Toujours Cid et les fenêtres intempestives

jiminat Messages postés 1 Statut Membre -  
 Utilisateur anonyme -
Bonjour,

J'ai le problème du CiD avec les fenêtres de pub intempestives.
Je les ai bloquées avec le firewall, j'ai un super anti-virus (de ORANGE pour ne pas le citer) et je suis assailli de pub (pub d'ailleurs pour mon fournisseur Internet... ce qui explique surement que l'anti-virus ne le jette pas).
Quelqu'un peut-il m'aider et m'expliquer.
La manip semble être complexe et différente suivant les cas exprimés sur ce forum.

D'avance grand merci.

jimimi
Configuration: Windows XP
Internet Explorer 7.0

9 réponses

  1. Utilisateur anonyme
     
    Salut

    Télécharge HijackThis ici :

    -> http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe

    Tutoriel d´instalation : (Merci a Balltrap34 pour cette réalisation)

    -> http://pageperso.aol.fr/balltrap34/Hijenr.gif

    Tutoriel d´utilisation (video) : (Merci a Balltrap34 pour cette réalisation)

    -> http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

    Post le rapport généré ici stp...
    0
  2. romlemagicus Messages postés 492 Statut Membre 21
     
    desinstalle le sponsor msn+
    0
  3. jiminat
     
    Merci pour vos réponses.

    Je vous réponds un peu tardivement.

    Voici le résultat du hijackthis.log.

    Logfile of HijackThis v1.99.1
    Scan saved at 22:25:04, on 27/07/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16674)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
    C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
    C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
    C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
    C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
    C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
    C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
    C:\Program Files\Java\jre1.5.0\bin\jusched.exe
    C:\WINDOWS\Mixer.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
    C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp\Rar$EX01.484\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O6 "USB001" /M "Stylus Photo RX420"
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
    O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
    O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
    O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
    O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
    O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
    O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe
    O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [WARN POP TRUST LIES] C:\Documents and Settings\All Users\Application Data\Camp Mess Warn Pop\long poll.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [media upload] C:\DOCUME~1\JEANMI~1\APPLIC~1\TWOMEM~1\Hope trans.exe
    O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZN
    O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.04\AMVConverter\grab.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.04\MediaManager\grab.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15-3.cab
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

    Qu'en pensez-vous ?

    Jimi
    0
  4. Utilisateur anonyme
     
    t excuse pas

    voila le responble :

    O4 - HKCU\..\Run: [media upload] C:\DOCUME~1\JEANMI~1\APPLIC~1\TWOMEM~1\Hope trans.exe

    télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

    * Double-clique dessus pour lancer l'installation
    * Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
    * Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
    * Patiente jusqu'à la fin du scan
    * Poste le rapport généré (C:\lopR.txt)

    Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. jiminat
     
    Voici le rapport :

    --------------------\\ Lop S&D 4.2.2-4 XP/Vista

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Jean Michel ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 29/07/2008 | 23:41:15,50 ] [ PC : JM2 ]
    [ MAJ : 25-07-2008 | 17:45 ]

