CiD

Résolu

marwyl Messages postés 370 Statut Membre -
jlpjlp Messages postés 52399 Statut Contributeur sécurité - 11 juil. 2008 à 17:05

Bonjour,
Comme beaucoup d'internautes je suis envahie par des fenêtres intempestives Cid.

Voici le rapport Hiackthis :

Merci d'avanceLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:33:30, on 09/07/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\kbd.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Martine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62UQ3SUS\HiJackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.searchgateway.net/search/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.searchgateway.net/search/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.searchgateway.net/search/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.searchgateway.net/search/%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IS CfgWiz] "c:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe" /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Internet mix] "C:\ProgramData\dvd atom atom.xxzsx1"
O4 - HKLM\..\Run: [Amok Eggs Four Web] "C:\ProgramData\Thunk Deaf Settings.969ulz"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Envoyer l'image vers la bibliothèque - file://C:\Program Files\MGI\MGI PhotoSuite II\Temp\MGI00000.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O13 - Gopher Prefix:
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

Afficher la suite

A voir également:

10 réponses

Réponse 1 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

slt,

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)

_____________

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)

marwyl Messages postés 370 Statut Membre 10

Rebonjour,

Voici le rapport Lop S&D :

-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Martine ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 09/07/2008 | 14:47:59,23 ] [ PC : PC-DE-MARTINE ]
[ MAJ : 06-07-2008 | 10:55 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Roaming ]------------

[16/01/2008|21:42] C:\Users\Martine\AppData\Roaming\Adobe\Flash Player
[23/02/2007|20:38] C:\Users\Martine\AppData\Roaming\Adobe\Acrobat

[13/04/2008|16:37] C:\Users\Martine\AppData\Roaming\Ahead\Nero Burning ROM
[29/03/2008|14:12] C:\Users\Martine\AppData\Roaming\Ahead\NeroVision
[07/12/2007|21:17] C:\Users\Martine\AppData\Roaming\Ahead\Nero BackItUp

[02/04/2008|19:37] C:\Users\Martine\AppData\Roaming\AVS4YOU\AVSVideoConverter

[19/10/2007|21:04] C:\Users\Martine\AppData\Roaming\CyberLink\PowerDVD
[16/10/2007|22:58] C:\Users\Martine\AppData\Roaming\CyberLink\PowerCinema

[26/05/2007|20:35] C:\Users\Martine\AppData\Roaming\DriveCleaner Free\Logs

[09/12/2007|20:25] C:\Users\Martine\AppData\Roaming\Google\GoogleEarth
[17/07/2007|13:48] C:\Users\Martine\AppData\Roaming\Google\Local Search History

[22/02/2007|22:51] C:\Users\Martine\AppData\Roaming\Hewlett-Packard\HP Software UI

[17/03/2007|19:19] C:\Users\Martine\AppData\Roaming\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVIP}
[22/02/2007|22:55] C:\Users\Martine\AppData\Roaming\Identities\{3974543C-A638-467A-9467-4D8094E64C7C}

[22/07/2007|21:38] C:\Users\Martine\AppData\Roaming\InstallShield\ISEngine12.0

[16/01/2008|21:41] C:\Users\Martine\AppData\Roaming\Macromedia\Flash Player
[24/03/2007|14:57] C:\Users\Martine\AppData\Roaming\Macromedia\Shockwave Player

[01/06/2008|18:42] C:\Users\Martine\AppData\Roaming\Microsoft\ModŠles
[01/06/2008|18:41] C:\Users\Martine\AppData\Roaming\Microsoft\Word
[13/05/2008|19:30] C:\Users\Martine\AppData\Roaming\Microsoft\MSN Messenger
[12/05/2008|10:28] C:\Users\Martine\AppData\Roaming\Microsoft\preuve
[16/03/2008|14:38] C:\Users\Martine\AppData\Roaming\Microsoft\eHome
[14/03/2008|22:14] C:\Users\Martine\AppData\Roaming\Microsoft\Media Player
[30/11/2007|00:03] C:\Users\Martine\AppData\Roaming\Microsoft\Office
[24/07/2007|23:26] C:\Users\Martine\AppData\Roaming\Microsoft\Excel
[23/07/2007|14:52] C:\Users\Martine\AppData\Roaming\Microsoft\HTML Help
[23/07/2007|13:41] C:\Users\Martine\AppData\Roaming\Microsoft\PowerPoint
[10/06/2007|13:51] C:\Users\Martine\AppData\Roaming\Microsoft\Media Catalog
[04/06/2007|19:12] C:\Users\Martine\AppData\Roaming\Microsoft\SystemCertificates
[04/06/2007|19:12] C:\Users\Martine\AppData\Roaming\Microsoft\Crypto
[28/05/2007|12:03] C:\Users\Martine\AppData\Roaming\Microsoft\IdentityCRL
[13/05/2007|12:32] C:\Users\Martine\AppData\Roaming\Microsoft\Internet Explorer
[05/05/2007|13:45] C:\Users\Martine\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/02/2007|20:40] C:\Users\Martine\AppData\Roaming\Microsoft\MSNIA
[23/02/2007|20:55] C:\Users\Martine\AppData\Roaming\Microsoft\Network
[23/02/2007|20:18] C:\Users\Martine\AppData\Roaming\Microsoft\MMC
[22/02/2007|22:55] C:\Users\Martine\AppData\Roaming\Microsoft\Protect
[22/02/2007|22:51] C:\Users\Martine\AppData\Roaming\Microsoft\CLR Security Config
[22/02/2007|22:49] C:\Users\Martine\AppData\Roaming\Microsoft\Credentials
[02/11/2006|13:18] C:\Users\Martine\AppData\Roaming\Microsoft\Windows

[25/07/2007|19:52] C:\Users\Martine\AppData\Roaming\Mozilla\Firefox

[21/07/2007|16:14] C:\Users\Martine\AppData\Roaming\MySpace\IM

[28/10/2007|22:12] C:\Users\Martine\AppData\Roaming\Real\RealMediaSDK

[01/08/2007|16:26] C:\Users\Martine\AppData\Roaming\Roxio\RoxioCentral
[01/08/2007|16:25] C:\Users\Martine\AppData\Roaming\Roxio\RoxioCentral33

[09/07/2008|14:17] C:\Users\Martine\AppData\Roaming\Shareaza\Collections
[09/07/2008|14:17] C:\Users\Martine\AppData\Roaming\Shareaza\Torrents
[08/07/2008|23:58] C:\Users\Martine\AppData\Roaming\Shareaza\Data

[25/07/2007|19:52] C:\Users\Martine\AppData\Roaming\Talkback\MozillaOrg

[11/05/2008|11:01] C:\Users\Martine\AppData\Roaming\TuneUp Software\TuneUp Utilities

