Fenêtres CID
lauvic
Messages postés
9
Statut
Membre
-
lauvic Messages postés 9 Statut Membre -
lauvic Messages postés 9 Statut Membre -
Bonjour,
depuis déjà quelques jours je suis inondé par des fenêtres "CID..." qui s'ouvrent à chaque fois que je vais sur internet que ce soit avec IE ou firefox. J'ai vu qu'hier Caro75, avait pu résoudre son problème et j'écrit mon propre post au cas où mon problème aurait une origine differente.
Pourriez-vous m'aider? merci par avance
et voici mon rapport hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:09:46, on 14/07/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Intel\AMT\atchk.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\jean\Desktop\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://portail.free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "c:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [atchk] "C:\Program Files\Intel\AMT\atchk.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [fast city ping help] "C:\ProgramData\2 PROGRAM BALL.f6if1"
O4 - HKCU\..\Run: [body glue] "C:\ProgramData\ANTI PART PART.1bz3u9"
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Lop S&D.lnk = C:\Lop SD\LopSD.cmd
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - C:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Intel(R) Active Management Technology System Status Service (atchksrv) - Intel Corporation - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: NTRU TSS v1.2.1.25 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel - C:\Program Files\Intel\AMT\UNS.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
depuis déjà quelques jours je suis inondé par des fenêtres "CID..." qui s'ouvrent à chaque fois que je vais sur internet que ce soit avec IE ou firefox. J'ai vu qu'hier Caro75, avait pu résoudre son problème et j'écrit mon propre post au cas où mon problème aurait une origine differente.
Pourriez-vous m'aider? merci par avance
et voici mon rapport hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:09:46, on 14/07/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Intel\AMT\atchk.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\jean\Desktop\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://portail.free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "c:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [atchk] "C:\Program Files\Intel\AMT\atchk.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [fast city ping help] "C:\ProgramData\2 PROGRAM BALL.f6if1"
O4 - HKCU\..\Run: [body glue] "C:\ProgramData\ANTI PART PART.1bz3u9"
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Lop S&D.lnk = C:\Lop SD\LopSD.cmd
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - C:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Intel(R) Active Management Technology System Status Service (atchksrv) - Intel Corporation - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: NTRU TSS v1.2.1.25 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel - C:\Program Files\Intel\AMT\UNS.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
6 réponses
Bonjour,
Merci de suivre ceci:
* Télécharger la dernière version de Lop S&D sur le Bureau,
* Double-cliquer sur Lop S&D.exe pour lancer l'installation,
* Puis double-cliquer sur le raccourci Lop S&D présent sur le Bureau,
Attention Désactivez les protections résidentes : Antivirus, antispywares, controleurs d'intégrité, etc... pour que l'outil puisse s'exécuter correctement.
* Séléctionner la langue souhaitée , puis choisir l'Option 1 (Recherche)
* Le scan prend moins d'une minute,
* A l'issue du scan, le bloc notes va s'ouvrir avec le résultat de la recherche,
* Enregistrer le rapport LopR.txt sur le Bureau ou dans "Mes Documents" pour le retrouver facilement, sinon il sauvegardé automatiquement à la racine de la partition système : C:\LopR.txt
* Pour nettoyer ce qui a été trouvé, relancer LopSD et choisir l'option "2" (Suppression)
NB : un backup des suppressions sera créé dans le dossier de Lop S&D.
Merci de suivre ceci:
* Télécharger la dernière version de Lop S&D sur le Bureau,
* Double-cliquer sur Lop S&D.exe pour lancer l'installation,
* Puis double-cliquer sur le raccourci Lop S&D présent sur le Bureau,
Attention Désactivez les protections résidentes : Antivirus, antispywares, controleurs d'intégrité, etc... pour que l'outil puisse s'exécuter correctement.
* Séléctionner la langue souhaitée , puis choisir l'Option 1 (Recherche)
* Le scan prend moins d'une minute,
* A l'issue du scan, le bloc notes va s'ouvrir avec le résultat de la recherche,
* Enregistrer le rapport LopR.txt sur le Bureau ou dans "Mes Documents" pour le retrouver facilement, sinon il sauvegardé automatiquement à la racine de la partition système : C:\LopR.txt
* Pour nettoyer ce qui a été trouvé, relancer LopSD et choisir l'option "2" (Suppression)
NB : un backup des suppressions sera créé dans le dossier de Lop S&D.
C'est bizarre que tu poses cette question puisque manifestement il a été lancé sur cet ordi :
Télécharge Lop S&D.exe https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton bureau.
# Double-clique dessus pour lancer l'installation
# Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
# Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
# Patiente jusqu'à la fin du scan
# Poste le rapport généré ( C:\lopR.txt )
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
O4 - Startup: Lop S&D.lnk = C:\Lop SD\LopSD.cmd
Télécharge Lop S&D.exe https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton bureau.
# Double-clique dessus pour lancer l'installation
# Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
# Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
# Patiente jusqu'à la fin du scan
# Poste le rapport généré ( C:\lopR.txt )
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
merci merci,
en fait j'ai déjà utilisé le lopSD mais pas correctement je pense.
voilà le rapport qu'il m'a généré après que j'ai choissis l'option 1, je n'ai pas encore fais la 2:
PS: j'ai déjà désintallé msn plus ;)
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : jean ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 14/07/2008 | 12:30:06,42 ] [ PC : CLINT ]
[ MAJ : 09-07-2008 | 21:02 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Roaming ]------------
[10/07/2008|11:54] C:\Users\jean\AppData\Roaming\Adobe\Common
[04/07/2008|16:39] C:\Users\jean\AppData\Roaming\Adobe\CameraRaw
[03/07/2008|01:15] C:\Users\jean\AppData\Roaming\Adobe\XMP
[21/06/2008|19:36] C:\Users\jean\AppData\Roaming\Adobe\Adobe Photoshop CS3
[21/06/2008|09:18] C:\Users\jean\AppData\Roaming\Adobe\Linguistics
[30/05/2008|23:49] C:\Users\jean\AppData\Roaming\Adobe\Workflow
[27/05/2008|10:31] C:\Users\jean\AppData\Roaming\Adobe\Flash Player
[27/05/2008|10:28] C:\Users\jean\AppData\Roaming\Adobe\Acrobat
[27/05/2008|10:23] C:\Users\jean\AppData\Roaming\Adobe\Color
[27/05/2008|10:20] C:\Users\jean\AppData\Roaming\Adobe\Adobe PDF
[27/05/2008|10:13] C:\Users\jean\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[27/05/2008|10:12] C:\Users\jean\AppData\Roaming\Adobe\After Effects
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\PremierePro
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\Premiere Pro
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe DVD
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe Encore
[27/05/2008|10:07] C:\Users\jean\AppData\Roaming\Adobe\Soundbooth
[27/05/2008|09:56] C:\Users\jean\AppData\Roaming\Adobe\Updater5
[03/07/2008|01:12] C:\Users\jean\AppData\Roaming\Apple Computer\iTunes