    --------------------\\ Listing des dossiers dans APPLIC~1

    [03/01/2007|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [17/11/2007|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [24/05/2008|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [24/05/2008|10:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [25/10/2007|18:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
    [24/07/2008|09:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    [07/12/2006|00:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [28/05/2007|21:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
    [07/12/2006|01:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    [03/01/2007|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [23/01/2007|19:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [25/10/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [31/05/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [21/11/2007|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [27/10/2007|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [17/11/2007|23:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
    [28/05/2007|17:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nikon
    [14/10/2007|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
    [25/10/2007|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [21/05/2007|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [07/12/2006|00:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
    [28/05/2007|21:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
    [03/01/2007|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [15/01/2007|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
    [22/07/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [24/11/2007|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [13/04/2007|12:22] C:\DOCUME~1\CHRISL~1\APPLIC~1\Adobe
    [07/12/2006|00:28] C:\DOCUME~1\CHRISL~1\APPLIC~1\desktop.ini
    [13/04/2007|12:23] C:\DOCUME~1\CHRISL~1\APPLIC~1\F-Secure
    [13/04/2007|12:23] C:\DOCUME~1\CHRISL~1\APPLIC~1\Google
    [13/04/2007|12:21] C:\DOCUME~1\CHRISL~1\APPLIC~1\Identities
    [13/04/2007|12:22] C:\DOCUME~1\CHRISL~1\APPLIC~1\ispnews
    [13/04/2007|12:24] C:\DOCUME~1\CHRISL~1\APPLIC~1\Macromedia
    [08/10/2007|10:52] C:\DOCUME~1\CHRISL~1\APPLIC~1\Microsoft
    [14/10/2007|11:09] C:\DOCUME~1\CHRISL~1\APPLIC~1\Nikon
    [08/10/2007|10:54] C:\DOCUME~1\CHRISL~1\APPLIC~1\Sony

    [07/12/2006|00:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [01/12/2007|11:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [26/07/2008|12:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\Adobe
    [18/11/2007|00:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\Ahead
    [02/01/2007|22:44] C:\DOCUME~1\JEANMI~1\APPLIC~1\Apple Computer
    [06/03/2007|21:58] C:\DOCUME~1\JEANMI~1\APPLIC~1\ArcSoft
    [27/10/2007|12:02] C:\DOCUME~1\JEANMI~1\APPLIC~1\Brother
    [23/01/2007|23:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\COWON
    [25/02/2008|21:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\DarkBls
    [07/12/2006|00:28] C:\DOCUME~1\JEANMI~1\APPLIC~1\desktop.ini
    [14/12/2006|20:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\F-Secure
    [31/01/2007|13:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\FunWebProducts
    [07/01/2007|21:10] C:\DOCUME~1\JEANMI~1\APPLIC~1\Google
    [08/12/2006|20:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\Help
    [07/12/2006|00:40] C:\DOCUME~1\JEANMI~1\APPLIC~1\Identities
    [07/12/2006|01:17] C:\DOCUME~1\JEANMI~1\APPLIC~1\ispnews
    [24/03/2007|12:36] C:\DOCUME~1\JEANMI~1\APPLIC~1\Macromedia
    [24/07/2008|11:51] C:\DOCUME~1\JEANMI~1\APPLIC~1\Microsoft
    [10/11/2007|13:50] C:\DOCUME~1\JEANMI~1\APPLIC~1\MSN6
    [28/05/2007|21:40] C:\DOCUME~1\JEANMI~1\APPLIC~1\Nikon
    [07/12/2006|01:21] C:\DOCUME~1\JEANMI~1\APPLIC~1\PEX
    [24/03/2007|12:36] C:\DOCUME~1\JEANMI~1\APPLIC~1\PlayFirst
    [21/08/2007|22:53] C:\DOCUME~1\JEANMI~1\APPLIC~1\Real
    [07/11/2007|22:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\ScanSoft
    [21/05/2007|17:12] C:\DOCUME~1\JEANMI~1\APPLIC~1\Sony
    [14/12/2006|20:07] C:\DOCUME~1\JEANMI~1\APPLIC~1\Sun
    [26/07/2008|22:13] C:\DOCUME~1\JEANMI~1\APPLIC~1\two memo jugs
    [24/11/2007|12:26] C:\DOCUME~1\JEANMI~1\APPLIC~1\Windows Live Writer
    [26/04/2008|10:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\WinRAR

    [05/01/2007|19:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [30/04/2007|19:13] C:\DOCUME~1\MARCOL~1\APPLIC~1\Adobe
    [07/12/2006|00:28] C:\DOCUME~1\MARCOL~1\APPLIC~1\desktop.ini
    [08/12/2006|19:59] C:\DOCUME~1\MARCOL~1\APPLIC~1\Identities
    [08/12/2006|20:00] C:\DOCUME~1\MARCOL~1\APPLIC~1\ispnews
    [30/04/2007|19:13] C:\DOCUME~1\MARCOL~1\APPLIC~1\Microsoft