[31/05/2007|19:16] C:\Users\Martine\AppData\Roaming\WinBatch\Settings

[17/03/2007|19:19] C:\Users\Martine\AppData\Roaming\Zylom\106

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[04/07/2008 17:15][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
[09/07/2008 14:44][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{898F2457-2A29-4261-8067-FDF0E3DB68E0}.job
[09/07/2008 10:06][--ah-----] C:\Windows\tasks\SA.DAT
[08/07/2008 23:58][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[06/12/2006|15:18] C:\ProgramData\Adobe
[22/02/2007|22:45] C:\ProgramData\Application Data
[02/04/2008|19:37] C:\ProgramData\AVS4YOU
[22/02/2007|22:45] C:\ProgramData\Bureau
[07/12/2007|21:27] C:\ProgramData\C9B086CE-4A3B-11DB-8373-B622A1EF5492
[12/10/2007|20:38] C:\ProgramData\Ciel
[16/10/2007|22:54] C:\ProgramData\CyberLink
[04/07/2008|20:17] C:\ProgramData\dartbalmpile
[22/02/2007|22:45] C:\ProgramData\Documents
[06/07/2008|15:35] C:\ProgramData\dvd atom atom.0l5epr
[05/07/2008|22:09] C:\ProgramData\dvd atom atom.0s168b4
[05/07/2008|23:37] C:\ProgramData\dvd atom atom.0sp24
[06/07/2008|17:48] C:\ProgramData\dvd atom atom.1gk4mc
[06/07/2008|01:05] C:\ProgramData\dvd atom atom.2i2c9
[06/07/2008|14:29] C:\ProgramData\dvd atom atom.2vkjtl
[04/07/2008|22:42] C:\ProgramData\dvd atom atom.3att2
[05/07/2008|16:58] C:\ProgramData\dvd atom atom.3zhq0d
[04/07/2008|23:58] C:\ProgramData\dvd atom atom.4cssykj
[05/07/2008|15:52] C:\ProgramData\dvd atom atom.4erprne
[05/07/2008|21:02] C:\ProgramData\dvd atom atom.4mper9r
[06/07/2008|15:58] C:\ProgramData\dvd atom atom.4ubox
[05/07/2008|16:36] C:\ProgramData\dvd atom atom.5o9brf
[05/07/2008|21:24] C:\ProgramData\dvd atom atom.5xs205c
[06/07/2008|14:51] C:\ProgramData\dvd atom atom.6360y5
[07/07/2008|00:26] C:\ProgramData\dvd atom atom.7cy2hd
[04/07/2008|21:46] C:\ProgramData\dvd atom atom.7e81w7
[06/07/2008|11:55] C:\ProgramData\dvd atom atom.7sbnw
[06/07/2008|17:26] C:\ProgramData\dvd atom atom.7war0
[05/07/2008|13:59] C:\ProgramData\dvd atom atom.7xeq8t
[05/07/2008|14:22] C:\ProgramData\dvd atom atom.8fslw
[07/07/2008|00:48] C:\ProgramData\dvd atom atom.8lhsp6
[04/07/2008|21:24] C:\ProgramData\dvd atom atom.8uf0l0y
[05/07/2008|13:37] C:\ProgramData\dvd atom atom.94unk
[05/07/2008|22:31] C:\ProgramData\dvd atom atom.9reh56h
[07/07/2008|00:04] C:\ProgramData\dvd atom atom.9rusva
[08/07/2008|22:33] C:\ProgramData\dvd atom atom.9xhjd3a
[05/07/2008|18:27] C:\ProgramData\dvd atom atom.afn5r
[06/07/2008|17:04] C:\ProgramData\dvd atom atom.baas7
[05/07/2008|23:15] C:\ProgramData\dvd atom atom.c5g95j
[05/07/2008|11:01] C:\ProgramData\dvd atom atom.dgfjs
[06/07/2008|23:43] C:\ProgramData\dvd atom atom.dv4ry
[05/07/2008|18:04] C:\ProgramData\dvd atom atom.e98sd
[05/07/2008|11:24] C:\ProgramData\dvd atom atom.fh631w5
[09/07/2008|14:39] C:\ProgramData\dvd atom atom.g9qi4
[04/07/2008|20:17] C:\ProgramData\dvd atom atom.gildv
[04/07/2008|22:09] C:\ProgramData\dvd atom atom.gn6ftz2
[05/07/2008|20:18] C:\ProgramData\dvd atom atom.gqqiw6
[05/07/2008|14:45] C:\ProgramData\dvd atom atom.h1x0ut7
[06/07/2008|12:16] C:\ProgramData\dvd atom atom.h59gw
[05/07/2008|17:20] C:\ProgramData\dvd atom atom.hfluwi
[06/07/2008|00:21] C:\ProgramData\dvd atom atom.hicnjrt
[06/07/2008|13:45] C:\ProgramData\dvd atom atom.hlbd15q
[05/07/2008|16:14] C:\ProgramData\dvd atom atom.i8xz7jx
[06/07/2008|14:07] C:\ProgramData\dvd atom atom.ir2p8e8
[04/07/2008|20:39] C:\ProgramData\dvd atom atom.j1kj59w
[04/07/2008|22:30] C:\ProgramData\dvd atom atom.kbkgg
[06/07/2008|16:42] C:\ProgramData\dvd atom atom.kkoivg
[05/07/2008|20:40] C:\ProgramData\dvd atom atom.ky7nm4
[06/07/2008|13:23] C:\ProgramData\dvd atom atom.l0bjl
[05/07/2008|22:52] C:\ProgramData\dvd atom atom.l9eed
[08/07/2008|22:11] C:\ProgramData\dvd atom atom.m68f1dm
[04/07/2008|23:36] C:\ProgramData\dvd atom atom.m9ayn
[06/07/2008|22:37] C:\ProgramData\dvd atom atom.mr56if
[05/07/2008|15:30] C:\ProgramData\dvd atom atom.n46zf7m
[06/07/2008|16:20] C:\ProgramData\dvd atom atom.nferm
[04/07/2008|20:17] C:\ProgramData\dvd atom atom.ouwyy
[06/07/2008|01:49] C:\ProgramData\dvd atom atom.p658r
[08/07/2008|23:17] C:\ProgramData\dvd atom atom.q4ykmd
[05/07/2008|12:30] C:\ProgramData\dvd atom atom.q840l
[05/07/2008|21:46] C:\ProgramData\dvd atom atom.qhx8nus
[05/07/2008|23:59] C:\ProgramData\dvd atom atom.r46lk
[06/07/2008|00:43] C:\ProgramData\dvd atom atom.s3apuz
[05/07/2008|19:11] C:\ProgramData\dvd atom atom.sulr2
[08/07/2008|22:55] C:\ProgramData\dvd atom atom.sxf05
[05/07/2008|10:39] C:\ProgramData\dvd atom atom.szmz9t
[06/07/2008|01:27] C:\ProgramData\dvd atom atom.t9la2xm
[05/07/2008|18:49] C:\ProgramData\dvd atom atom.th8vmf
[04/07/2008|23:14] C:\ProgramData\dvd atom atom.trvxxmx
[05/07/2008|19:33] C:\ProgramData\dvd atom atom.u1jnf
[05/07/2008|17:42] C:\ProgramData\dvd atom atom.u31flt1
[04/07/2008|21:01] C:\ProgramData\dvd atom atom.uo1u9hp
[05/07/2008|12:53] C:\ProgramData\dvd atom atom.v6a3x
[06/07/2008|15:13] C:\ProgramData\dvd atom atom.vbd2rh5
[06/07/2008|22:15] C:\ProgramData\dvd atom atom.vd65cts
[07/07/2008|01:10] C:\ProgramData\dvd atom atom.w49rkjd
[06/07/2008|19:33] C:\ProgramData\dvd atom atom.ww0w8
[06/07/2008|23:21] C:\ProgramData\dvd atom atom.wzh1vew
[05/07/2008|15:07] C:\ProgramData\dvd atom atom.xduz8m
[06/07/2008|13:00] C:\ProgramData\dvd atom atom.xr7m7
[05/07/2008|13:15] C:\ProgramData\dvd atom atom.xvs63ap
[08/07/2008|23:38] C:\ProgramData\dvd atom atom.xxzsx1
[05/07/2008|12:08] C:\ProgramData\dvd atom atom.y04dj
[05/07/2008|11:46] C:\ProgramData\dvd atom atom.ytna7l
[06/07/2008|22:59] C:\ProgramData\dvd atom atom.yzcbg
[06/07/2008|19:10] C:\ProgramData\dvd atom atom.ze5bzc
[05/07/2008|19:56] C:\ProgramData\dvd atom atom.zgnk3l
[04/07/2008|22:52] C:\ProgramData\dvd atom atom.zhj21
[06/07/2008|12:38] C:\ProgramData\dvd atom atom.zrx453i
[01/12/2007|15:05] C:\ProgramData\DVD Shrink
[03/04/2008|20:22] C:\ProgramData\dyaniilw.kxq
[09/06/2008|11:43] C:\ProgramData\eMule
[22/02/2007|22:45] C:\ProgramData\Favoris
[18/06/2007|19:13] C:\ProgramData\Friends Games
[06/12/2006|15:24] C:\ProgramData\Google
[06/12/2006|15:39] C:\ProgramData\Hewlett-Packard
[06/12/2006|15:22] C:\ProgramData\InstallShield
[06/12/2006|15:16] C:\ProgramData\Intel
[04/06/2008|19:25] C:\ProgramData\LUUnInstall.LiveUpdate
[22/02/2007|22:45] C:\ProgramData\Menu D‚marrer
[07/04/2007|23:04] C:\ProgramData\Messenger Plus!
[24/09/2007|20:08] C:\ProgramData\Microsoft
[22/02/2007|22:45] C:\ProgramData\ModŠles
[07/12/2007|21:14] C:\ProgramData\Nero
[22/01/2008|23:35] C:\ProgramData\NVIDIA
[04/07/2008|20:17] C:\ProgramData\part dead amok eggs
[07/12/2007|21:27] C:\ProgramData\RapidSolution
[14/10/2007|22:11] C:\ProgramData\Roxio
[28/02/2007|12:16] C:\ProgramData\SBT
[01/08/2007|16:25] C:\ProgramData\Sonic
[04/03/2007|22:48] C:\ProgramData\Symantec
[22/06/2007|22:28] C:\ProgramData\TEMP
[04/07/2008|20:17] C:\ProgramData\Thunk Deaf Settings.969ulz
[08/06/2007|22:35] C:\ProgramData\TuneUp Software
[04/07/2007|18:58] C:\ProgramData\WindowsLiveInstaller
[12/05/2008|23:35] C:\ProgramData\WinZip
[19/01/2008|12:27] C:\ProgramData\WLInstaller
[17/03/2007|19:18] C:\ProgramData\Zylom