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\ATI\ACE
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Mixers
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Swatches
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Brushes
[27/05/2008|14:36] C:\Users\jean\AppData\Roaming\combustion2008\BrowserCache
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerDVD
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerCinema
[24/06/2008|21:26] C:\Users\jean\AppData\Roaming\Grisoft\AVG Antispyware 7.5
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Identities\{674F9722-C7E2-499B-8387-B86C59BC86E2}
[04/07/2008|07:44] C:\Users\jean\AppData\Roaming\InstallShield\ISEngine12.0
[09/07/2008|21:24] C:\Users\jean\AppData\Roaming\Macromedia\Flash Player
[09/07/2008|21:27] C:\Users\jean\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[12/07/2008|21:37] C:\Users\jean\AppData\Roaming\Microsoft\Templates
[12/07/2008|01:59] C:\Users\jean\AppData\Roaming\Microsoft\Word
[08/07/2008|18:48] C:\Users\jean\AppData\Roaming\Microsoft\Windows Photo Gallery
[02/07/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\Office
[02/07/2008|22:53] C:\Users\jean\AppData\Roaming\Microsoft\UProof
[29/06/2008|23:55] C:\Users\jean\AppData\Roaming\Microsoft\Installer
[27/06/2008|10:15] C:\Users\jean\AppData\Roaming\Microsoft\MSN Messenger
[26/06/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\IdentityCRL
[21/06/2008|15:39] C:\Users\jean\AppData\Roaming\Microsoft\Crypto
[20/06/2008|09:08] C:\Users\jean\AppData\Roaming\Microsoft\Internet Explorer
[20/06/2008|00:10] C:\Users\jean\AppData\Roaming\Microsoft\HTML Help
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Proof
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Document Building Blocks
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\AddIns
[21/05/2008|11:35] C:\Users\jean\AppData\Roaming\Microsoft\Windows
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\SystemCertificates
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Protect
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Credentials
[04/07/2008|16:58] C:\Users\jean\AppData\Roaming\Mozilla\Firefox
[24/06/2008|20:49] C:\Users\jean\AppData\Roaming\Mozilla\Extensions
[10/06/2008|08:49] C:\Users\jean\AppData\Roaming\Nero\Nero8
[09/06/2008|08:08] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral
[09/06/2008|08:07] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral33
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[14/07/2008 11:20][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{1D17F721-585F-4712-8A3D-65D893E95B07}.job
[14/07/2008 12:29][--ah-----] C:\Windows\tasks\SA.DAT
[14/07/2008 12:28][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[22/06/2008|10:54] C:\ProgramData\2 PROGRAM BALL.f6if1
[27/05/2008|10:20] C:\ProgramData\Adobe
[27/05/2008|10:13] C:\ProgramData\ALM
[03/07/2008|02:08] C:\ProgramData\ANTI PART PART.1bz3u9
[02/07/2008|12:28] C:\ProgramData\ANTI PART PART.blnec
[03/07/2008|00:40] C:\ProgramData\ANTI PART PART.jjukq81
[03/07/2008|01:24] C:\ProgramData\ANTI PART PART.kth3i
[03/07/2008|01:02] C:\ProgramData\ANTI PART PART.pirvlc
[03/07/2008|01:46] C:\ProgramData\ANTI PART PART.tw32iog
[27/05/2008|10:26] C:\ProgramData\Apple
[04/07/2008|07:37] C:\ProgramData\Apple Computer
[21/05/2008|11:27] C:\ProgramData\Application Data
[21/05/2008|11:31] C:\ProgramData\ATI
[20/06/2008|00:20] C:\ProgramData\Avira
[02/07/2008|23:05] C:\ProgramData\BitDefender
[03/07/2008|00:40] C:\ProgramData\blueaxisdownload
[21/05/2008|11:27] C:\ProgramData\Bureau
[05/07/2008|12:15] C:\ProgramData\BVRP Software
[19/06/2008|23:44] C:\ProgramData\CheckPoint
[10/06/2008|20:47] C:\ProgramData\CyberLink
[10/04/2008|17:08] C:\ProgramData\Dell
[27/05/2008|10:30] C:\ProgramData\discreet
[21/05/2008|11:27] C:\ProgramData\Documents
[22/06/2008|09:54] C:\ProgramData\DVD Shrink
[21/05/2008|11:27] C:\ProgramData\Favoris
[27/05/2008|10:21] C:\ProgramData\FLEXnet
[24/06/2008|21:26] C:\ProgramData\Grisoft
[10/04/2008|17:07] C:\ProgramData\InstallShield
[24/06/2008|08:01] C:\ProgramData\Lavasoft
[22/06/2008|10:54] C:\ProgramData\long extra fast city
[09/07/2008|21:26] C:\ProgramData\Malwarebytes
[21/05/2008|11:27] C:\ProgramData\Menu D‚marrer
[11/07/2008|21:04] C:\ProgramData\Messenger Plus!
[05/07/2008|12:16] C:\ProgramData\Microsoft
[14/07/2008|11:54] C:\ProgramData\Microsoft Help
[21/05/2008|11:27] C:\ProgramData\ModŠles
[09/06/2008|22:59] C:\ProgramData\Nero
[04/07/2008|07:47] C:\ProgramData\NTRU Cryptosystems
[02/07/2008|22:49] C:\ProgramData\ntuser.pol
[09/06/2008|08:49] C:\ProgramData\Roxio
[10/04/2008|17:07] C:\ProgramData\Sonic
[04/07/2008|07:51] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[27/05/2008|10:15] C:\Program Files\Adobe
[10/04/2008|16:53] C:\Program Files\Analog Devices
[23/06/2008|21:19] C:\Program Files\Apple Software Update
[10/04/2008|17:05] C:\Program Files\ATI Technologies
[07/07/2008|17:46] C:\Program Files\Audacity
[27/05/2008|10:30] C:\Program Files\Autodesk
[05/07/2008|12:14] C:\Program Files\Avanquest update
[20/06/2008|00:20] C:\Program Files\Avira
[24/06/2008|21:12] C:\Program Files\CCleaner
[27/05/2008|13:54] C:\Program Files\Chaos Group
[02/07/2008|23:02] C:\Program Files\Common Files
[10/04/2008|17:08] C:\Program Files\CyberLink
[27/05/2008|09:52] C:\Program Files\DAEMON Tools Lite
[04/07/2008|07:44] C:\Program Files\Dell
[22/06/2008|03:31] C:\Program Files\desktop.ini
[22/06/2008|09:34] C:\Program Files\DVD Shrink
[21/06/2008|15:51] C:\Program Files\Empire Interactive
[21/05/2008|11:27] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/05/2008|11:42] C:\Program Files\GLOBEtrotter Software Inc
[24/06/2008|21:26] C:\Program Files\Grisoft
[10/07/2008|00:14] C:\Program Files\Illustrate
[05/07/2008|12:14] C:\Program Files\InstallShield Installation Information
[10/04/2008|17:05] C:\Program Files\Intel
[22/06/2008|03:24] C:\Program Files\Internet Explorer
[10/04/2008|17:00] C:\Program Files\Java
[26/06/2008|22:46] C:\Program Files\K-Lite Codec Pack
[24/06/2008|08:00] C:\Program Files\Lavasoft
[09/07/2008|21:26] C:\Program Files\Malwarebytes' Anti-Malware
[21/05/2008|13:59] C:\Program Files\Microsoft Office
[21/05/2008|13:59] C:\Program Files\Microsoft Visual Studio
[21/05/2008|13:56] C:\Program Files\Microsoft Visual Studio 8
[21/05/2008|14:00] C:\Program Files\Microsoft Works
[21/05/2008|13:58] C:\Program Files\Microsoft.NET
[05/07/2008|12:12] C:\Program Files\mobile PhoneTools
[22/06/2008|03:24] C:\Program Files\Movie Maker
[10/07/2008|00:15] C:\Program Files\Mozilla Firefox
[21/05/2008|13:59] C:\Program Files\MSBuild
[19/06/2008|09:11] C:\Program Files\MSXML 4.0
[09/06/2008|22:59] C:\Program Files\Nero
[04/07/2008|07:47] C:\Program Files\NTRU Cryptosystems
[30/06/2008|00:10] C:\Program Files\Pixologic
[23/06/2008|21:21] C:\Program Files\QuickTime
[30/05/2008|13:10] C:\Program Files\REALVIZ
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/04/2008|17:07] C:\Program Files\Roxio
[02/07/2008|23:04] C:\Program Files\Softwin
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[22/06/2008|03:24] C:\Program Files\Windows Calendar
[22/06/2008|03:24] C:\Program Files\Windows Collaboration
[22/06/2008|03:24] C:\Program Files\Windows Defender
[22/06/2008|03:24] C:\Program Files\Windows Journal
[04/07/2008|07:53] C:\Program Files\Windows Live
[09/07/2008|08:16] C:\Program Files\Windows Mail
[22/06/2008|03:24] C:\Program Files\Windows Media Player
[21/05/2008|11:27] C:\Program Files\Windows NT