    [07/12/2006|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [29/07/2008 23:00][--ah-----] C:\WINDOWS\tasks\AD3B06499184BA49.job
    [26/07/2008 18:23][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [29/07/2008 10:08][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
    [29/07/2008 23:03][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ( AD3B06499184BA49.job )=( c:\docume~1\jeanmi~1\applic~1\twomem~1\BinItchGreat.exe )

    --------------------\\ Listing des dossiers dans C:\Program Files

    [09/01/2008|22:34] C:\Program Files\7-Zip
    [03/01/2007|23:02] C:\Program Files\Adobe
    [14/06/2007|18:39] C:\Program Files\Adverts
    [17/11/2007|18:54] C:\Program Files\Ahead
    [07/12/2006|01:15] C:\Program Files\AntivirusFirewall
    [24/05/2008|10:52] C:\Program Files\Apple Software Update
    [28/05/2007|17:50] C:\Program Files\ArcSoft
    [20/11/2007|12:51] C:\Program Files\AviSynth 2.5
    [24/05/2008|10:55] C:\Program Files\Bonjour
    [25/10/2007|18:53] C:\Program Files\Brother
    [24/07/2008|09:21] C:\Program Files\Circle Developement
    [07/12/2006|00:33] C:\Program Files\ComPlus Applications
    [21/04/2008|18:52] C:\Program Files\Conquete 2.0
    [26/04/2008|18:14] C:\Program Files\Cossacks
    [26/01/2007|19:00] C:\Program Files\Emoticons-plus.com
    [07/06/2008|11:16] C:\Program Files\eMule
    [24/05/2008|10:51] C:\Program Files\Fichiers communs
    [03/05/2007|18:53] C:\Program Files\Gamenext
    [02/02/2007|10:47] C:\Program Files\Google
    [27/12/2007|17:20] C:\Program Files\Handmark
    [23/01/2007|19:52] C:\Program Files\Hewlett-Packard
    [23/01/2007|19:52] C:\Program Files\HP
    [27/12/2007|17:13] C:\Program Files\Ihsv
    [18/02/2008|13:35] C:\Program Files\Illustrate
    [17/11/2007|18:52] C:\Program Files\IncrediMail
    [22/04/2008|19:11] C:\Program Files\InstallShield Installation Information
    [13/06/2008|00:01] C:\Program Files\Internet Explorer
    [03/03/2007|13:26] C:\Program Files\Inventel
    [18/06/2008|19:35] C:\Program Files\iPod
    [18/06/2008|19:35] C:\Program Files\iTunes
    [14/12/2006|20:03] C:\Program Files\Java
    [17/03/2008|23:34] C:\Program Files\JetAudio
    [18/02/2008|14:30] C:\Program Files\LeonMP3Encoder
    [09/02/2007|19:52] C:\Program Files\Logitech
    [19/12/2006|01:10] C:\Program Files\Messenger
    [24/07/2008|09:21] C:\Program Files\Messenger Plus! Live
    [10/05/2007|00:40] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [07/12/2006|00:35] C:\Program Files\microsoft frontpage
    [21/11/2007|23:10] C:\Program Files\Microsoft Office
    [11/11/2007|15:50] C:\Program Files\Microsoft SQL Server Compact Edition
    [21/11/2007|23:10] C:\Program Files\Microsoft.NET
    [18/12/2006|23:17] C:\Program Files\Movie Maker
    [07/12/2006|00:32] C:\Program Files\MSN
    [07/12/2006|00:32] C:\Program Files\MSN Gaming Zone
    [26/07/2008|12:44] C:\Program Files\MSN Messenger
    [24/01/2007|00:27] C:\Program Files\MSXML 4.0
    [17/11/2007|19:18] C:\Program Files\Nero
    [18/12/2006|23:14] C:\Program Files\NetMeeting
    [28/05/2007|17:56] C:\Program Files\Nikon
    [14/06/2007|00:04] C:\Program Files\Outlook Express
    [18/06/2008|19:34] C:\Program Files\QuickTime
    [25/10/2007|18:49] C:\Program Files\ScanSoft
    [07/12/2006|00:34] C:\Program Files\Services en ligne
    [25/02/2008|21:39] C:\Program Files\SHOE
    [15/09/2007|14:03] C:\Program Files\Sierra On-Line
    [21/05/2007|17:07] C:\Program Files\Sony
    [24/07/2008|09:21] C:\Program Files\two memo jugs
    [07/12/2006|00:40] C:\Program Files\Uninstall Information
    [16/03/2007|10:11] C:\Program Files\Wanadoo
    [22/04/2008|23:47] C:\Program Files\Windows Live
    [17/11/2007|18:58] C:\Program Files\Windows Live Toolbar
    [04/01/2007|00:54] C:\Program Files\Windows Media Connect 2
    [04/01/2007|01:07] C:\Program Files\Windows Media Player
    [18/12/2006|23:13] C:\Program Files\Windows NT
    [12/12/2006|20:03] C:\Program Files\WindowsUpdate
    [26/04/2008|10:19] C:\Program Files\WinRAR
    [07/12/2006|00:35] C:\Program Files\xerox
    [18/02/2008|13:42] C:\Program Files\Xing

