HP\ScLogs

      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Identities\{27ECA087-3248-49F4-A0CA-148556DDEA93}


      [30/09/2007|19:32] C:\Users\LESCHI~1\AppData\Roaming\InstallShield\ISEngine12.0

      [24/05/2008|22:02] C:\Users\LESCHI~1\AppData\Roaming\ItsLabel\ItsTV

      [06/06/2008|17:34] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\promotion
      [19/02/2008|20:30] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\.NetworkShare
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\.AppSpecialShare
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\xml
      [11/10/2007|20:37] C:\Users\LESCHI~1\AppData\Roaming\LimeWire\themes

      [23/04/2008|12:43] C:\Users\LESCHI~1\AppData\Roaming\Macromedia\Flash Player


      [06/06/2008|14:32] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Templates
      [31/05/2008|22:26] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Outlook
      [31/05/2008|22:10] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Office
      [31/05/2008|22:10] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Publisher
      [31/05/2008|22:08] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\IMJP10
      [25/05/2008|13:38] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Word
      [08/05/2008|15:44] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\MSN Messenger
      [06/04/2008|14:59] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\OneNote
      [03/04/2008|17:38] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\UProof
      [27/03/2008|19:11] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\HTML Help
      [25/03/2008|14:23] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Excel
      [27/02/2008|20:23] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows Photo Gallery
      [11/02/2008|20:59] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
      [16/01/2008|19:09] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\MMC
      [06/12/2007|23:55] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\OIS
      [19/11/2007|20:30] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows Live Call
      [19/11/2007|20:30] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\IdentityCRL
      [30/10/2007|19:22] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Speech
      [26/09/2007|16:15] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\preuve
      [07/09/2007|20:41] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Internet Explorer
      [06/09/2007|20:18] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\PowerPoint
      [06/09/2007|19:37] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Clip Organizer
      [02/09/2007|00:40] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\CLView
      [01/09/2007|23:54] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\QuickStyles
      [01/09/2007|22:52] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Proof
      [01/09/2007|22:50] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Document Building Blocks
      [01/09/2007|22:50] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\AddIns
      [23/08/2007|17:07] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\eHome
      [19/08/2007|18:27] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Windows
      [19/08/2007|16:55] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Crypto
      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Protect
      [18/08/2007|21:16] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\SystemCertificates
      [18/08/2007|21:11] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\CLR Security Config
      [18/08/2007|21:09] C:\Users\LESCHI~1\AppData\Roaming\Microsoft\Credentials



      [28/05/2008|21:43] C:\Users\LESCHI~1\AppData\Roaming\Real\RealPlayer
      [28/05/2008|18:19] C:\Users\LESCHI~1\AppData\Roaming\Real\RealMediaSDK
      [28/05/2008|18:18] C:\Users\LESCHI~1\AppData\Roaming\Real\Msg
      [17/04/2008|20:00] C:\Users\LESCHI~1\AppData\Roaming\Real\rnadmin

      [05/03/2008|03:31] C:\Users\LESCHI~1\AppData\Roaming\Roxio\MediaManager9
      [05/03/2008|03:22] C:\Users\LESCHI~1\AppData\Roaming\Roxio\MyDVD9
      [05/03/2008|03:22] C:\Users\LESCHI~1\AppData\Roaming\Roxio\VideoUI9
      [06/10/2007|19:01] C:\Users\LESCHI~1\AppData\Roaming\Roxio\Dragon
      [22/08/2007|00:40] C:\Users\LESCHI~1\AppData\Roaming\Roxio\RoxioCentral

      [18/10/2007|18:11] C:\Users\LESCHI~1\AppData\Roaming\Symantec\Cleanup




      [18/03/2008|19:21] C:\Users\LESCHI~1\AppData\Roaming\WinBatch\Settings


      [02/01/2008|18:04] C:\Users\LESCHI~1\AppData\Roaming\Yahoo!\Companion

      ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

      [06/06/2008 19:49][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
      [06/06/2008 20:04][--ah-----] C:\Windows\tasks\SA.DAT
      [06/06/2008 20:03][--a------] C:\Windows\tasks\SCHEDLGU.TXT