[22/06/2008|03:24] C:\Program Files\Windows Photo Gallery
[22/06/2008|03:24] C:\Program Files\Windows Sidebar
[21/05/2008|11:44] C:\Program Files\WinRAR
[20/06/2008|00:13] C:\Program Files\Zone Labs
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[27/05/2008|10:16] C:\Program Files\Common Files\Adobe
[09/06/2008|22:50] C:\Program Files\Common Files\Ahead
[21/05/2008|11:40] C:\Program Files\Common Files\Alias Shared
[23/06/2008|21:17] C:\Program Files\Common Files\Apple
[21/05/2008|11:40] C:\Program Files\Common Files\Autodesk Shared
[27/05/2008|10:14] C:\Program Files\Common Files\Control Panels
[21/05/2008|13:59] C:\Program Files\Common Files\DESIGNER
[21/05/2008|11:40] C:\Program Files\Common Files\InstallShield
[10/04/2008|17:00] C:\Program Files\Common Files\Java
[27/05/2008|09:56] C:\Program Files\Common Files\Macrovision Shared
[29/06/2008|23:56] C:\Program Files\Common Files\microsoft shared
[09/06/2008|23:02] C:\Program Files\Common Files\Nero
[10/04/2008|17:05] C:\Program Files\Common Files\postureAgent
[10/04/2008|17:07] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/07/2008|23:20] C:\Program Files\Common Files\Softwin
[10/04/2008|17:07] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/04/2008|17:07] C:\Program Files\Common Files\SureThing Shared
[22/06/2008|03:24] C:\Program Files\Common Files\System
[19/06/2008|23:34] C:\Program Files\Common Files\WindowsLiveInstaller
[24/06/2008|07:59] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 65
iexplore.exe ~ [3716]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\ANTI PART PART.1bz3u9
C:\ProgramData\ANTI PART PART.blnec
C:\ProgramData\ANTI PART PART.jjukq81
C:\ProgramData\ANTI PART PART.kth3i
C:\ProgramData\ANTI PART PART.pirvlc
C:\ProgramData\ANTI PART PART.tw32iog
C:\ProgramData\ANTI PART PART.1bz3u9
C:\ProgramData\ANTI PART PART.blnec
C:\ProgramData\ANTI PART PART.jjukq81
C:\ProgramData\ANTI PART PART.pirvlc
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.adserver5[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adin.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@bigpoint[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adopt.euroclick[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@2xmoinscher[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.2xmoinscher[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"body glue"="\"C:\\ProgramData\\ANTI PART PART.1bz3u9\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-14 12:30:46
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:339][D:11]-> C:\Users\jean\AppData\Local\Temp
[F:280][D:1]-> C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies
[F:897][D:4]-> C:\Users\jean\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:24][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 12:38:27,52 ]----------------------
en fait j'ai déjà utilisé le lopSD mais pas correctement je pense.
voilà le rapport qu'il m'a généré après que j'ai choissis l'option 1, je n'ai pas encore fais la 2:
PS: j'ai déjà désintallé msn plus ;)
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : jean ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 14/07/2008 | 12:30:06,42 ] [ PC : CLINT ]
[ MAJ : 09-07-2008 | 21:02 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Roaming ]------------
[10/07/2008|11:54] C:\Users\jean\AppData\Roaming\Adobe\Common
[04/07/2008|16:39] C:\Users\jean\AppData\Roaming\Adobe\CameraRaw
[03/07/2008|01:15] C:\Users\jean\AppData\Roaming\Adobe\XMP
[21/06/2008|19:36] C:\Users\jean\AppData\Roaming\Adobe\Adobe Photoshop CS3
[21/06/2008|09:18] C:\Users\jean\AppData\Roaming\Adobe\Linguistics
[30/05/2008|23:49] C:\Users\jean\AppData\Roaming\Adobe\Workflow
[27/05/2008|10:31] C:\Users\jean\AppData\Roaming\Adobe\Flash Player
[27/05/2008|10:28] C:\Users\jean\AppData\Roaming\Adobe\Acrobat
[27/05/2008|10:23] C:\Users\jean\AppData\Roaming\Adobe\Color
[27/05/2008|10:20] C:\Users\jean\AppData\Roaming\Adobe\Adobe PDF
[27/05/2008|10:13] C:\Users\jean\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[27/05/2008|10:12] C:\Users\jean\AppData\Roaming\Adobe\After Effects
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\PremierePro
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\Premiere Pro
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe DVD
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe Encore
[27/05/2008|10:07] C:\Users\jean\AppData\Roaming\Adobe\Soundbooth
[27/05/2008|09:56] C:\Users\jean\AppData\Roaming\Adobe\Updater5
[03/07/2008|01:12] C:\Users\jean\AppData\Roaming\Apple Computer\iTunes
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\ATI\ACE
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Mixers
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Swatches
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Brushes
[27/05/2008|14:36] C:\Users\jean\AppData\Roaming\combustion2008\BrowserCache
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerDVD
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerCinema
[24/06/2008|21:26] C:\Users\jean\AppData\Roaming\Grisoft\AVG Antispyware 7.5
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Identities\{674F9722-C7E2-499B-8387-B86C59BC86E2}
[04/07/2008|07:44] C:\Users\jean\AppData\Roaming\InstallShield\ISEngine12.0
[09/07/2008|21:24] C:\Users\jean\AppData\Roaming\Macromedia\Flash Player
[09/07/2008|21:27] C:\Users\jean\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[12/07/2008|21:37] C:\Users\jean\AppData\Roaming\Microsoft\Templates
[12/07/2008|01:59] C:\Users\jean\AppData\Roaming\Microsoft\Word
[08/07/2008|18:48] C:\Users\jean\AppData\Roaming\Microsoft\Windows Photo Gallery
[02/07/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\Office
[02/07/2008|22:53] C:\Users\jean\AppData\Roaming\Microsoft\UProof
[29/06/2008|23:55] C:\Users\jean\AppData\Roaming\Microsoft\Installer
[27/06/2008|10:15] C:\Users\jean\AppData\Roaming\Microsoft\MSN Messenger
[26/06/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\IdentityCRL
[21/06/2008|15:39] C:\Users\jean\AppData\Roaming\Microsoft\Crypto
[20/06/2008|09:08] C:\Users\jean\AppData\Roaming\Microsoft\Internet Explorer
[20/06/2008|00:10] C:\Users\jean\AppData\Roaming\Microsoft\HTML Help
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Proof
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Document Building Blocks
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\AddIns
[21/05/2008|11:35] C:\Users\jean\AppData\Roaming\Microsoft\Windows
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\SystemCertificates
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Protect
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Credentials
[04/07/2008|16:58] C:\Users\jean\AppData\Roaming\Mozilla\Firefox
[24/06/2008|20:49] C:\Users\jean\AppData\Roaming\Mozilla\Extensions
[10/06/2008|08:49] C:\Users\jean\AppData\Roaming\Nero\Nero8
[09/06/2008|08:08] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral
[09/06/2008|08:07] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral33
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[14/07/2008 11:20][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{1D17F721-585F-4712-8A3D-65D893E95B07}.job
[14/07/2008 12:29][--ah-----] C:\Windows\tasks\SA.DAT
[14/07/2008 12:28][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[22/06/2008|10:54] C:\ProgramData\2 PROGRAM BALL.f6if1
[27/05/2008|10:20] C:\ProgramData\Adobe
[27/05/2008|10:13] C:\ProgramData\ALM
[03/07/2008|02:08] C:\ProgramData\ANTI PART PART.1bz3u9
[02/07/2008|12:28] C:\ProgramData\ANTI PART PART.blnec