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/06/2008|21:02] C:\Program Files\Acoolsoft
[13/05/2008|20:06] C:\Program Files\Acronis
[06/12/2006|15:18] C:\Program Files\Adobe
[08/07/2008|23:39] C:\Program Files\Antipub
[15/11/2007|21:23] C:\Program Files\AskTBar
[26/02/2007|13:50] C:\Program Files\Atlantis
[05/04/2008|20:28] C:\Program Files\AviSynth 2.5
[03/04/2008|19:36] C:\Program Files\AVS4YOU
[26/02/2007|13:50] C:\Program Files\BFG
[08/05/2008|12:12] C:\Program Files\Broderbund
[04/07/2008|20:16] C:\Program Files\Circle Developement
[11/05/2008|11:01] C:\Program Files\Common Files
[16/10/2007|22:51] C:\Program Files\CyberLink
[04/07/2008|20:17] C:\Program Files\dartbalmpile
[30/08/2007|14:56] C:\Program Files\desktop.ini
[25/11/2007|01:24] C:\Program Files\Digital Camera
[26/10/2007|19:31] C:\Program Files\Disney Interactive
[05/07/2007|15:57] C:\Program Files\Dofus-Arena
[17/12/2007|22:24] C:\Program Files\EasyPhotoTools
[09/06/2008|11:43] C:\Program Files\eMule
[06/04/2008|22:12] C:\Program Files\eRightSoft
[22/02/2007|22:45] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[05/04/2008|23:07] C:\Program Files\Free Audio Pack
[20/10/2007|15:18] C:\Program Files\Free Easy Burner
[10/11/2007|23:40] C:\Program Files\Google
[13/05/2008|20:09] C:\Program Files\Guitar Pro 5
[03/03/2007|15:37] C:\Program Files\Hercules
[06/12/2006|15:22] C:\Program Files\Hewlett-Packard
[06/12/2006|15:19] C:\Program Files\HP
[13/05/2008|20:09] C:\Program Files\HT MPEG Encoder 7.0 Trial
[23/08/2007|19:28] C:\Program Files\IMVU
[12/05/2008|23:16] C:\Program Files\InstallShield Installation Information
[22/07/2007|21:39] C:\Program Files\Intel
[08/07/2008|21:28] C:\Program Files\Internet Explorer
[04/06/2007|19:07] C:\Program Files\Java
[13/05/2008|20:09] C:\Program Files\K-Lite Codec Pack
[13/03/2007|22:22] C:\Program Files\Last.fm
[26/02/2007|14:06] C:\Program Files\Magic Vines
[04/07/2008|20:16] C:\Program Files\Messenger Plus! Live
[05/07/2007|23:08] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/02/2007|12:16] C:\Program Files\Microsoft Office
[06/12/2006|15:20] C:\Program Files\Microsoft Works
[23/12/2007|22:07] C:\Program Files\mIRC
[06/12/2006|23:59] C:\Program Files\Movie Maker
[04/06/2008|19:22] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/02/2007|20:40] C:\Program Files\MSN
[01/03/2007|00:55] C:\Program Files\MSXML 4.0
[20/07/2007|13:37] C:\Program Files\MySpace
[07/12/2007|21:14] C:\Program Files\Nero
[27/04/2007|19:01] C:\Program Files\NewSoft
[04/03/2007|22:47] C:\Program Files\Norton Internet Security
[16/06/2007|22:03] C:\Program Files\Orange
[13/05/2008|20:09] C:\Program Files\Packard Bell Magic Movie
[06/12/2006|15:33] C:\Program Files\PC-Doctor 5 for Windows
[10/06/2008|15:26] C:\Program Files\QuickMediaConverter
[07/12/2007|21:33] C:\Program Files\Radiotracker
[07/12/2007|21:26] C:\Program Files\Rapid Solution Software AG
[06/12/2006|15:14] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[06/12/2006|15:17] C:\Program Files\Roxio
[28/02/2007|19:53] C:\Program Files\SAGEM
[28/02/2007|19:48] C:\Program Files\Securitoo
[06/12/2006|15:24] C:\Program Files\Services en ligne
[15/06/2008|14:18] C:\Program Files\Shareaza
[28/02/2007|12:16] C:\Program Files\Snapshot Viewer
[12/05/2008|23:11] C:\Program Files\Symantec
[04/03/2007|22:47] C:\Program Files\Thomson
[08/05/2008|12:20] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/02/2007|20:00] C:\Program Files\Wanadoo
[30/08/2007|14:54] C:\Program Files\Windows Calendar
[06/12/2006|23:59] C:\Program Files\Windows Collaboration
[14/04/2007|12:49] C:\Program Files\Windows Defender
[06/12/2006|23:59] C:\Program Files\Windows Journal
[04/07/2007|18:58] C:\Program Files\Windows Live
[08/07/2008|21:29] C:\Program Files\Windows Mail
[12/10/2007|20:46] C:\Program Files\Windows Media Player
[22/02/2007|22:45] C:\Program Files\Windows NT
[06/12/2006|23:59] C:\Program Files\Windows Photo Gallery
[08/07/2008|21:28] C:\Program Files\Windows Sidebar
[24/02/2008|15:08] C:\Program Files\WinRAR
[21/06/2008|18:37] C:\Program Files\Wondershare
[08/05/2008|12:21] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[12/05/2008|23:09] C:\Program Files\Common Files\Acronis
[06/12/2006|15:18] C:\Program Files\Common Files\Adobe
[07/12/2007|21:16] C:\Program Files\Common Files\Ahead
[03/04/2008|19:36] C:\Program Files\Common Files\AVSMedia
[28/02/2007|12:08] C:\Program Files\Common Files\Designer
[26/02/2007|20:09] C:\Program Files\Common Files\InstallShield
[06/12/2006|15:16] C:\Program Files\Common Files\Intel
[04/06/2007|19:05] C:\Program Files\Common Files\Java
[15/12/2007|20:04] C:\Program Files\Common Files\LightScribe
[06/12/2006|15:18] C:\Program Files\Common Files\LS Getting Started
[05/04/2008|20:25] C:\Program Files\Common Files\microsoft shared
[06/12/2006|15:17] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[06/12/2006|15:17] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[06/12/2006|15:17] C:\Program Files\Common Files\SureThing Shared
[04/03/2007|22:47] C:\Program Files\Common Files\Symantec Shared
[16/06/2007|21:57] C:\Program Files\Common Files\System
[08/05/2008|12:18] C:\Program Files\Common Files\Ulead Systems
[19/01/2008|12:34] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 65