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [03/01/2007|23:03] C:\Program Files\Fichiers communs\Adobe
    [17/11/2007|23:47] C:\Program Files\Fichiers communs\Ahead
    [24/05/2008|10:51] C:\Program Files\Fichiers communs\Apple
    [11/01/2008|00:19] C:\Program Files\Fichiers communs\Click2Learn
    [23/01/2007|23:33] C:\Program Files\Fichiers communs\COWON
    [21/11/2007|23:10] C:\Program Files\Fichiers communs\DESIGNER
    [23/01/2007|19:52] C:\Program Files\Fichiers communs\HP
    [25/10/2007|18:52] C:\Program Files\Fichiers communs\InstallShield
    [14/12/2006|20:01] C:\Program Files\Fichiers communs\Java
    [09/02/2007|19:53] C:\Program Files\Fichiers communs\Logitech
    [14/06/2008|00:42] C:\Program Files\Fichiers communs\Microsoft Shared
    [07/12/2006|00:33] C:\Program Files\Fichiers communs\MSSoap
    [28/05/2007|17:56] C:\Program Files\Fichiers communs\muvee Technologies
    [28/05/2007|21:40] C:\Program Files\Fichiers communs\Nikon
    [07/12/2006|00:29] C:\Program Files\Fichiers communs\ODBC
    [25/10/2007|18:49] C:\Program Files\Fichiers communs\ScanSoft Shared
    [07/12/2006|00:33] C:\Program Files\Fichiers communs\Services
    [07/12/2006|00:29] C:\Program Files\Fichiers communs\SpeechEngines
    [14/06/2007|00:04] C:\Program Files\Fichiers communs\System
    [11/11/2007|15:40] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [18/02/2008|13:42] C:\Program Files\Fichiers communs\Xing Shared

    --------------------\\ Process

    ( 55 Processus )

    iexplore.exe ~ [2496]
    iexplore.exe ~ [684]

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\long poll.exe
    C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1
    C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\BinItchGreat.0xe.virus
    C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\HOPE TRANS.0XE.virus
    C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\hwmwgvog.0xe.virus
    C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\SOAPTITLELITEMETA.0xe.virus
    C:\Program Files\twomem~1
    C:\Program Files\Adverts
    C:\Program Files\Circle Developement
    C:\Program Files\Circle Developement\Uninstall.exe
    C:\DOCUME~1\JEANMI~1\Cookies\jean_michel@32vegas[2].txt
    C:\DOCUME~1\JEANMI~1\Cookies\jean_michel@banner.32vegas[2].txt
    C:\WINDOWS\Tasks\AD3B06499184BA49.job

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "media upload"="C:\\DOCUME~1\\JEANMI~1\\APPLIC~1\\TWOMEM~1\\Hope trans.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "WARN POP TRUST LIES"="C:\\Documents and Settings\\All Users\\Application Data\\Camp Mess Warn Pop\\long poll.exe"

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-07-29 23:45:01
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections

    Aucune autre infection trouvée !