[03/07/2008|00:40] C:\ProgramData\ANTI PART PART.jjukq81
[03/07/2008|01:24] C:\ProgramData\ANTI PART PART.kth3i
[03/07/2008|01:02] C:\ProgramData\ANTI PART PART.pirvlc
[03/07/2008|01:46] C:\ProgramData\ANTI PART PART.tw32iog
[27/05/2008|10:26] C:\ProgramData\Apple
[04/07/2008|07:37] C:\ProgramData\Apple Computer
[21/05/2008|11:27] C:\ProgramData\Application Data
[21/05/2008|11:31] C:\ProgramData\ATI
[20/06/2008|00:20] C:\ProgramData\Avira
[02/07/2008|23:05] C:\ProgramData\BitDefender
[03/07/2008|00:40] C:\ProgramData\blueaxisdownload
[21/05/2008|11:27] C:\ProgramData\Bureau
[05/07/2008|12:15] C:\ProgramData\BVRP Software
[19/06/2008|23:44] C:\ProgramData\CheckPoint
[10/06/2008|20:47] C:\ProgramData\CyberLink
[10/04/2008|17:08] C:\ProgramData\Dell
[27/05/2008|10:30] C:\ProgramData\discreet
[21/05/2008|11:27] C:\ProgramData\Documents
[22/06/2008|09:54] C:\ProgramData\DVD Shrink
[21/05/2008|11:27] C:\ProgramData\Favoris
[27/05/2008|10:21] C:\ProgramData\FLEXnet
[24/06/2008|21:26] C:\ProgramData\Grisoft
[10/04/2008|17:07] C:\ProgramData\InstallShield
[24/06/2008|08:01] C:\ProgramData\Lavasoft
[22/06/2008|10:54] C:\ProgramData\long extra fast city
[09/07/2008|21:26] C:\ProgramData\Malwarebytes
[21/05/2008|11:27] C:\ProgramData\Menu D‚marrer
[11/07/2008|21:04] C:\ProgramData\Messenger Plus!
[05/07/2008|12:16] C:\ProgramData\Microsoft
[14/07/2008|11:54] C:\ProgramData\Microsoft Help
[21/05/2008|11:27] C:\ProgramData\ModŠles
[09/06/2008|22:59] C:\ProgramData\Nero
[04/07/2008|07:47] C:\ProgramData\NTRU Cryptosystems
[02/07/2008|22:49] C:\ProgramData\ntuser.pol
[09/06/2008|08:49] C:\ProgramData\Roxio
[10/04/2008|17:07] C:\ProgramData\Sonic
[04/07/2008|07:51] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[27/05/2008|10:15] C:\Program Files\Adobe
[10/04/2008|16:53] C:\Program Files\Analog Devices
[23/06/2008|21:19] C:\Program Files\Apple Software Update
[10/04/2008|17:05] C:\Program Files\ATI Technologies
[07/07/2008|17:46] C:\Program Files\Audacity
[27/05/2008|10:30] C:\Program Files\Autodesk
[05/07/2008|12:14] C:\Program Files\Avanquest update
[20/06/2008|00:20] C:\Program Files\Avira
[24/06/2008|21:12] C:\Program Files\CCleaner
[27/05/2008|13:54] C:\Program Files\Chaos Group
[02/07/2008|23:02] C:\Program Files\Common Files
[10/04/2008|17:08] C:\Program Files\CyberLink
[27/05/2008|09:52] C:\Program Files\DAEMON Tools Lite
[04/07/2008|07:44] C:\Program Files\Dell
[22/06/2008|03:31] C:\Program Files\desktop.ini
[22/06/2008|09:34] C:\Program Files\DVD Shrink
[21/06/2008|15:51] C:\Program Files\Empire Interactive
[21/05/2008|11:27] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/05/2008|11:42] C:\Program Files\GLOBEtrotter Software Inc
[24/06/2008|21:26] C:\Program Files\Grisoft
[10/07/2008|00:14] C:\Program Files\Illustrate
[05/07/2008|12:14] C:\Program Files\InstallShield Installation Information
[10/04/2008|17:05] C:\Program Files\Intel
[22/06/2008|03:24] C:\Program Files\Internet Explorer
[10/04/2008|17:00] C:\Program Files\Java
[26/06/2008|22:46] C:\Program Files\K-Lite Codec Pack
[24/06/2008|08:00] C:\Program Files\Lavasoft
[09/07/2008|21:26] C:\Program Files\Malwarebytes' Anti-Malware
[21/05/2008|13:59] C:\Program Files\Microsoft Office
[21/05/2008|13:59] C:\Program Files\Microsoft Visual Studio
[21/05/2008|13:56] C:\Program Files\Microsoft Visual Studio 8
[21/05/2008|14:00] C:\Program Files\Microsoft Works
[21/05/2008|13:58] C:\Program Files\Microsoft.NET
[05/07/2008|12:12] C:\Program Files\mobile PhoneTools
[22/06/2008|03:24] C:\Program Files\Movie Maker
[10/07/2008|00:15] C:\Program Files\Mozilla Firefox
[21/05/2008|13:59] C:\Program Files\MSBuild
[19/06/2008|09:11] C:\Program Files\MSXML 4.0
[09/06/2008|22:59] C:\Program Files\Nero
[04/07/2008|07:47] C:\Program Files\NTRU Cryptosystems
[30/06/2008|00:10] C:\Program Files\Pixologic
[23/06/2008|21:21] C:\Program Files\QuickTime
[30/05/2008|13:10] C:\Program Files\REALVIZ
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/04/2008|17:07] C:\Program Files\Roxio
[02/07/2008|23:04] C:\Program Files\Softwin
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[22/06/2008|03:24] C:\Program Files\Windows Calendar
[22/06/2008|03:24] C:\Program Files\Windows Collaboration
[22/06/2008|03:24] C:\Program Files\Windows Defender
[22/06/2008|03:24] C:\Program Files\Windows Journal
[04/07/2008|07:53] C:\Program Files\Windows Live
[09/07/2008|08:16] C:\Program Files\Windows Mail
[22/06/2008|03:24] C:\Program Files\Windows Media Player
[21/05/2008|11:27] C:\Program Files\Windows NT
[22/06/2008|03:24] C:\Program Files\Windows Photo Gallery
[22/06/2008|03:24] C:\Program Files\Windows Sidebar
[21/05/2008|11:44] C:\Program Files\WinRAR
[20/06/2008|00:13] C:\Program Files\Zone Labs
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[27/05/2008|10:16] C:\Program Files\Common Files\Adobe
[09/06/2008|22:50] C:\Program Files\Common Files\Ahead
[21/05/2008|11:40] C:\Program Files\Common Files\Alias Shared
[23/06/2008|21:17] C:\Program Files\Common Files\Apple
[21/05/2008|11:40] C:\Program Files\Common Files\Autodesk Shared
[27/05/2008|10:14] C:\Program Files\Common Files\Control Panels
[21/05/2008|13:59] C:\Program Files\Common Files\DESIGNER
[21/05/2008|11:40] C:\Program Files\Common Files\InstallShield
[10/04/2008|17:00] C:\Program Files\Common Files\Java
[27/05/2008|09:56] C:\Program Files\Common Files\Macrovision Shared
[29/06/2008|23:56] C:\Program Files\Common Files\microsoft shared
[09/06/2008|23:02] C:\Program Files\Common Files\Nero
[10/04/2008|17:05] C:\Program Files\Common Files\postureAgent
[10/04/2008|17:07] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/07/2008|23:20] C:\Program Files\Common Files\Softwin
[10/04/2008|17:07] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/04/2008|17:07] C:\Program Files\Common Files\SureThing Shared
[22/06/2008|03:24] C:\Program Files\Common Files\System
[19/06/2008|23:34] C:\Program Files\Common Files\WindowsLiveInstaller
[24/06/2008|07:59] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 65
iexplore.exe ~ [3716]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\ANTI PART PART.1bz3u9
C:\ProgramData\ANTI PART PART.blnec
C:\ProgramData\ANTI PART PART.jjukq81
C:\ProgramData\ANTI PART PART.kth3i
C:\ProgramData\ANTI PART PART.pirvlc
C:\ProgramData\ANTI PART PART.tw32iog
C:\ProgramData\ANTI PART PART.1bz3u9
C:\ProgramData\ANTI PART PART.blnec
C:\ProgramData\ANTI PART PART.jjukq81
C:\ProgramData\ANTI PART PART.pirvlc
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.adserver5[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adin.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@bigpoint[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adopt.euroclick[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@2xmoinscher[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.2xmoinscher[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"body glue"="\"C:\\ProgramData\\ANTI PART PART.1bz3u9\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-14 12:30:46
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:339][D:11]-> C:\Users\jean\AppData\Local\Temp
[F:280][D:1]-> C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies
[F:897][D:4]-> C:\Users\jean\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:24][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 12:38:27,52 ]----------------------
Salut lauvic, comme je l'ai fait pour minou90 sur un autre post, je te montre la solution propable :
j'ai eu le même problème que toi il y a quelque temps et j'ai résolu ce problème.