iexplore.exe ~ [1400]
iexplore.exe ~ [2888]
iexplore.exe ~ [2212]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\dvd atom atom.0l5epr
C:\ProgramData\dvd atom atom.0s168b4
C:\ProgramData\dvd atom atom.0sp24
C:\ProgramData\dvd atom atom.1gk4mc
C:\ProgramData\dvd atom atom.2i2c9
C:\ProgramData\dvd atom atom.2vkjtl
C:\ProgramData\dvd atom atom.3att2
C:\ProgramData\dvd atom atom.3zhq0d
C:\ProgramData\dvd atom atom.4cssykj
C:\ProgramData\dvd atom atom.4erprne
C:\ProgramData\dvd atom atom.4mper9r
C:\ProgramData\dvd atom atom.4ubox
C:\ProgramData\dvd atom atom.5o9brf
C:\ProgramData\dvd atom atom.5xs205c
C:\ProgramData\dvd atom atom.6360y5
C:\ProgramData\dvd atom atom.7cy2hd
C:\ProgramData\dvd atom atom.7e81w7
C:\ProgramData\dvd atom atom.7sbnw
C:\ProgramData\dvd atom atom.7war0
C:\ProgramData\dvd atom atom.7xeq8t
C:\ProgramData\dvd atom atom.8fslw
C:\ProgramData\dvd atom atom.8lhsp6
C:\ProgramData\dvd atom atom.8uf0l0y
C:\ProgramData\dvd atom atom.94unk
C:\ProgramData\dvd atom atom.9reh56h
C:\ProgramData\dvd atom atom.9rusva
C:\ProgramData\dvd atom atom.9xhjd3a
C:\ProgramData\dvd atom atom.afn5r
C:\ProgramData\dvd atom atom.baas7
C:\ProgramData\dvd atom atom.c5g95j
C:\ProgramData\dvd atom atom.dgfjs
C:\ProgramData\dvd atom atom.dv4ry
C:\ProgramData\dvd atom atom.e98sd
C:\ProgramData\dvd atom atom.fh631w5
C:\ProgramData\dvd atom atom.g9qi4
C:\ProgramData\dvd atom atom.gildv
C:\ProgramData\dvd atom atom.gn6ftz2
C:\ProgramData\dvd atom atom.gqqiw6
C:\ProgramData\dvd atom atom.h1x0ut7
C:\ProgramData\dvd atom atom.h59gw
C:\ProgramData\dvd atom atom.hfluwi
C:\ProgramData\dvd atom atom.hicnjrt
C:\ProgramData\dvd atom atom.hlbd15q
C:\ProgramData\dvd atom atom.i8xz7jx
C:\ProgramData\dvd atom atom.ir2p8e8
C:\ProgramData\dvd atom atom.j1kj59w
C:\ProgramData\dvd atom atom.kbkgg
C:\ProgramData\dvd atom atom.kkoivg
C:\ProgramData\dvd atom atom.ky7nm4
C:\ProgramData\dvd atom atom.l0bjl
C:\ProgramData\dvd atom atom.l9eed
C:\ProgramData\dvd atom atom.m68f1dm
C:\ProgramData\dvd atom atom.m9ayn
C:\ProgramData\dvd atom atom.mr56if
C:\ProgramData\dvd atom atom.n46zf7m
C:\ProgramData\dvd atom atom.nferm
C:\ProgramData\dvd atom atom.ouwyy
C:\ProgramData\dvd atom atom.p658r
C:\ProgramData\dvd atom atom.q4ykmd
C:\ProgramData\dvd atom atom.q840l
C:\ProgramData\dvd atom atom.qhx8nus
C:\ProgramData\dvd atom atom.r46lk
C:\ProgramData\dvd atom atom.s3apuz
C:\ProgramData\dvd atom atom.sulr2
C:\ProgramData\dvd atom atom.sxf05
C:\ProgramData\dvd atom atom.szmz9t
C:\ProgramData\dvd atom atom.t9la2xm
C:\ProgramData\dvd atom atom.th8vmf
C:\ProgramData\dvd atom atom.trvxxmx
C:\ProgramData\dvd atom atom.u1jnf
C:\ProgramData\dvd atom atom.u31flt1
C:\ProgramData\dvd atom atom.uo1u9hp
C:\ProgramData\dvd atom atom.v6a3x
C:\ProgramData\dvd atom atom.vbd2rh5
C:\ProgramData\dvd atom atom.vd65cts
C:\ProgramData\dvd atom atom.w49rkjd
C:\ProgramData\dvd atom atom.ww0w8
C:\ProgramData\dvd atom atom.wzh1vew
C:\ProgramData\dvd atom atom.xduz8m
C:\ProgramData\dvd atom atom.xr7m7
C:\ProgramData\dvd atom atom.xvs63ap
C:\ProgramData\dvd atom atom.xxzsx1
C:\ProgramData\dvd atom atom.y04dj
C:\ProgramData\dvd atom atom.ytna7l
C:\ProgramData\dvd atom atom.yzcbg
C:\ProgramData\dvd atom atom.ze5bzc
C:\ProgramData\dvd atom atom.zgnk3l
C:\ProgramData\dvd atom atom.zhj21
C:\ProgramData\dvd atom atom.zrx453i
C:\ProgramData\Thunk Deaf Settings.969ulz
C:\ProgramData\dvd atom atom.0l5epr
C:\ProgramData\dvd atom atom.0s168b4
C:\ProgramData\dvd atom atom.1gk4mc
C:\ProgramData\dvd atom atom.2i2c9
C:\ProgramData\dvd atom atom.3zhq0d
C:\ProgramData\dvd atom atom.4erprne
C:\ProgramData\dvd atom atom.4ubox
C:\ProgramData\dvd atom atom.5o9brf
C:\ProgramData\dvd atom atom.6360y5
C:\ProgramData\dvd atom atom.7cy2hd
C:\ProgramData\dvd atom atom.7e81w7
C:\ProgramData\dvd atom atom.7sbnw
C:\ProgramData\dvd atom atom.7war0
C:\ProgramData\dvd atom atom.8fslw
C:\ProgramData\dvd atom atom.8lhsp6
C:\ProgramData\dvd atom atom.8uf0l0y
C:\ProgramData\dvd atom atom.94unk
C:\ProgramData\dvd atom atom.9reh56h
C:\ProgramData\dvd atom atom.9rusva
C:\ProgramData\dvd atom atom.9xhjd3a
C:\ProgramData\dvd atom atom.c5g95j
C:\ProgramData\dvd atom atom.dgfjs
C:\ProgramData\dvd atom atom.fh631w5
C:\ProgramData\dvd atom atom.g9qi4
C:\ProgramData\dvd atom atom.gqqiw6
C:\ProgramData\dvd atom atom.h1x0ut7
C:\ProgramData\dvd atom atom.h59gw
C:\ProgramData\dvd atom atom.hfluwi
C:\ProgramData\dvd atom atom.hicnjrt
C:\ProgramData\dvd atom atom.hlbd15q
C:\ProgramData\dvd atom atom.ir2p8e8
C:\ProgramData\dvd atom atom.j1kj59w
C:\ProgramData\dvd atom atom.kbkgg
C:\ProgramData\dvd atom atom.l0bjl
C:\ProgramData\dvd atom atom.l9eed
C:\ProgramData\dvd atom atom.m68f1dm
C:\ProgramData\dvd atom atom.n46zf7m
C:\ProgramData\dvd atom atom.ouwyy
C:\ProgramData\dvd atom atom.p658r
C:\ProgramData\dvd atom atom.q4ykmd
C:\ProgramData\dvd atom atom.qhx8nus
C:\ProgramData\dvd atom atom.s3apuz
C:\ProgramData\dvd atom atom.sulr2
C:\ProgramData\dvd atom atom.sxf05
C:\ProgramData\dvd atom atom.t9la2xm
C:\ProgramData\dvd atom atom.th8vmf
C:\ProgramData\dvd atom atom.trvxxmx
C:\ProgramData\dvd atom atom.u31flt1
C:\ProgramData\dvd atom atom.uo1u9hp
C:\ProgramData\dvd atom atom.ww0w8
C:\ProgramData\dvd atom atom.wzh1vew
C:\ProgramData\dvd atom atom.xr7m7
C:\ProgramData\dvd atom atom.y04dj
C:\ProgramData\dvd atom atom.ytna7l
C:\ProgramData\dvd atom atom.yzcbg
C:\ProgramData\dvd atom atom.zhj21
C:\ProgramData\dvd atom atom.zrx453i
C:\ProgramData\Thunk Deaf Settings.969ulz
C:\Users\Martine\AppData\Local\Temp\bisC952.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\part dead amok eggs
C:\ProgramData\part dead amok eggs\Inside great.exe
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\Windows\Prefetch\INSIDE GREAT.EXE-0B11651E.pf
C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@adopt.euroclick[2].txt
C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@pacificpoker[1].txt
C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@888[2].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Internet mix"="\"C:\\ProgramData\\dvd atom atom.g9qi4\""
"Amok Eggs Four Web"="\"C:\\ProgramData\\Thunk Deaf Settings.969ulz\""