      ------[ Listing des dossiers dans C:\ProgramData ]------

      [01/06/2007|22:58] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
      [27/03/2008|19:07] C:\ProgramData\Adobe
      [02/11/2006|15:02] C:\ProgramData\Application Data
      [18/08/2007|21:05] C:\ProgramData\Bureau
      [02/11/2006|15:02] C:\ProgramData\Desktop
      [02/11/2006|15:02] C:\ProgramData\Documents
      [27/10/2007|21:11] C:\ProgramData\eMule
      [18/08/2007|21:05] C:\ProgramData\Favoris
      [02/11/2006|15:02] C:\ProgramData\Favorites
      [06/06/2008|15:05] C:\ProgramData\Google
      [01/06/2007|23:14] C:\ProgramData\Hewlett-Packard
      [07/09/2007|20:36] C:\ProgramData\HP
      [01/04/2008|20:56] C:\ProgramData\hpzinstall.log
      [01/06/2007|22:41] C:\ProgramData\Intel
      [18/10/2007|17:37] C:\ProgramData\LUUnInstall.LiveUpdate
      [18/08/2007|21:05] C:\ProgramData\Menu D‚marrer
      [06/06/2008|14:29] C:\ProgramData\Microsoft
      [06/06/2008|20:02] C:\ProgramData\Microsoft Help
      [18/08/2007|21:05] C:\ProgramData\ModŠles
      [01/06/2007|22:53] C:\ProgramData\muvee Technologies
      [06/06/2008|19:15] C:\ProgramData\ntuser.pol
      [07/05/2008|15:00] C:\ProgramData\NVIDIA
      [01/06/2007|22:59] C:\ProgramData\PC-Doctor
      [01/06/2007|22:50] C:\ProgramData\Roxio
      [19/08/2007|14:06] C:\ProgramData\Sonic
      [02/11/2006|15:02] C:\ProgramData\Start Menu
      [06/06/2008|14:40] C:\ProgramData\Symantec
      [18/10/2007|17:29] C:\ProgramData\Symantec Temporary Files
      [02/11/2006|15:02] C:\ProgramData\Templates
      [23/05/2008|23:02] C:\ProgramData\TrackMania
      [07/09/2007|20:31] C:\ProgramData\WEBREG
      [27/02/2008|14:29] C:\ProgramData\WLInstaller
      [02/01/2008|18:04] C:\ProgramData\Yahoo! Companion