Pour résoudre ce problème la solution était toute simple (mais je ne sais pas si tu as la même configuration que moi):
J'ai Windows Live Messenger 8.5 et j'ai installé windows live Plus. Lors de l'installation du Plus, j'ai cliqué sur " Installer le Sponsor" ce qui a créé la venue des pub intempestive "CID".
Pour résoudre (si tu as installé Windows live Plus) j'ai du aller dans panneau de configuration / ajout et suppression de programme et désinstaller msn plus lors de sa désinstallation, au début, tu devra choisir désinstaller seulement le Sponsor. A la fin de la désinstallation redémarre et dit moi quoi...
J'espère que ça t'aidera !
j'ai eu le même problème que toi il y a quelque temps et j'ai résolu ce problème.
Pour résoudre ce problème la solution était toute simple (mais je ne sais pas si tu as la même configuration que moi):
J'ai Windows Live Messenger 8.5 et j'ai installé windows live Plus. Lors de l'installation du Plus, j'ai cliqué sur " Installer le Sponsor" ce qui a créé la venue des pub intempestive "CID".
Pour résoudre (si tu as installé Windows live Plus) j'ai du aller dans panneau de configuration / ajout et suppression de programme et désinstaller msn plus lors de sa désinstallation, au début, tu devra choisir désinstaller seulement le Sponsor. A la fin de la désinstallation redémarre et dit moi quoi...
J'espère que ça t'aidera !
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
oui bien sur. Il devrait te supprimer ceci au moins
vérifie pour celui-ci
C:\ProgramData\2 PROGRAM BALL.f6if1
O4 - HKCU\..\Run: [fast city ping help] "C:\ProgramData\2 PROGRAM BALL.f6if1" O4 - HKCU\..\Run: [body glue] "C:\ProgramData\ANTI PART PART.1bz3u9" C:\ProgramData\ANTI PART PART.1bz3u9 C:\ProgramData\ANTI PART PART.blnec C:\ProgramData\ANTI PART PART.jjukq81 C:\ProgramData\ANTI PART PART.kth3i C:\ProgramData\ANTI PART PART.pirvlc C:\ProgramData\ANTI PART PART.tw32iog C:\ProgramData\ANTI PART PART.1bz3u9 C:\ProgramData\ANTI PART PART.blnec C:\ProgramData\ANTI PART PART.jjukq81 C:\ProgramData\ANTI PART PART.pirvlc
vérifie pour celui-ci
C:\ProgramData\2 PROGRAM BALL.f6if1
voilà le 2nd rapport lop SD:
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : jean ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 14/07/2008 | 14:19:08,16 ] [ PC : CLINT ]
[ MAJ : 09-07-2008 | 21:02 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.adserver5[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adin.bigpoint[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@bigpoint[2].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@2xmoinscher[2].txt
Supprime! - C:\ProgramData\ANTI PART PART.1bz3u9
Supprime! - C:\ProgramData\ANTI PART PART.blnec
Supprime! - C:\ProgramData\ANTI PART PART.jjukq81
Supprime! - C:\ProgramData\ANTI PART PART.kth3i
Supprime! - C:\ProgramData\ANTI PART PART.pirvlc
Supprime! - C:\ProgramData\ANTI PART PART.tw32iog
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Roaming ]------------
[10/07/2008|11:54] C:\Users\jean\AppData\Roaming\Adobe\Common
[04/07/2008|16:39] C:\Users\jean\AppData\Roaming\Adobe\CameraRaw
[03/07/2008|01:15] C:\Users\jean\AppData\Roaming\Adobe\XMP
[21/06/2008|19:36] C:\Users\jean\AppData\Roaming\Adobe\Adobe Photoshop CS3
[21/06/2008|09:18] C:\Users\jean\AppData\Roaming\Adobe\Linguistics
[30/05/2008|23:49] C:\Users\jean\AppData\Roaming\Adobe\Workflow
[27/05/2008|10:31] C:\Users\jean\AppData\Roaming\Adobe\Flash Player
[27/05/2008|10:28] C:\Users\jean\AppData\Roaming\Adobe\Acrobat
[27/05/2008|10:23] C:\Users\jean\AppData\Roaming\Adobe\Color
[27/05/2008|10:20] C:\Users\jean\AppData\Roaming\Adobe\Adobe PDF
[27/05/2008|10:13] C:\Users\jean\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[27/05/2008|10:12] C:\Users\jean\AppData\Roaming\Adobe\After Effects
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\PremierePro
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\Premiere Pro
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe DVD
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe Encore
[27/05/2008|10:07] C:\Users\jean\AppData\Roaming\Adobe\Soundbooth
[27/05/2008|09:56] C:\Users\jean\AppData\Roaming\Adobe\Updater5
[03/07/2008|01:12] C:\Users\jean\AppData\Roaming\Apple Computer\iTunes
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\ATI\ACE
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Mixers
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Swatches
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Brushes
[27/05/2008|14:36] C:\Users\jean\AppData\Roaming\combustion2008\BrowserCache
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerDVD
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerCinema
[24/06/2008|21:26] C:\Users\jean\AppData\Roaming\Grisoft\AVG Antispyware 7.5
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Identities\{674F9722-C7E2-499B-8387-B86C59BC86E2}
[04/07/2008|07:44] C:\Users\jean\AppData\Roaming\InstallShield\ISEngine12.0
[09/07/2008|21:24] C:\Users\jean\AppData\Roaming\Macromedia\Flash Player
[09/07/2008|21:27] C:\Users\jean\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[12/07/2008|21:37] C:\Users\jean\AppData\Roaming\Microsoft\Templates
[12/07/2008|01:59] C:\Users\jean\AppData\Roaming\Microsoft\Word
[08/07/2008|18:48] C:\Users\jean\AppData\Roaming\Microsoft\Windows Photo Gallery
[02/07/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\Office
[02/07/2008|22:53] C:\Users\jean\AppData\Roaming\Microsoft\UProof
[29/06/2008|23:55] C:\Users\jean\AppData\Roaming\Microsoft\Installer
[27/06/2008|10:15] C:\Users\jean\AppData\Roaming\Microsoft\MSN Messenger
[26/06/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\IdentityCRL
[21/06/2008|15:39] C:\Users\jean\AppData\Roaming\Microsoft\Crypto
[20/06/2008|09:08] C:\Users\jean\AppData\Roaming\Microsoft\Internet Explorer
[20/06/2008|00:10] C:\Users\jean\AppData\Roaming\Microsoft\HTML Help
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Proof
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Document Building Blocks
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\AddIns
[21/05/2008|11:35] C:\Users\jean\AppData\Roaming\Microsoft\Windows
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\SystemCertificates
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Protect
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Credentials
[04/07/2008|16:58] C:\Users\jean\AppData\Roaming\Mozilla\Firefox
[24/06/2008|20:49] C:\Users\jean\AppData\Roaming\Mozilla\Extensions
[10/06/2008|08:49] C:\Users\jean\AppData\Roaming\Nero\Nero8