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-09 14:49:12
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

[F:2143][D:146]-> C:\Users\Martine\AppData\Local\Temp
[F:439][D:1]-> C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4487][D:10]-> C:\Users\Martine\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:44][D:8]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 14:49:57,12 ]----------------------
A +

Réponse 2 / 10

jrmlpz Messages postés 455 Date d'inscription Statut Membre Dernière intervention 50

Salut,

Fais un nettoyage complet avec CCLEANER, SPYBOT et MALWAREBYTE, ça devrait SUFFIRE
http://www.commentcamarche.net/telecharger/logiciel 4 securite

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

slt pour cid lop sd marche bien sous vista

marwyl Messages postés 370 Statut Membre 10

Bonjour,

Faut-il télécharger ces 3 logiciels ou un seul peut suffire ?

Merci, A +

jrmlpz Messages postés 455 Date d'inscription Statut Membre Dernière intervention 50 > marwyl Messages postés 370 Statut Membre

les 3 sont complementaires (1 anti adware, 1 anti spyware, et un nettoyeur)

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040 > jrmlpz Messages postés 455 Date d'inscription Statut Membre Dernière intervention

spybot et malwarebyte's sont tous les deux des antispywares et anti adaware et antiespion....

jrmlpz Messages postés 455 Date d'inscription Statut Membre Dernière intervention 50 > jlpjlp Messages postés 52399 Statut Contributeur sécurité

fais comme tu veux, jlpjlp joue avec moi, ça ne m'interesse pas, je laisse tomber ce post

Réponse 3 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

aucun des trois pour le moment lops sd a trouvé l'infection responsable des pubs cid!

relance lop SD puis choisi l'option 2 pour nettoyer et colle le rapport:

puis

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)

marwyl Messages postés 370 Statut Membre 10

Voici le rapport lops sd :

-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Martine ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 09/07/2008 | 15:07:01,37 ] [ PC : PC-DE-MARTINE ]
[ MAJ : 06-07-2008 | 10:55 ]
[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\ProgramData\part dead amok eggs\Inside great.exe
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\Windows\Prefetch\INSIDE GREAT.EXE-0B11651E.pf
Supprime! - C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@pacificpoker[1].txt
Supprime! - C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@888[2].txt
Supprime! - C:\ProgramData\dvd atom atom.0l5epr
Supprime! - C:\ProgramData\dvd atom atom.0s168b4
Supprime! - C:\ProgramData\dvd atom atom.0sp24
Supprime! - C:\ProgramData\dvd atom atom.1gk4mc
Supprime! - C:\ProgramData\dvd atom atom.2i2c9
Supprime! - C:\ProgramData\dvd atom atom.2vkjtl
Supprime! - C:\ProgramData\dvd atom atom.3att2
Supprime! - C:\ProgramData\dvd atom atom.3zhq0d
Supprime! - C:\ProgramData\dvd atom atom.4cssykj
Supprime! - C:\ProgramData\dvd atom atom.4erprne
Supprime! - C:\ProgramData\dvd atom atom.4mper9r
Supprime! - C:\ProgramData\dvd atom atom.4ubox
Supprime! - C:\ProgramData\dvd atom atom.5o9brf
Supprime! - C:\ProgramData\dvd atom atom.5xs205c
Supprime! - C:\ProgramData\dvd atom atom.6360y5
Supprime! - C:\ProgramData\dvd atom atom.7cy2hd
Supprime! - C:\ProgramData\dvd atom atom.7e81w7
Supprime! - C:\ProgramData\dvd atom atom.7sbnw
Supprime! - C:\ProgramData\dvd atom atom.7war0
Supprime! - C:\ProgramData\dvd atom atom.7xeq8t
Supprime! - C:\ProgramData\dvd atom atom.8fslw
Supprime! - C:\ProgramData\dvd atom atom.8lhsp6
Supprime! - C:\ProgramData\dvd atom atom.8uf0l0y
Supprime! - C:\ProgramData\dvd atom atom.94unk
Supprime! - C:\ProgramData\dvd atom atom.9reh56h
Supprime! - C:\ProgramData\dvd atom atom.9rusva
Supprime! - C:\ProgramData\dvd atom atom.9xhjd3a
Supprime! - C:\ProgramData\dvd atom atom.afn5r
Supprime! - C:\ProgramData\dvd atom atom.baas7
Supprime! - C:\ProgramData\dvd atom atom.c5g95j
Supprime! - C:\ProgramData\dvd atom atom.dgfjs
Supprime! - C:\ProgramData\dvd atom atom.dv4ry
Supprime! - C:\ProgramData\dvd atom atom.e98sd
Supprime! - C:\ProgramData\dvd atom atom.fh631w5
Supprime! - C:\ProgramData\dvd atom atom.g9qi4
Supprime! - C:\ProgramData\dvd atom atom.gildv
Supprime! - C:\ProgramData\dvd atom atom.gn6ftz2
Supprime! - C:\ProgramData\dvd atom atom.gqqiw6
Supprime! - C:\ProgramData\dvd atom atom.h1x0ut7
Supprime! - C:\ProgramData\dvd atom atom.h59gw
Supprime! - C:\ProgramData\dvd atom atom.hfluwi
Supprime! - C:\ProgramData\dvd atom atom.hicnjrt
Supprime! - C:\ProgramData\dvd atom atom.hlbd15q
Supprime! - C:\ProgramData\dvd atom atom.i8xz7jx
Supprime! - C:\ProgramData\dvd atom atom.ir2p8e8
Supprime! - C:\ProgramData\dvd atom atom.j1kj59w
Supprime! - C:\ProgramData\dvd atom atom.kbkgg
Supprime! - C:\ProgramData\dvd atom atom.kkoivg
Supprime! - C:\ProgramData\dvd atom atom.ky7nm4
Supprime! - C:\ProgramData\dvd atom atom.l0bjl
Supprime! - C:\ProgramData\dvd atom atom.l9eed
Supprime! - C:\ProgramData\dvd atom atom.m68f1dm
Supprime! - C:\ProgramData\dvd atom atom.m9ayn
Supprime! - C:\ProgramData\dvd atom atom.mr56if
Supprime! - C:\ProgramData\dvd atom atom.n46zf7m
Supprime! - C:\ProgramData\dvd atom atom.nferm
Supprime! - C:\ProgramData\dvd atom atom.ouwyy
Supprime! - C:\ProgramData\dvd atom atom.p658r
Supprime! - C:\ProgramData\dvd atom atom.q4ykmd
Supprime! - C:\ProgramData\dvd atom atom.q840l
Supprime! - C:\ProgramData\dvd atom atom.qhx8nus
Supprime! - C:\ProgramData\dvd atom atom.r46lk
Supprime! - C:\ProgramData\dvd atom atom.s3apuz
Supprime! - C:\ProgramData\dvd atom atom.sulr2
Supprime! - C:\ProgramData\dvd atom atom.sxf05
Supprime! - C:\ProgramData\dvd atom atom.szmz9t
Supprime! - C:\ProgramData\dvd atom atom.t9la2xm
Supprime! - C:\ProgramData\dvd atom atom.th8vmf
Supprime! - C:\ProgramData\dvd atom atom.trvxxmx
Supprime! - C:\ProgramData\dvd atom atom.u1jnf
Supprime! - C:\ProgramData\dvd atom atom.u31flt1
Supprime! - C:\ProgramData\dvd atom atom.uo1u9hp
Supprime! - C:\ProgramData\dvd atom atom.v6a3x
Supprime! - C:\ProgramData\dvd atom atom.vbd2rh5
Supprime! - C:\ProgramData\dvd atom atom.vd65cts
Supprime! - C:\ProgramData\dvd atom atom.w49rkjd
Supprime! - C:\ProgramData\dvd atom atom.ww0w8
Supprime! - C:\ProgramData\dvd atom atom.wzh1vew
Supprime! - C:\ProgramData\dvd atom atom.xduz8m
Supprime! - C:\ProgramData\dvd atom atom.xr7m7
Supprime! - C:\ProgramData\dvd atom atom.xvs63ap
Supprime! - C:\ProgramData\dvd atom atom.xxzsx1
Supprime! - C:\ProgramData\dvd atom atom.y04dj
Supprime! - C:\ProgramData\dvd atom atom.ytna7l
Supprime! - C:\ProgramData\dvd atom atom.yzcbg
Supprime! - C:\ProgramData\dvd atom atom.ze5bzc
Supprime! - C:\ProgramData\dvd atom atom.zgnk3l
Supprime! - C:\ProgramData\dvd atom atom.zhj21
Supprime! - C:\ProgramData\dvd atom atom.zrx453i
Supprime! - C:\ProgramData\Thunk Deaf Settings.969ulz
Supprime! - C:\Users\Martine\AppData\Local\Temp\bisC952.exe
Supprime! - C:\ProgramData\part dead amok eggs
Supprime! - C:\Program Files\Circle Developement
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Users\Martine\AppData\Roaming\DriveCleaner Free