      ---------------[ Listing des dossiers dans C:\Program Files ]--------------

      [01/06/2007|22:58] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
      [27/03/2008|22:33] C:\Program Files\Adobe
      [18/08/2007|23:31] C:\Program Files\BoontyGames
      [27/02/2008|18:58] C:\Program Files\Common Files
      [31/08/2007|13:15] C:\Program Files\desktop.ini
      [25/12/2007|19:58] C:\Program Files\DIFX
      [02/01/2008|18:04] C:\Program Files\DivX
      [02/06/2007|08:07] C:\Program Files\EasyBits
      [27/10/2007|21:11] C:\Program Files\eMule
      [24/05/2008|22:01] C:\Program Files\EoRezo
      [18/08/2007|21:05] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
      [11/02/2008|10:28] C:\Program Files\GIMP-2.0
      [06/06/2008|15:05] C:\Program Files\Google
      [30/09/2007|19:33] C:\Program Files\Hercules
      [01/06/2007|23:00] C:\Program Files\Hewlett-Packard
      [01/04/2008|20:55] C:\Program Files\HP
      [11/02/2008|20:55] C:\Program Files\InstallShield Installation Information
      [24/05/2008|22:41] C:\Program Files\Intel
      [10/04/2008|13:25] C:\Program Files\Internet Explorer
      [18/10/2007|18:19] C:\Program Files\Java
      [06/06/2008|15:16] C:\Program Files\Lavasoft
      [06/06/2008|17:31] C:\Program Files\LimeWire
      [06/06/2008|17:16] C:\Program Files\Lopxp
      [20/08/2007|12:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
      [02/11/2006|14:37] C:\Program Files\Microsoft Games
      [03/06/2008|19:07] C:\Program Files\Microsoft Office
      [03/06/2008|19:08] C:\Program Files\Microsoft Small Business
      [04/06/2008|20:05] C:\Program Files\Microsoft SQL Server
      [27/03/2008|21:35] C:\Program Files\Microsoft Visual Studio
      [06/06/2008|14:26] C:\Program Files\Microsoft Visual Studio 8
      [01/06/2007|22:57] C:\Program Files\Microsoft Works
      [03/06/2008|18:59] C:\Program Files\Microsoft.NET
      [24/05/2008|22:25] C:\Program Files\MixVibes5
      [02/06/2007|08:20] C:\Program Files\Movie Maker
      [06/06/2008|14:30] C:\Program Files\MSBuild
      [27/09/2007|14:40] C:\Program Files\MSECache
      [02/11/2006|14:37] C:\Program Files\MSN
      [18/08/2007|21:17] C:\Program Files\MSXML 4.0
      [05/06/2008|19:36] C:\Program Files\Mumble
      [01/06/2007|22:53] C:\Program Files\muvee Technologies
      [18/01/2008|17:50] C:\Program Files\Norton 360
      [10/04/2008|14:35] C:\Program Files\Norton Security Scan
      [01/06/2007|23:10] C:\Program Files\PC-Doctor 5 for Windows
      [25/12/2007|19:57] C:\Program Files\Philips
      [01/06/2007|22:52] C:\Program Files\Real
      [01/04/2008|20:52] C:\Program Files\Realtek
      [02/11/2006|14:37] C:\Program Files\Reference Assemblies
      [06/09/2007|15:33] C:\Program Files\Rockstar Games
      [01/06/2007|22:51] C:\Program Files\Roxio
      [11/02/2008|10:10] C:\Program Files\Seagrand
      [01/06/2007|23:02] C:\Program Files\Services en ligne
      [06/06/2008|20:05] C:\Program Files\Steam
      [31/05/2008|10:15] C:\Program Files\Symantec
      [08/04/2008|22:27] C:\Program Files\Teamspeak2_RC2
      [06/06/2008|18:29] C:\Program Files\Trend Micro
      [02/11/2006|15:01] C:\Program Files\Uninstall Information
      [11/02/2008|20:45] C:\Program Files\Visicom Media
      [30/08/2007|12:24] C:\Program Files\Windows Calendar
      [02/06/2007|08:20] C:\Program Files\Windows Collaboration
      [01/06/2007|22:41] C:\Program Files\Windows Defender
      [02/06/2007|08:20] C:\Program Files\Windows Journal
      [27/02/2008|14:30] C:\Program Files\Windows Live
      [30/11/2007|18:35] C:\Program Files\Windows Live Toolbar
      [14/05/2008|19:56] C:\Program Files\Windows Mail
      [10/10/2007|13:48] C:\Program Files\Windows Media Player
      [18/08/2007|21:05] C:\Program Files\Windows NT
      [02/06/2007|08:20] C:\Program Files\Windows Photo Gallery
      [10/01/2008|00:03] C:\Program Files\Windows Sidebar
      [20/12/2007|22:04] C:\Program Files\Xvid
      [02/01/2008|18:04] C:\Program Files\Yahoo!

      ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

      [27/02/2008|18:58] C:\Program Files\Common Files\Adobe
      [25/12/2007|19:58] C:\Program Files\Common Files\ArcSoft
      [01/06/2007|22:57] C:\Program Files\Common Files\DESIGNER
      [07/09/2007|20:17] C:\Program Files\Common Files\Hewlett-Packard
      [07/09/2007|20:19] C:\Program Files\Common Files\HP
      [24/11/2007|00:24] C:\Program Files\Common Files\InstallShield
      [01/06/2007|22:41] C:\Program Files\Common Files\Intel
      [11/10/2007|20:35] C:\Program Files\Common Files\Java
      [01/06/2007|22:52] C:\Program Files\Common Files\LightScribe
      [01/06/2007|22:51] C:\Program Files\Common Files\LS Getting Started
      [06/06/2008|14:30] C:\Program Files\Common Files\microsoft shared
      [11/02/2008|20:55] C:\Program Files\Common Files\muvee Technologies
      [27/03/2008|22:32] C:\Program Files\Common Files\PX Storage Engine
      [01/06/2007|22:52] C:\Program Files\Common Files\Real
      [01/06/2007|22:50] C:\Program Files\Common Files\Roxio Shared
      [02/11/2006|13:18] C:\Program Files\Common Files\Services
      [01/06/2007|22:51] C:\Program Files\Common Files\Sonic Shared
      [25/12/2007|19:57] C:\Program Files\Common Files\SPC520NC
      [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
      [05/06/2008|23:02] C:\Program Files\Common Files\Steam
      [01/06/2007|22:51] C:\Program Files\Common Files\SureThing Shared
      [06/06/2008|15:39] C:\Program Files\Common Files\Symantec Shared
      [27/03/2008|21:31] C:\Program Files\Common Files\System
      [27/02/2008|14:31] C:\Program Files\Common Files\WindowsLiveInstaller
      [01/06/2007|22:52] C:\Program Files\Common Files\xing shared

      ---------------------------[ Process ]--------------------------

      ... 57

      ... OK !

      ----------------------[ Recherche avec S_Lop ]---------------------

      Aucun fichier / dossier Lop trouvé !

      -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

      Aucun fichier / dossier Lop trouvé !

      ----------------------[ Verification du Registre ]----------------------

      ..... OK !

      --------------------[ Verification du fichier Hosts ]---------------------

      Fichier Hosts PROPRE


      ----------------[ Recherche de fichiers avec Catchme ]-----------------

      catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-06-06 20:06:59
      Windows 6.0.6000 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 0

      --------------------[ Recherche d'autres infections ]---------------------


      Aucune autre infection trouvée !

      [F:942][D:61]-> C:\Users\LESCHI~1\AppData\Local\Temp
      [F:1480][D:1]-> C:\Users\LESCHI~1\AppData\Roaming\MICROS~1\Windows\Cookies
      [F:2282][D:12]-> C:\Users\LESCHI~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
      [F:35][D:4]-> C:\$Recycle.Bin

      [ UAC => 1 ]

      --------------------[ Fin du rapport a 20:08:29,02 ]----------------------
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Oui, c'est normal ! :-)

    # Désactiver le contrôle des comptes utilisateurs (le réactiver à la fin de la désinfection) :
    # Aller dans démarrer puis panneau de configuration
    # Double Cliquer sur l'icône "Comptes d'utilisateurs"
    # Cliquer ensuite sur désactiver et valider.
    # Faire un clic droit sur ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

    * Enregistrez la cible (du lien) sous... et enregistrez-le sur le bureau.
    * Ensuite double cliquer sur navilog1.exe pour lancer l'installation.
    * Une fois l'installation terminée, Faire un clic-droit sur le raccourci Navilog1 présent sur le bureau et choisir Exécuter en tant qu'administrateur
    * Arriver au menu principal, choisir l'option 1 et valider.
    * Patientez jusqu'au message : Analyse Termine le ...
    * Appuyer sur une touche, le blocnote s'ouvre, enregistrer le rapport manière à le retrouver.
    * Le rapport fixnavi.txt est en outre sauvegardé dans %systemdrive%. ( Cf : Exemple d'un rapport contenant des fichiers infectés plus haut ).