    [F:112][D:22]-> C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp
    [F:118][D:0]-> C:\DOCUME~1\JEANMI~1\Cookies
    [F:669][D:10]-> C:\DOCUME~1\JEANMI~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------\\ Fin du rapport a 23:46:39,95

    Je suis étonné. A la lecture des autres désinfections, j'avais pressenti que le problème venait du répertoire C:\DOCUME~1\JEANMI~1\APPLIC~1\TWOMEM~1\. J'avais mis tous les exe du répertoire en .0xe.virus pour éviter les problèmes mais les fenêtres se lancent toujours et il n'y a pas de nouveau .exe pour les remplacer.
    0
  7. Utilisateur anonyme
     
    l infection est en startup donc elle se relance a chaque démarrage

    dis lui adieu

    Relance Lop S&D

    * Choisis cette fois ci l'Option 2 (Suppression)
    * Ne ferme pas la fenêtre lors de la suppression !
    * Poste le rapport généré (C:\lopR.txt)
    0
  8. jiminat
     
    Ca a l'air d'avoir fonctionné.

    Mes mises en quarantaine ont été supprimées aussi.

    --------------------\\ Lop S&D 4.2.2-4 XP/Vista

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : Jean Michel ] [ "C:\Lop SD" ] [ Selection : 2 ]
    [ 29/07/2008 | 23:57:23,75 ] [ PC : JM2 ]
    [ MAJ : 25-07-2008 | 17:45 ]

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\long poll.exe
    Supprime! - C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\BinItchGreat.0xe.virus
    Supprime! - C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\HOPE TRANS.0XE.virus
    Supprime! - C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\hwmwgvog.0xe.virus
    Supprime! - C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1\SOAPTITLELITEMETA.0xe.virus
    Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
    Supprime! - C:\DOCUME~1\JEANMI~1\Cookies\jean_michel@32vegas[2].txt
    Supprime! - C:\DOCUME~1\JEANMI~1\Cookies\jean_michel@banner.32vegas[2].txt
    Supprime! - C:\WINDOWS\Tasks\AD3B06499184BA49.job
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    Supprime! - C:\DOCUME~1\JEANMI~1\APPLIC~1\twomem~1
    Supprime! - C:\Program Files\twomem~1
    Supprime! - C:\Program Files\Adverts
    Supprime! - C:\Program Files\Circle Developement

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

    --------------------\\ Listing des dossiers dans APPLIC~1

    [03/01/2007|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [17/11/2007|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [24/05/2008|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [24/05/2008|10:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [25/10/2007|18:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
    [07/12/2006|00:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [28/05/2007|21:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
    [07/12/2006|01:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    [03/01/2007|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [23/01/2007|19:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
    [25/10/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [31/05/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [21/11/2007|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [27/10/2007|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [17/11/2007|23:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
    [28/05/2007|17:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nikon
    [14/10/2007|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
    [25/10/2007|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [21/05/2007|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [07/12/2006|00:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
    [28/05/2007|21:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
    [03/01/2007|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [15/01/2007|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
    [22/07/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [24/11/2007|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [13/04/2007|12:22] C:\DOCUME~1\CHRISL~1\APPLIC~1\Adobe
    [07/12/2006|00:28] C:\DOCUME~1\CHRISL~1\APPLIC~1\desktop.ini
    [13/04/2007|12:23] C:\DOCUME~1\CHRISL~1\APPLIC~1\F-Secure
    [13/04/2007|12:23] C:\DOCUME~1\CHRISL~1\APPLIC~1\Google
    [13/04/2007|12:21] C:\DOCUME~1\CHRISL~1\APPLIC~1\Identities
    [13/04/2007|12:22] C:\DOCUME~1\CHRISL~1\APPLIC~1\ispnews
    [13/04/2007|12:24] C:\DOCUME~1\CHRISL~1\APPLIC~1\Macromedia
    [08/10/2007|10:52] C:\DOCUME~1\CHRISL~1\APPLIC~1\Microsoft
    [14/10/2007|11:09] C:\DOCUME~1\CHRISL~1\APPLIC~1\Nikon
    [08/10/2007|10:54] C:\DOCUME~1\CHRISL~1\APPLIC~1\Sony