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Roaming ]------------

[16/01/2008|21:42] C:\Users\Martine\AppData\Roaming\Adobe\Flash Player
[23/02/2007|20:38] C:\Users\Martine\AppData\Roaming\Adobe\Acrobat

[13/04/2008|16:37] C:\Users\Martine\AppData\Roaming\Ahead\Nero Burning ROM
[29/03/2008|14:12] C:\Users\Martine\AppData\Roaming\Ahead\NeroVision
[07/12/2007|21:17] C:\Users\Martine\AppData\Roaming\Ahead\Nero BackItUp

[02/04/2008|19:37] C:\Users\Martine\AppData\Roaming\AVS4YOU\AVSVideoConverter

[19/10/2007|21:04] C:\Users\Martine\AppData\Roaming\CyberLink\PowerDVD
[16/10/2007|22:58] C:\Users\Martine\AppData\Roaming\CyberLink\PowerCinema

[09/12/2007|20:25] C:\Users\Martine\AppData\Roaming\Google\GoogleEarth
[17/07/2007|13:48] C:\Users\Martine\AppData\Roaming\Google\Local Search History

[22/02/2007|22:51] C:\Users\Martine\AppData\Roaming\Hewlett-Packard\HP Software UI

[17/03/2007|19:19] C:\Users\Martine\AppData\Roaming\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVIP}
[22/02/2007|22:55] C:\Users\Martine\AppData\Roaming\Identities\{3974543C-A638-467A-9467-4D8094E64C7C}

[22/07/2007|21:38] C:\Users\Martine\AppData\Roaming\InstallShield\ISEngine12.0

[16/01/2008|21:41] C:\Users\Martine\AppData\Roaming\Macromedia\Flash Player
[24/03/2007|14:57] C:\Users\Martine\AppData\Roaming\Macromedia\Shockwave Player

[01/06/2008|18:42] C:\Users\Martine\AppData\Roaming\Microsoft\ModŠles
[01/06/2008|18:41] C:\Users\Martine\AppData\Roaming\Microsoft\Word
[13/05/2008|19:30] C:\Users\Martine\AppData\Roaming\Microsoft\MSN Messenger
[12/05/2008|10:28] C:\Users\Martine\AppData\Roaming\Microsoft\preuve
[16/03/2008|14:38] C:\Users\Martine\AppData\Roaming\Microsoft\eHome
[14/03/2008|22:14] C:\Users\Martine\AppData\Roaming\Microsoft\Media Player
[30/11/2007|00:03] C:\Users\Martine\AppData\Roaming\Microsoft\Office
[24/07/2007|23:26] C:\Users\Martine\AppData\Roaming\Microsoft\Excel
[23/07/2007|14:52] C:\Users\Martine\AppData\Roaming\Microsoft\HTML Help
[23/07/2007|13:41] C:\Users\Martine\AppData\Roaming\Microsoft\PowerPoint
[10/06/2007|13:51] C:\Users\Martine\AppData\Roaming\Microsoft\Media Catalog
[04/06/2007|19:12] C:\Users\Martine\AppData\Roaming\Microsoft\SystemCertificates
[04/06/2007|19:12] C:\Users\Martine\AppData\Roaming\Microsoft\Crypto
[28/05/2007|12:03] C:\Users\Martine\AppData\Roaming\Microsoft\IdentityCRL
[13/05/2007|12:32] C:\Users\Martine\AppData\Roaming\Microsoft\Internet Explorer
[05/05/2007|13:45] C:\Users\Martine\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/02/2007|20:40] C:\Users\Martine\AppData\Roaming\Microsoft\MSNIA
[23/02/2007|20:55] C:\Users\Martine\AppData\Roaming\Microsoft\Network
[23/02/2007|20:18] C:\Users\Martine\AppData\Roaming\Microsoft\MMC
[22/02/2007|22:55] C:\Users\Martine\AppData\Roaming\Microsoft\Protect
[22/02/2007|22:51] C:\Users\Martine\AppData\Roaming\Microsoft\CLR Security Config
[22/02/2007|22:49] C:\Users\Martine\AppData\Roaming\Microsoft\Credentials
[02/11/2006|13:18] C:\Users\Martine\AppData\Roaming\Microsoft\Windows

[25/07/2007|19:52] C:\Users\Martine\AppData\Roaming\Mozilla\Firefox

[21/07/2007|16:14] C:\Users\Martine\AppData\Roaming\MySpace\IM

[28/10/2007|22:12] C:\Users\Martine\AppData\Roaming\Real\RealMediaSDK

[01/08/2007|16:26] C:\Users\Martine\AppData\Roaming\Roxio\RoxioCentral
[01/08/2007|16:25] C:\Users\Martine\AppData\Roaming\Roxio\RoxioCentral33

[09/07/2008|15:07] C:\Users\Martine\AppData\Roaming\Shareaza\Torrents
[09/07/2008|15:07] C:\Users\Martine\AppData\Roaming\Shareaza\Collections
[08/07/2008|23:58] C:\Users\Martine\AppData\Roaming\Shareaza\Data

[25/07/2007|19:52] C:\Users\Martine\AppData\Roaming\Talkback\MozillaOrg

[11/05/2008|11:01] C:\Users\Martine\AppData\Roaming\TuneUp Software\TuneUp Utilities