[09/06/2008|08:08] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral
[09/06/2008|08:07] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral33
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[14/07/2008 11:20][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{1D17F721-585F-4712-8A3D-65D893E95B07}.job
[14/07/2008 14:18][--ah-----] C:\Windows\tasks\SA.DAT
[14/07/2008 14:17][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[22/06/2008|10:54] C:\ProgramData\2 PROGRAM BALL.f6if1
[27/05/2008|10:20] C:\ProgramData\Adobe
[27/05/2008|10:13] C:\ProgramData\ALM
[27/05/2008|10:26] C:\ProgramData\Apple
[04/07/2008|07:37] C:\ProgramData\Apple Computer
[21/05/2008|11:27] C:\ProgramData\Application Data
[21/05/2008|11:31] C:\ProgramData\ATI
[20/06/2008|00:20] C:\ProgramData\Avira
[02/07/2008|23:05] C:\ProgramData\BitDefender
[03/07/2008|00:40] C:\ProgramData\blueaxisdownload
[21/05/2008|11:27] C:\ProgramData\Bureau
[05/07/2008|12:15] C:\ProgramData\BVRP Software
[19/06/2008|23:44] C:\ProgramData\CheckPoint
[10/06/2008|20:47] C:\ProgramData\CyberLink
[10/04/2008|17:08] C:\ProgramData\Dell
[27/05/2008|10:30] C:\ProgramData\discreet
[21/05/2008|11:27] C:\ProgramData\Documents
[22/06/2008|09:54] C:\ProgramData\DVD Shrink
[21/05/2008|11:27] C:\ProgramData\Favoris
[27/05/2008|10:21] C:\ProgramData\FLEXnet
[24/06/2008|21:26] C:\ProgramData\Grisoft
[10/04/2008|17:07] C:\ProgramData\InstallShield
[24/06/2008|08:01] C:\ProgramData\Lavasoft
[22/06/2008|10:54] C:\ProgramData\long extra fast city
[09/07/2008|21:26] C:\ProgramData\Malwarebytes
[21/05/2008|11:27] C:\ProgramData\Menu D‚marrer
[11/07/2008|21:04] C:\ProgramData\Messenger Plus!
[05/07/2008|12:16] C:\ProgramData\Microsoft
[14/07/2008|11:54] C:\ProgramData\Microsoft Help
[21/05/2008|11:27] C:\ProgramData\ModŠles
[09/06/2008|22:59] C:\ProgramData\Nero
[04/07/2008|07:47] C:\ProgramData\NTRU Cryptosystems
[02/07/2008|22:49] C:\ProgramData\ntuser.pol
[09/06/2008|08:49] C:\ProgramData\Roxio
[10/04/2008|17:07] C:\ProgramData\Sonic
[04/07/2008|07:51] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[27/05/2008|10:15] C:\Program Files\Adobe
[10/04/2008|16:53] C:\Program Files\Analog Devices
[23/06/2008|21:19] C:\Program Files\Apple Software Update
[10/04/2008|17:05] C:\Program Files\ATI Technologies
[07/07/2008|17:46] C:\Program Files\Audacity
[27/05/2008|10:30] C:\Program Files\Autodesk
[05/07/2008|12:14] C:\Program Files\Avanquest update
[20/06/2008|00:20] C:\Program Files\Avira
[24/06/2008|21:12] C:\Program Files\CCleaner
[27/05/2008|13:54] C:\Program Files\Chaos Group
[02/07/2008|23:02] C:\Program Files\Common Files
[10/04/2008|17:08] C:\Program Files\CyberLink
[27/05/2008|09:52] C:\Program Files\DAEMON Tools Lite
[04/07/2008|07:44] C:\Program Files\Dell
[22/06/2008|03:31] C:\Program Files\desktop.ini
[22/06/2008|09:34] C:\Program Files\DVD Shrink
[21/06/2008|15:51] C:\Program Files\Empire Interactive
[21/05/2008|11:27] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/05/2008|11:42] C:\Program Files\GLOBEtrotter Software Inc
[24/06/2008|21:26] C:\Program Files\Grisoft
[10/07/2008|00:14] C:\Program Files\Illustrate
[05/07/2008|12:14] C:\Program Files\InstallShield Installation Information
[10/04/2008|17:05] C:\Program Files\Intel
[22/06/2008|03:24] C:\Program Files\Internet Explorer
[10/04/2008|17:00] C:\Program Files\Java
[26/06/2008|22:46] C:\Program Files\K-Lite Codec Pack
[24/06/2008|08:00] C:\Program Files\Lavasoft
[09/07/2008|21:26] C:\Program Files\Malwarebytes' Anti-Malware
[21/05/2008|13:59] C:\Program Files\Microsoft Office
[21/05/2008|13:59] C:\Program Files\Microsoft Visual Studio
[21/05/2008|13:56] C:\Program Files\Microsoft Visual Studio 8
[21/05/2008|14:00] C:\Program Files\Microsoft Works
[21/05/2008|13:58] C:\Program Files\Microsoft.NET
[05/07/2008|12:12] C:\Program Files\mobile PhoneTools
[22/06/2008|03:24] C:\Program Files\Movie Maker
[14/07/2008|13:06] C:\Program Files\Mozilla Firefox
[21/05/2008|13:59] C:\Program Files\MSBuild
[19/06/2008|09:11] C:\Program Files\MSXML 4.0
[09/06/2008|22:59] C:\Program Files\Nero
[04/07/2008|07:47] C:\Program Files\NTRU Cryptosystems
[30/06/2008|00:10] C:\Program Files\Pixologic
[23/06/2008|21:21] C:\Program Files\QuickTime
[30/05/2008|13:10] C:\Program Files\REALVIZ
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/04/2008|17:07] C:\Program Files\Roxio
[02/07/2008|23:04] C:\Program Files\Softwin
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[22/06/2008|03:24] C:\Program Files\Windows Calendar
[22/06/2008|03:24] C:\Program Files\Windows Collaboration
[22/06/2008|03:24] C:\Program Files\Windows Defender
[22/06/2008|03:24] C:\Program Files\Windows Journal
[04/07/2008|07:53] C:\Program Files\Windows Live
[09/07/2008|08:16] C:\Program Files\Windows Mail
[22/06/2008|03:24] C:\Program Files\Windows Media Player
[21/05/2008|11:27] C:\Program Files\Windows NT
[22/06/2008|03:24] C:\Program Files\Windows Photo Gallery
[22/06/2008|03:24] C:\Program Files\Windows Sidebar
[21/05/2008|11:44] C:\Program Files\WinRAR
[20/06/2008|00:13] C:\Program Files\Zone Labs
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[27/05/2008|10:16] C:\Program Files\Common Files\Adobe
[09/06/2008|22:50] C:\Program Files\Common Files\Ahead
[21/05/2008|11:40] C:\Program Files\Common Files\Alias Shared
[23/06/2008|21:17] C:\Program Files\Common Files\Apple
[21/05/2008|11:40] C:\Program Files\Common Files\Autodesk Shared
[27/05/2008|10:14] C:\Program Files\Common Files\Control Panels
[21/05/2008|13:59] C:\Program Files\Common Files\DESIGNER
[21/05/2008|11:40] C:\Program Files\Common Files\InstallShield
[10/04/2008|17:00] C:\Program Files\Common Files\Java
[27/05/2008|09:56] C:\Program Files\Common Files\Macrovision Shared
[29/06/2008|23:56] C:\Program Files\Common Files\microsoft shared
[09/06/2008|23:02] C:\Program Files\Common Files\Nero
[10/04/2008|17:05] C:\Program Files\Common Files\postureAgent
[10/04/2008|17:07] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/07/2008|23:20] C:\Program Files\Common Files\Softwin
[10/04/2008|17:07] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/04/2008|17:07] C:\Program Files\Common Files\SureThing Shared
[22/06/2008|03:24] C:\Program Files\Common Files\System
[19/06/2008|23:34] C:\Program Files\Common Files\WindowsLiveInstaller
[24/06/2008|07:59] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 64
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adopt.euroclick[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.2xmoinscher[1].txt
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-14 14:20:05