    [07/12/2006|00:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [01/12/2007|11:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [26/07/2008|12:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\Adobe
    [18/11/2007|00:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\Ahead
    [02/01/2007|22:44] C:\DOCUME~1\JEANMI~1\APPLIC~1\Apple Computer
    [06/03/2007|21:58] C:\DOCUME~1\JEANMI~1\APPLIC~1\ArcSoft
    [27/10/2007|12:02] C:\DOCUME~1\JEANMI~1\APPLIC~1\Brother
    [23/01/2007|23:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\COWON
    [25/02/2008|21:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\DarkBls
    [07/12/2006|00:28] C:\DOCUME~1\JEANMI~1\APPLIC~1\desktop.ini
    [14/12/2006|20:04] C:\DOCUME~1\JEANMI~1\APPLIC~1\F-Secure
    [31/01/2007|13:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\FunWebProducts
    [07/01/2007|21:10] C:\DOCUME~1\JEANMI~1\APPLIC~1\Google
    [08/12/2006|20:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\Help
    [07/12/2006|00:40] C:\DOCUME~1\JEANMI~1\APPLIC~1\Identities
    [07/12/2006|01:17] C:\DOCUME~1\JEANMI~1\APPLIC~1\ispnews
    [24/03/2007|12:36] C:\DOCUME~1\JEANMI~1\APPLIC~1\Macromedia
    [24/07/2008|11:51] C:\DOCUME~1\JEANMI~1\APPLIC~1\Microsoft
    [10/11/2007|13:50] C:\DOCUME~1\JEANMI~1\APPLIC~1\MSN6
    [28/05/2007|21:40] C:\DOCUME~1\JEANMI~1\APPLIC~1\Nikon
    [07/12/2006|01:21] C:\DOCUME~1\JEANMI~1\APPLIC~1\PEX
    [24/03/2007|12:36] C:\DOCUME~1\JEANMI~1\APPLIC~1\PlayFirst
    [21/08/2007|22:53] C:\DOCUME~1\JEANMI~1\APPLIC~1\Real
    [07/11/2007|22:39] C:\DOCUME~1\JEANMI~1\APPLIC~1\ScanSoft
    [21/05/2007|17:12] C:\DOCUME~1\JEANMI~1\APPLIC~1\Sony
    [14/12/2006|20:07] C:\DOCUME~1\JEANMI~1\APPLIC~1\Sun
    [24/11/2007|12:26] C:\DOCUME~1\JEANMI~1\APPLIC~1\Windows Live Writer
    [26/04/2008|10:19] C:\DOCUME~1\JEANMI~1\APPLIC~1\WinRAR

    [05/01/2007|19:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [30/04/2007|19:13] C:\DOCUME~1\MARCOL~1\APPLIC~1\Adobe
    [07/12/2006|00:28] C:\DOCUME~1\MARCOL~1\APPLIC~1\desktop.ini
    [08/12/2006|19:59] C:\DOCUME~1\MARCOL~1\APPLIC~1\Identities
    [08/12/2006|20:00] C:\DOCUME~1\MARCOL~1\APPLIC~1\ispnews
    [30/04/2007|19:13] C:\DOCUME~1\MARCOL~1\APPLIC~1\Microsoft