[31/05/2007|19:16] C:\Users\Martine\AppData\Roaming\WinBatch\Settings

[17/03/2007|19:19] C:\Users\Martine\AppData\Roaming\Zylom\106

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[04/07/2008 17:15][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
[09/07/2008 14:59][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{898F2457-2A29-4261-8067-FDF0E3DB68E0}.job
[09/07/2008 15:05][--ah-----] C:\Windows\tasks\SA.DAT
[09/07/2008 15:04][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[06/12/2006|15:18] C:\ProgramData\Adobe
[22/02/2007|22:45] C:\ProgramData\Application Data
[02/04/2008|19:37] C:\ProgramData\AVS4YOU
[22/02/2007|22:45] C:\ProgramData\Bureau
[07/12/2007|21:27] C:\ProgramData\C9B086CE-4A3B-11DB-8373-B622A1EF5492
[12/10/2007|20:38] C:\ProgramData\Ciel
[16/10/2007|22:54] C:\ProgramData\CyberLink
[04/07/2008|20:17] C:\ProgramData\dartbalmpile
[22/02/2007|22:45] C:\ProgramData\Documents
[09/07/2008|15:01] C:\ProgramData\dvd atom atom.elj9y
[01/12/2007|15:05] C:\ProgramData\DVD Shrink
[03/04/2008|20:22] C:\ProgramData\dyaniilw.kxq
[09/06/2008|11:43] C:\ProgramData\eMule
[22/02/2007|22:45] C:\ProgramData\Favoris
[18/06/2007|19:13] C:\ProgramData\Friends Games
[06/12/2006|15:24] C:\ProgramData\Google
[06/12/2006|15:39] C:\ProgramData\Hewlett-Packard
[06/12/2006|15:22] C:\ProgramData\InstallShield
[06/12/2006|15:16] C:\ProgramData\Intel
[04/06/2008|19:25] C:\ProgramData\LUUnInstall.LiveUpdate
[22/02/2007|22:45] C:\ProgramData\Menu D‚marrer
[07/04/2007|23:04] C:\ProgramData\Messenger Plus!
[24/09/2007|20:08] C:\ProgramData\Microsoft
[22/02/2007|22:45] C:\ProgramData\ModŠles
[07/12/2007|21:14] C:\ProgramData\Nero
[22/01/2008|23:35] C:\ProgramData\NVIDIA
[07/12/2007|21:27] C:\ProgramData\RapidSolution
[14/10/2007|22:11] C:\ProgramData\Roxio
[28/02/2007|12:16] C:\ProgramData\SBT
[01/08/2007|16:25] C:\ProgramData\Sonic
[04/03/2007|22:48] C:\ProgramData\Symantec
[22/06/2007|22:28] C:\ProgramData\TEMP
[08/06/2007|22:35] C:\ProgramData\TuneUp Software
[04/07/2007|18:58] C:\ProgramData\WindowsLiveInstaller
[12/05/2008|23:35] C:\ProgramData\WinZip
[19/01/2008|12:27] C:\ProgramData\WLInstaller
[17/03/2007|19:18] C:\ProgramData\Zylom

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/06/2008|21:02] C:\Program Files\Acoolsoft
[13/05/2008|20:06] C:\Program Files\Acronis
[06/12/2006|15:18] C:\Program Files\Adobe
[08/07/2008|23:39] C:\Program Files\Antipub
[15/11/2007|21:23] C:\Program Files\AskTBar
[26/02/2007|13:50] C:\Program Files\Atlantis
[05/04/2008|20:28] C:\Program Files\AviSynth 2.5
[03/04/2008|19:36] C:\Program Files\AVS4YOU
[26/02/2007|13:50] C:\Program Files\BFG
[08/05/2008|12:12] C:\Program Files\Broderbund
[11/05/2008|11:01] C:\Program Files\Common Files
[16/10/2007|22:51] C:\Program Files\CyberLink
[04/07/2008|20:17] C:\Program Files\dartbalmpile
[30/08/2007|14:56] C:\Program Files\desktop.ini
[25/11/2007|01:24] C:\Program Files\Digital Camera
[26/10/2007|19:31] C:\Program Files\Disney Interactive
[05/07/2007|15:57] C:\Program Files\Dofus-Arena
[17/12/2007|22:24] C:\Program Files\EasyPhotoTools
[09/06/2008|11:43] C:\Program Files\eMule
[06/04/2008|22:12] C:\Program Files\eRightSoft
[22/02/2007|22:45] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[05/04/2008|23:07] C:\Program Files\Free Audio Pack
[20/10/2007|15:18] C:\Program Files\Free Easy Burner
[10/11/2007|23:40] C:\Program Files\Google
[13/05/2008|20:09] C:\Program Files\Guitar Pro 5
[03/03/2007|15:37] C:\Program Files\Hercules
[06/12/2006|15:22] C:\Program Files\Hewlett-Packard
[06/12/2006|15:19] C:\Program Files\HP
[13/05/2008|20:09] C:\Program Files\HT MPEG Encoder 7.0 Trial
[23/08/2007|19:28] C:\Program Files\IMVU
[12/05/2008|23:16] C:\Program Files\InstallShield Installation Information
[22/07/2007|21:39] C:\Program Files\Intel
[08/07/2008|21:28] C:\Program Files\Internet Explorer
[04/06/2007|19:07] C:\Program Files\Java
[13/05/2008|20:09] C:\Program Files\K-Lite Codec Pack
[13/03/2007|22:22] C:\Program Files\Last.fm
[26/02/2007|14:06] C:\Program Files\Magic Vines
[04/07/2008|20:16] C:\Program Files\Messenger Plus! Live
[05/07/2007|23:08] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/02/2007|12:16] C:\Program Files\Microsoft Office
[06/12/2006|15:20] C:\Program Files\Microsoft Works
[23/12/2007|22:07] C:\Program Files\mIRC
[06/12/2006|23:59] C:\Program Files\Movie Maker
[04/06/2008|19:22] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/02/2007|20:40] C:\Program Files\MSN
[01/03/2007|00:55] C:\Program Files\MSXML 4.0
[20/07/2007|13:37] C:\Program Files\MySpace
[07/12/2007|21:14] C:\Program Files\Nero
[27/04/2007|19:01] C:\Program Files\NewSoft
[04/03/2007|22:47] C:\Program Files\Norton Internet Security
[16/06/2007|22:03] C:\Program Files\Orange
[13/05/2008|20:09] C:\Program Files\Packard Bell Magic Movie
[06/12/2006|15:33] C:\Program Files\PC-Doctor 5 for Windows
[10/06/2008|15:26] C:\Program Files\QuickMediaConverter
[07/12/2007|21:33] C:\Program Files\Radiotracker
[07/12/2007|21:26] C:\Program Files\Rapid Solution Software AG
[06/12/2006|15:14] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[06/12/2006|15:17] C:\Program Files\Roxio
[28/02/2007|19:53] C:\Program Files\SAGEM
[28/02/2007|19:48] C:\Program Files\Securitoo
[06/12/2006|15:24] C:\Program Files\Services en ligne
[15/06/2008|14:18] C:\Program Files\Shareaza
[28/02/2007|12:16] C:\Program Files\Snapshot Viewer
[12/05/2008|23:11] C:\Program Files\Symantec
[04/03/2007|22:47] C:\Program Files\Thomson
[08/05/2008|12:20] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/02/2007|20:00] C:\Program Files\Wanadoo
[30/08/2007|14:54] C:\Program Files\Windows Calendar
[06/12/2006|23:59] C:\Program Files\Windows Collaboration
[14/04/2007|12:49] C:\Program Files\Windows Defender
[06/12/2006|23:59] C:\Program Files\Windows Journal
[04/07/2007|18:58] C:\Program Files\Windows Live
[08/07/2008|21:29] C:\Program Files\Windows Mail
[12/10/2007|20:46] C:\Program Files\Windows Media Player
[22/02/2007|22:45] C:\Program Files\Windows NT
[06/12/2006|23:59] C:\Program Files\Windows Photo Gallery
[08/07/2008|21:28] C:\Program Files\Windows Sidebar
[24/02/2008|15:08] C:\Program Files\WinRAR
[21/06/2008|18:37] C:\Program Files\Wondershare
[08/05/2008|12:21] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[12/05/2008|23:09] C:\Program Files\Common Files\Acronis
[06/12/2006|15:18] C:\Program Files\Common Files\Adobe
[07/12/2007|21:16] C:\Program Files\Common Files\Ahead
[03/04/2008|19:36] C:\Program Files\Common Files\AVSMedia
[28/02/2007|12:08] C:\Program Files\Common Files\Designer
[26/02/2007|20:09] C:\Program Files\Common Files\InstallShield
[06/12/2006|15:16] C:\Program Files\Common Files\Intel
[04/06/2007|19:05] C:\Program Files\Common Files\Java
[15/12/2007|20:04] C:\Program Files\Common Files\LightScribe
[06/12/2006|15:18] C:\Program Files\Common Files\LS Getting Started
[05/04/2008|20:25] C:\Program Files\Common Files\microsoft shared
[06/12/2006|15:17] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[06/12/2006|15:17] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[06/12/2006|15:17] C:\Program Files\Common Files\SureThing Shared
[04/03/2007|22:47] C:\Program Files\Common Files\Symantec Shared
[16/06/2007|21:57] C:\Program Files\Common Files\System
[08/05/2008|12:18] C:\Program Files\Common Files\Ulead Systems
[19/01/2008|12:34] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 60