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      encore un autre,


      Search Navipromo version 3.5.8 commencé le 06/06/2008 à 20:27:54,54

      !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
      !!! Postez ce rapport sur le forum pour le faire analyser !!!
      !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

      Outil exécuté depuis C:\Program Files\navilog1
      Session actuelle : "Les chiffons"

      Mise à jour le 06.06.2008 à 18h00 par IL-MAFIOSO

      Microsoft Windows Vista 6.0.6000
      Internet Explorer : 7.0.6000.16643
      Système de fichiers : NTFS

      Recherche executé en mode normal

      *** Recherche Programmes installés ***


      *** Recherche dossiers dans "C:\Windows" ***


      *** Recherche dossiers dans "C:\Program Files" ***


      *** Recherche dossiers dans "C:\ProgramData" ***


      *** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


      *** Recherche dossiers dans "c:\users\leschi~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


      *** Recherche dossiers dans "C:\Users\IUSR_N~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


      *** Recherche dossiers dans "C:\Users\Les chiffons\AppData\Local\virtualstore\Program Files" ***


      *** Recherche dossiers dans "C:\Users\LESCHI~1\AppData\Roaming" ***


      *** Recherche dossiers dans "C:\Users\IUSR_N~1\appdata\roaming" ***

      *** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
      pour + d'infos : http://www.gmer.net

      Aucun Fichier trouvé


      *** Recherche avec GenericNaviSearch ***
      !!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
      !!! A vérifier impérativement avant toute suppression manuelle !!!

      * Recherche dans "C:\Windows\system32" *

      * Recherche dans "C:\Users\Les chiffons\AppData\Local\Microsoft" *

      * Recherche dans "C:\Users\Les chiffons\AppData\Local\virtualstore\windows\system32" *

      * Recherche dans "C:\Users\Les chiffons\AppData\Local" *

      * Recherche dans "C:\Users\IUSR_N~1\AppData\Local" *



      *** Recherche fichiers ***



      *** Recherche clés spécifiques dans le Registre ***


      *** Module de Recherche complémentaire ***
      (Recherche fichiers spécifiques)

      1)Recherche nouveaux fichiers Instant Access :


      2)Recherche Heuristique :

      * Dans "C:\Windows\system32" :


      * Dans "C:\Users\Les chiffons\AppData\Local\Microsoft" :


      * Dans "C:\Users\Les chiffons\AppData\Local\virtualstore\windows\system32" :


      * Dans "C:\Users\Les chiffons\AppData\Local" :


      * Dans "C:\Users\IUSR_N~1\AppData\Local" :


      3)Recherche Certificats :

      Certificat Egroup absent !
      Certificat Electronic-Group absent !
      Certificat OOO-Favorit absent !
      Certificat Sunny-Day-Design-Ltd absent !

      4)Recherche fichiers connus :



      *** Analyse terminée le 06/06/2008 à 20:38:49,95 ***
      0
  7. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok, fais ce qui est indiqué ici stp

    http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      Excuse moi mais AVG c'est quoi exactement comme logiciel?
      Comment je fais pour avoir ce rapport stp?
      0
    2. charliee Messages postés 14 Statut Membre
       
      re bonsoir green day, dans une des manipulations a faire il faut telecharger un anti virus mais j'en ai déja un, est ce que ca va pauser probleme?
      0
    3. charliee Messages postés 14 Statut Membre
       
      ---------------------------------------------------------
      AVG Anti-Spyware - Rapport d'analyse
      ---------------------------------------------------------

      + Créé à: 23:04:05 06/06/2008

      + Résultat de l'analyse:



      C:\Lop SD\Backup-Lop\F\les_chiffons@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
      C:\Lop SD\Backup-Lop\F\les_chiffons@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Aucune action entreprise.


      Fin du rapport
      0
  8. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    re salut

    non, ce n'est pas un avg antivirus, c'est l'antispy !