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:345][D:11]-> C:\Users\jean\AppData\Local\Temp
[F:285][D:1]-> C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1826][D:4]-> C:\Users\jean\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:24][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 14:26:53,63 ]----------------------
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : jean ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 14/07/2008 | 14:19:08,16 ] [ PC : CLINT ]
[ MAJ : 09-07-2008 | 21:02 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.adserver5[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adin.bigpoint[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@bigpoint[2].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@fr1.seafight.bigpoint[1].txt
Supprime! - C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@2xmoinscher[2].txt
Supprime! - C:\ProgramData\ANTI PART PART.1bz3u9
Supprime! - C:\ProgramData\ANTI PART PART.blnec
Supprime! - C:\ProgramData\ANTI PART PART.jjukq81
Supprime! - C:\ProgramData\ANTI PART PART.kth3i
Supprime! - C:\ProgramData\ANTI PART PART.pirvlc
Supprime! - C:\ProgramData\ANTI PART PART.tw32iog
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Roaming ]------------
[10/07/2008|11:54] C:\Users\jean\AppData\Roaming\Adobe\Common
[04/07/2008|16:39] C:\Users\jean\AppData\Roaming\Adobe\CameraRaw
[03/07/2008|01:15] C:\Users\jean\AppData\Roaming\Adobe\XMP
[21/06/2008|19:36] C:\Users\jean\AppData\Roaming\Adobe\Adobe Photoshop CS3
[21/06/2008|09:18] C:\Users\jean\AppData\Roaming\Adobe\Linguistics
[30/05/2008|23:49] C:\Users\jean\AppData\Roaming\Adobe\Workflow
[27/05/2008|10:31] C:\Users\jean\AppData\Roaming\Adobe\Flash Player
[27/05/2008|10:28] C:\Users\jean\AppData\Roaming\Adobe\Acrobat
[27/05/2008|10:23] C:\Users\jean\AppData\Roaming\Adobe\Color
[27/05/2008|10:20] C:\Users\jean\AppData\Roaming\Adobe\Adobe PDF
[27/05/2008|10:13] C:\Users\jean\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[27/05/2008|10:12] C:\Users\jean\AppData\Roaming\Adobe\After Effects
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\PremierePro
[27/05/2008|10:11] C:\Users\jean\AppData\Roaming\Adobe\Premiere Pro
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe DVD
[27/05/2008|10:09] C:\Users\jean\AppData\Roaming\Adobe\Adobe Encore
[27/05/2008|10:07] C:\Users\jean\AppData\Roaming\Adobe\Soundbooth
[27/05/2008|09:56] C:\Users\jean\AppData\Roaming\Adobe\Updater5
[03/07/2008|01:12] C:\Users\jean\AppData\Roaming\Apple Computer\iTunes
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\ATI\ACE
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Mixers
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Swatches
[27/05/2008|17:05] C:\Users\jean\AppData\Roaming\combustion2008\Brushes
[27/05/2008|14:36] C:\Users\jean\AppData\Roaming\combustion2008\BrowserCache
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerDVD
[10/06/2008|20:47] C:\Users\jean\AppData\Roaming\CyberLink\PowerCinema
[24/06/2008|21:26] C:\Users\jean\AppData\Roaming\Grisoft\AVG Antispyware 7.5
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Identities\{674F9722-C7E2-499B-8387-B86C59BC86E2}
[04/07/2008|07:44] C:\Users\jean\AppData\Roaming\InstallShield\ISEngine12.0
[09/07/2008|21:24] C:\Users\jean\AppData\Roaming\Macromedia\Flash Player
[09/07/2008|21:27] C:\Users\jean\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[12/07/2008|21:37] C:\Users\jean\AppData\Roaming\Microsoft\Templates
[12/07/2008|01:59] C:\Users\jean\AppData\Roaming\Microsoft\Word
[08/07/2008|18:48] C:\Users\jean\AppData\Roaming\Microsoft\Windows Photo Gallery
[02/07/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\Office
[02/07/2008|22:53] C:\Users\jean\AppData\Roaming\Microsoft\UProof
[29/06/2008|23:55] C:\Users\jean\AppData\Roaming\Microsoft\Installer
[27/06/2008|10:15] C:\Users\jean\AppData\Roaming\Microsoft\MSN Messenger
[26/06/2008|22:54] C:\Users\jean\AppData\Roaming\Microsoft\IdentityCRL
[21/06/2008|15:39] C:\Users\jean\AppData\Roaming\Microsoft\Crypto
[20/06/2008|09:08] C:\Users\jean\AppData\Roaming\Microsoft\Internet Explorer
[20/06/2008|00:10] C:\Users\jean\AppData\Roaming\Microsoft\HTML Help
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Proof
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\Document Building Blocks
[21/05/2008|14:37] C:\Users\jean\AppData\Roaming\Microsoft\AddIns
[21/05/2008|11:35] C:\Users\jean\AppData\Roaming\Microsoft\Windows
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\SystemCertificates
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Protect
[21/05/2008|11:31] C:\Users\jean\AppData\Roaming\Microsoft\Credentials
[04/07/2008|16:58] C:\Users\jean\AppData\Roaming\Mozilla\Firefox
[24/06/2008|20:49] C:\Users\jean\AppData\Roaming\Mozilla\Extensions
[10/06/2008|08:49] C:\Users\jean\AppData\Roaming\Nero\Nero8
[09/06/2008|08:08] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral
[09/06/2008|08:07] C:\Users\jean\AppData\Roaming\Roxio\RoxioCentral33
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[14/07/2008 11:20][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{1D17F721-585F-4712-8A3D-65D893E95B07}.job
[14/07/2008 14:18][--ah-----] C:\Windows\tasks\SA.DAT
[14/07/2008 14:17][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[22/06/2008|10:54] C:\ProgramData\2 PROGRAM BALL.f6if1
[27/05/2008|10:20] C:\ProgramData\Adobe
[27/05/2008|10:13] C:\ProgramData\ALM
[27/05/2008|10:26] C:\ProgramData\Apple
[04/07/2008|07:37] C:\ProgramData\Apple Computer
[21/05/2008|11:27] C:\ProgramData\Application Data
[21/05/2008|11:31] C:\ProgramData\ATI
[20/06/2008|00:20] C:\ProgramData\Avira
[02/07/2008|23:05] C:\ProgramData\BitDefender
[03/07/2008|00:40] C:\ProgramData\blueaxisdownload
[21/05/2008|11:27] C:\ProgramData\Bureau
[05/07/2008|12:15] C:\ProgramData\BVRP Software
[19/06/2008|23:44] C:\ProgramData\CheckPoint
[10/06/2008|20:47] C:\ProgramData\CyberLink
[10/04/2008|17:08] C:\ProgramData\Dell
[27/05/2008|10:30] C:\ProgramData\discreet
[21/05/2008|11:27] C:\ProgramData\Documents
[22/06/2008|09:54] C:\ProgramData\DVD Shrink
[21/05/2008|11:27] C:\ProgramData\Favoris
[27/05/2008|10:21] C:\ProgramData\FLEXnet
[24/06/2008|21:26] C:\ProgramData\Grisoft
[10/04/2008|17:07] C:\ProgramData\InstallShield
[24/06/2008|08:01] C:\ProgramData\Lavasoft
[22/06/2008|10:54] C:\ProgramData\long extra fast city
[09/07/2008|21:26] C:\ProgramData\Malwarebytes
[21/05/2008|11:27] C:\ProgramData\Menu D‚marrer
[11/07/2008|21:04] C:\ProgramData\Messenger Plus!