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\dvd atom atom.elj9y
C:\ProgramData\dvd atom atom.elj9y

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@adopt.euroclick[1].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-09 15:09:30
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

[F:2141][D:146]-> C:\Users\Martine\AppData\Local\Temp
[F:441][D:1]-> C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4576][D:10]-> C:\Users\Martine\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:44][D:8]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 15:10:20,27 ]----------------------

et voici le rapport Toolbar-S&D :

-----------\\ ToolBar S&D 1.0.3 XP/Vista

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Martine ] [ "C:\Toolbar SD" ] [ Selection : 1 ]
[ 09/07/2008 | 15:15:08,98 ] [ PC : PC-DE-MARTINE ]
[ MAJ : 08-07-2008 | 22:24 ]
[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskTBar
C:\Program Files\AskTBar\bar
C:\Program Files\AskTBar\PopSwatr
C:\Program Files\AskTBar\SrchAstt
C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@mysearch[1].txt

-----------\\ [HKCU\..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

[ UAC => 1 ]

-----------\\ Fin du rapport a 15:15:37,64

D'avance, merci

Réponse 4 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

parfait tu ne devrait plus avoir de pub CID

________________

Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.

_________________

recolle un rapport hijackthis et dis tes soucis actuels

marwyl Messages postés 370 Statut Membre 10

Voici le rapport Toolbar-S&D :

-----------\\ ToolBar S&D 1.0.3 XP/Vista

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Martine ] [ "C:\Toolbar SD" ] [ Selection : 2 ]
[ 09/07/2008 | 15:44:14,58 ] [ PC : PC-DE-MARTINE ]
[ MAJ : 08-07-2008 | 22:24 ]
[ UAC => 0 ]

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\AskTBar\bar
Supprime! - C:\Program Files\AskTBar\PopSwatr
Supprime! - C:\Program Files\AskTBar\SrchAstt
Supprime! - C:\Users\Martine\AppData\Roaming\MICROS~1\Windows\Cookies\martine@mysearch[1].txt
Supprime! - C:\Program Files\AskTBar

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ [HKCU\..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

[ UAC => 1 ]

-----------\\ Fin du rapport a 15:45:19,06

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

recolle un rapport hijackthis et dis tes soucis actuels

marwyl Messages postés 370 Statut Membre 10

Voici le rapport HiJackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:56:33, on 09/07/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\kbd.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\WINDOWS\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Windows\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Martine\Desktop\HiJackThis.exe
C:\Windows\system32\WerCon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.searchgateway.net/search/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.searchgateway.net/search/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.searchgateway.net/search/%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IS CfgWiz] "c:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe" /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Envoyer l'image vers la bibliothèque - file://C:\Program Files\MGI\MGI PhotoSuite II\Temp\MGI00000.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

marwyl Messages postés 370 Statut Membre 10

une petite question :

Est-ce que les deux programmes Lop S&D et toolbar S&D sont des antivirus ou servent-ils à supprimer que les fenêtres intempestives de type publicitaires ?

marwyl Messages postés 370 Statut Membre 10 > marwyl Messages postés 370 Statut Membre

Depuis presqu'une demi-heure je n'ai plus de fenêtres publicitaires....

MERCI

Réponse 6 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

lop sd n'est qu'un logiciel pour virer les infection entrainant des pubs de type CID

____________

relance hijakchits ,fais do as system scan only et fix ces lignes (fix cheked)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.searchgateway.net/search/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.searchgateway.net/search/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.searchgateway.net/search/%s
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)

________________

mets a jour java:

https://www.malekal.com/maintenir-java-adobe-reader-et-le-player-flash-a-jour/

mets a jour windows en mettant le sp1 sur le site windows update

bonne suite

marwyl Messages postés 370 Statut Membre 10

bonjour,

J'ai relancé HiJackThis en fxant les lignes que tu m'as indiquée et les mises à jours ont été effectuées.

Voici un nouveau rapport HiJackThis.

A+

Réponse 7 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

où il est ?

marwyl Messages postés 370 Statut Membre 10

Oh excuse-moi !!!!!!!!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:17:45, on 10/07/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\kbd.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Martine\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IS CfgWiz] "c:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe" /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Envoyer l'image vers la bibliothèque - file://C:\Program Files\MGI\MGI PhotoSuite II\Temp\MGI00000.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O13 - Gopher Prefix:
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?AuthParam=1215700923_dc76a8bae4bce085ea7a1e67173a596b&GroupName=JSC&BHost=javadl.sun.com&FilePath=/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab&File=jinstall-6u7-windows-i586-jc.cab
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

Réponse 8 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

tu n'as pas mis le sp1 de windows via windows up date

et
mets a jour java:

https://www.malekal.com/maintenir-java-adobe-reader-et-le-player-flash-a-jour/

sinon tu peux fixer ceci et c'est bon!

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

marwyl Messages postés 370 Statut Membre 10

Bonjour,

Hier, j'ai téléchargé le SP1 pour WINDOWS VISTA sur le site de microsoft. Je me suis absentée pendant le téléchargement.

A mon retour, l'écran était en veille ainsi que le pc. J'ai "réveillé" le pc mais aucune réaction. J'ai donc éteint manuellement le pc. Mais au démarrage, un écran noir s'affiche sur lequel est inscrit :

!! 0xc0000034 !!267/69224 (program_files_windows_mediaplayer_da4e5f6...)

Si peux m'aider ce serait sympa d'autant plus que j'ai une partie de mes vidéos numériques ainsi que des photos dans le but d'en faire des DVD!!!!!!!!

J'espère ne pas devoir réinstaller le système.

D'avance merci

Réponse 9 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

essaye de demarrer en mode sans echec : (appuyer plusieurs fois sur F8 ou f5 ou suppr ou esc au demarrage)

choisi la derniere bonne configuration connue

______________

ou alors le mode sans echec et restaure ensuite ton ordi avant l'installation du SP1

http://www.libellules.ch/restauration_system_vista.php

________________

ou sinon repare windows

http://www.vista-xp.fr/forum/topic39.html

marwyl Messages postés 370 Statut Membre 10

Je viens de redémarrer en mode sans échec :
il charge windows.....
puis réparation du démarrage.....
une fenêtre s'affiche :
L'outil de redémarrage système ne peut pas réparer automatiquement l'ordinateur....
J'ai lancé la demande d'information sur le problème dont voici le détail :

C:/windows/systeme32/LogFiles/Srt/SrtTrail.txt........
C:/windows/system32/LogFiles/Srt/StartupRepair/etl

je n'ai pas la touche "/" incliné vers la gauche car je suis sur un MAC
puis j'ai l'adreese pour lire la déclaration de confidentialité de microsoft

Réponse 10 / 10

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

si tu peux aller en mode sans echec

alors va dans le panneau de configuration puis va dans AJOUT/SUPPRESSION DE PROGRAMME ( le nom a changé sous vista) et vire le sp1

sinon
______________

repare windows comme ceci

https://www.zdnet.fr/telecharger/logiciel/registry-repair-39254993s.htm

_______________

passe a la solution suivante

Discussions similaires

Encore les CiD

appel intrusif sur Skype

CiD

comment donner les droits sur fichier partage

Problème CiD

CiD

10 réponses

Votre réponse

Discussions similaires

Newsletters