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      Mais bitdefender est un anti virus ,mais moi j'ai deja norton activé je ne peut pas en avoir deux?
      0
    2. charliee Messages postés 14 Statut Membre
       
      je tenvoi encore une fois un rapport

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 23:10:43, on 06/06/2008
      Platform: Windows Vista (WinNT 6.00.1904)
      MSIE: Internet Explorer v7.00 (7.00.6000.16643)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\Dwm.exe
      C:\Windows\system32\taskeng.exe
      C:\Program Files\Common Files\Symantec Shared\ccApp.exe
      C:\Program Files\Windows Sidebar\sidebar.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Windows\ehome\ehtray.exe
      C:\Windows\ehome\ehmsas.exe
      C:\Program Files\Windows Media Player\wmpnscfg.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      C:\Windows\VPro520.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
      C:\Windows\explorer.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Windows\system32\conime.exe
      C:\Program Files\Steam\Steam.exe
      C:\Program Files\Mumble\bin\dbus-daemon.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Windows\system32\wuauclt.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
      C:\Windows\system32\SearchFilterHost.exe

      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
      O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - (no file)
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
      O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
      O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
      O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
      O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: VPro520.lnk = ?
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
      O13 - Gopher Prefix:
      O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
      O16 - DPF: {33DFB28A-9792-4AFC-B594-D589365DF67D} (Bahu Photo Uploader) - https://bahu.com/BahuPhotoUploader.cab
      O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/VistaMSNPUplden-us.cab
      O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
      O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
      O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
      O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
      O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
      O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
      O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
      O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
      O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
      O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
      O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
      O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
      O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
      O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
      0
  9. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    pas de soucis à avoir, c'est un scan en ligne ! ;-)

    ne t'inquiète pas aucun risque de conflit avec norton !

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      Bonjour Green day désolé je t'ai pas envoyé le dernier rapport mais le boulot n'attend pas, mais je suis en train de le faire,si ca te derange pas je te l'envoie dés que c'est fini. Merci encore ca change la vie sans toutes ces pub qui nous harcélent.
      0
  10. freelog Messages postés 2181 Statut Membre 136
     
    bonjour green day
    la forme ?
    0
  11. charliee Messages postés 14 Statut Membre
     
    Re salut, je t'envoie je crois, le rapport de bitdefender j'espere que c'est ca.Est ce que il y a encore des choses a faiire aprés ca?

    BitDefender Online Scanner

    Scan report generated at: Sat, Jun 07, 2008 - 00:16:06

    Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;

    Statistics

    Time
    00:49:48

    Files
    224525

    Folders
    10290

    Boot Sectors
    3

    Archives
    2182

    Packed Files
    14702

    Results

    Identified Viruses
    1

    Infected Files
    1

    Suspect Files
    0

    Warnings
    0

    Disinfected
    0

    Deleted Files
    1

    Engines Info

    Virus Definitions
    1256768

    Engine build
    AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

    Scan plugins
    16

    Archive plugins
    42

    Unpack plugins
    7

    E-mail plugins
    6

    System plugins
    5

    Scan Settings

    First Action
    Disinfect

    Second Action
    Delete

    Heuristics
    Yes

    Enable Warnings
    Yes

    Scanned Extensions
    *;

    Exclude Extensions

    Scan Emails
    Yes

    Scan Archives
    Yes

    Scan Packed
    Yes

    Scan Files
    Yes

    Scan Boot
    Yes

    Scanned File
    Status

    C:\Lop SD\Backup-Lop\F\Dent Dash.exe
    Infected with: Trojan.Obfus.6.Gen

    C:\Lop SD\Backup-Lop\F\Dent Dash.exe
    Disinfection failed

    C:\Lop SD\Backup-Lop\F\Dent Dash.exe
    Deleted
    0
  12. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Bonjour ! :-)

    très bien, où en sont tes soucy ??

    @+
    0
    1. charliee Messages postés 14 Statut Membre
       
      Bonsoir Greenday, c'est bon je n'est plus aucune pub qui apparait c'est trop geniale de pouvoir aller sur internet sans souci.
      Je te remercie encore une fois pour toute ton aide c'etait super sympa.
      Bonne soirée.
      0
  13. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    pas d'quoi ;-)

    un peu de lecture au passage :

    http://www.commentcamarche.net/faq/sujet 2432 securite proteger un ordinateur contre les malwares d internet

    @+
    0