[05/07/2008|12:16] C:\ProgramData\Microsoft
[14/07/2008|11:54] C:\ProgramData\Microsoft Help
[21/05/2008|11:27] C:\ProgramData\ModŠles
[09/06/2008|22:59] C:\ProgramData\Nero
[04/07/2008|07:47] C:\ProgramData\NTRU Cryptosystems
[02/07/2008|22:49] C:\ProgramData\ntuser.pol
[09/06/2008|08:49] C:\ProgramData\Roxio
[10/04/2008|17:07] C:\ProgramData\Sonic
[04/07/2008|07:51] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[27/05/2008|10:15] C:\Program Files\Adobe
[10/04/2008|16:53] C:\Program Files\Analog Devices
[23/06/2008|21:19] C:\Program Files\Apple Software Update
[10/04/2008|17:05] C:\Program Files\ATI Technologies
[07/07/2008|17:46] C:\Program Files\Audacity
[27/05/2008|10:30] C:\Program Files\Autodesk
[05/07/2008|12:14] C:\Program Files\Avanquest update
[20/06/2008|00:20] C:\Program Files\Avira
[24/06/2008|21:12] C:\Program Files\CCleaner
[27/05/2008|13:54] C:\Program Files\Chaos Group
[02/07/2008|23:02] C:\Program Files\Common Files
[10/04/2008|17:08] C:\Program Files\CyberLink
[27/05/2008|09:52] C:\Program Files\DAEMON Tools Lite
[04/07/2008|07:44] C:\Program Files\Dell
[22/06/2008|03:31] C:\Program Files\desktop.ini
[22/06/2008|09:34] C:\Program Files\DVD Shrink
[21/06/2008|15:51] C:\Program Files\Empire Interactive
[21/05/2008|11:27] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/05/2008|11:42] C:\Program Files\GLOBEtrotter Software Inc
[24/06/2008|21:26] C:\Program Files\Grisoft
[10/07/2008|00:14] C:\Program Files\Illustrate
[05/07/2008|12:14] C:\Program Files\InstallShield Installation Information
[10/04/2008|17:05] C:\Program Files\Intel
[22/06/2008|03:24] C:\Program Files\Internet Explorer
[10/04/2008|17:00] C:\Program Files\Java
[26/06/2008|22:46] C:\Program Files\K-Lite Codec Pack
[24/06/2008|08:00] C:\Program Files\Lavasoft
[09/07/2008|21:26] C:\Program Files\Malwarebytes' Anti-Malware
[21/05/2008|13:59] C:\Program Files\Microsoft Office
[21/05/2008|13:59] C:\Program Files\Microsoft Visual Studio
[21/05/2008|13:56] C:\Program Files\Microsoft Visual Studio 8
[21/05/2008|14:00] C:\Program Files\Microsoft Works
[21/05/2008|13:58] C:\Program Files\Microsoft.NET
[05/07/2008|12:12] C:\Program Files\mobile PhoneTools
[22/06/2008|03:24] C:\Program Files\Movie Maker
[14/07/2008|13:06] C:\Program Files\Mozilla Firefox
[21/05/2008|13:59] C:\Program Files\MSBuild
[19/06/2008|09:11] C:\Program Files\MSXML 4.0
[09/06/2008|22:59] C:\Program Files\Nero
[04/07/2008|07:47] C:\Program Files\NTRU Cryptosystems
[30/06/2008|00:10] C:\Program Files\Pixologic
[23/06/2008|21:21] C:\Program Files\QuickTime
[30/05/2008|13:10] C:\Program Files\REALVIZ
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/04/2008|17:07] C:\Program Files\Roxio
[02/07/2008|23:04] C:\Program Files\Softwin
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[22/06/2008|03:24] C:\Program Files\Windows Calendar
[22/06/2008|03:24] C:\Program Files\Windows Collaboration
[22/06/2008|03:24] C:\Program Files\Windows Defender
[22/06/2008|03:24] C:\Program Files\Windows Journal
[04/07/2008|07:53] C:\Program Files\Windows Live
[09/07/2008|08:16] C:\Program Files\Windows Mail
[22/06/2008|03:24] C:\Program Files\Windows Media Player
[21/05/2008|11:27] C:\Program Files\Windows NT
[22/06/2008|03:24] C:\Program Files\Windows Photo Gallery
[22/06/2008|03:24] C:\Program Files\Windows Sidebar
[21/05/2008|11:44] C:\Program Files\WinRAR
[20/06/2008|00:13] C:\Program Files\Zone Labs
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[27/05/2008|10:16] C:\Program Files\Common Files\Adobe
[09/06/2008|22:50] C:\Program Files\Common Files\Ahead
[21/05/2008|11:40] C:\Program Files\Common Files\Alias Shared
[23/06/2008|21:17] C:\Program Files\Common Files\Apple
[21/05/2008|11:40] C:\Program Files\Common Files\Autodesk Shared
[27/05/2008|10:14] C:\Program Files\Common Files\Control Panels
[21/05/2008|13:59] C:\Program Files\Common Files\DESIGNER
[21/05/2008|11:40] C:\Program Files\Common Files\InstallShield
[10/04/2008|17:00] C:\Program Files\Common Files\Java
[27/05/2008|09:56] C:\Program Files\Common Files\Macrovision Shared
[29/06/2008|23:56] C:\Program Files\Common Files\microsoft shared
[09/06/2008|23:02] C:\Program Files\Common Files\Nero
[10/04/2008|17:05] C:\Program Files\Common Files\postureAgent
[10/04/2008|17:07] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/07/2008|23:20] C:\Program Files\Common Files\Softwin
[10/04/2008|17:07] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/04/2008|17:07] C:\Program Files\Common Files\SureThing Shared
[22/06/2008|03:24] C:\Program Files\Common Files\System
[19/06/2008|23:34] C:\Program Files\Common Files\WindowsLiveInstaller
[24/06/2008|07:59] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 64
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@adopt.euroclick[2].txt
C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies\jean@www.2xmoinscher[1].txt
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-14 14:20:05
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:345][D:11]-> C:\Users\jean\AppData\Local\Temp
[F:285][D:1]-> C:\Users\jean\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1826][D:4]-> C:\Users\jean\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:24][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 14:26:53,63 ]----------------------