    [07/12/2006|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [26/07/2008 18:23][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [29/07/2008 10:08][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
    [29/07/2008 23:03][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [09/01/2008|22:34] C:\Program Files\7-Zip
    [03/01/2007|23:02] C:\Program Files\Adobe
    [17/11/2007|18:54] C:\Program Files\Ahead
    [07/12/2006|01:15] C:\Program Files\AntivirusFirewall
    [24/05/2008|10:52] C:\Program Files\Apple Software Update
    [28/05/2007|17:50] C:\Program Files\ArcSoft
    [20/11/2007|12:51] C:\Program Files\AviSynth 2.5
    [24/05/2008|10:55] C:\Program Files\Bonjour
    [25/10/2007|18:53] C:\Program Files\Brother
    [07/12/2006|00:33] C:\Program Files\ComPlus Applications
    [21/04/2008|18:52] C:\Program Files\Conquete 2.0
    [26/04/2008|18:14] C:\Program Files\Cossacks
    [26/01/2007|19:00] C:\Program Files\Emoticons-plus.com
    [07/06/2008|11:16] C:\Program Files\eMule
    [24/05/2008|10:51] C:\Program Files\Fichiers communs
    [03/05/2007|18:53] C:\Program Files\Gamenext
    [02/02/2007|10:47] C:\Program Files\Google
    [27/12/2007|17:20] C:\Program Files\Handmark
    [23/01/2007|19:52] C:\Program Files\Hewlett-Packard
    [23/01/2007|19:52] C:\Program Files\HP
    [27/12/2007|17:13] C:\Program Files\Ihsv
    [18/02/2008|13:35] C:\Program Files\Illustrate
    [17/11/2007|18:52] C:\Program Files\IncrediMail
    [22/04/2008|19:11] C:\Program Files\InstallShield Installation Information
    [13/06/2008|00:01] C:\Program Files\Internet Explorer
    [03/03/2007|13:26] C:\Program Files\Inventel
    [18/06/2008|19:35] C:\Program Files\iPod
    [18/06/2008|19:35] C:\Program Files\iTunes
    [14/12/2006|20:03] C:\Program Files\Java
    [17/03/2008|23:34] C:\Program Files\JetAudio
    [18/02/2008|14:30] C:\Program Files\LeonMP3Encoder
    [09/02/2007|19:52] C:\Program Files\Logitech
    [19/12/2006|01:10] C:\Program Files\Messenger
    [24/07/2008|09:21] C:\Program Files\Messenger Plus! Live
    [10/05/2007|00:40] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [07/12/2006|00:35] C:\Program Files\microsoft frontpage
    [21/11/2007|23:10] C:\Program Files\Microsoft Office
    [11/11/2007|15:50] C:\Program Files\Microsoft SQL Server Compact Edition
    [21/11/2007|23:10] C:\Program Files\Microsoft.NET
    [18/12/2006|23:17] C:\Program Files\Movie Maker
    [07/12/2006|00:32] C:\Program Files\MSN
    [07/12/2006|00:32] C:\Program Files\MSN Gaming Zone
    [26/07/2008|12:44] C:\Program Files\MSN Messenger
    [24/01/2007|00:27] C:\Program Files\MSXML 4.0
    [17/11/2007|19:18] C:\Program Files\Nero
    [18/12/2006|23:14] C:\Program Files\NetMeeting
    [28/05/2007|17:56] C:\Program Files\Nikon
    [14/06/2007|00:04] C:\Program Files\Outlook Express
    [18/06/2008|19:34] C:\Program Files\QuickTime
    [25/10/2007|18:49] C:\Program Files\ScanSoft
    [07/12/2006|00:34] C:\Program Files\Services en ligne
    [25/02/2008|21:39] C:\Program Files\SHOE
    [15/09/2007|14:03] C:\Program Files\Sierra On-Line
    [21/05/2007|17:07] C:\Program Files\Sony
    [07/12/2006|00:40] C:\Program Files\Uninstall Information
    [16/03/2007|10:11] C:\Program Files\Wanadoo
    [22/04/2008|23:47] C:\Program Files\Windows Live
    [17/11/2007|18:58] C:\Program Files\Windows Live Toolbar
    [04/01/2007|00:54] C:\Program Files\Windows Media Connect 2
    [04/01/2007|01:07] C:\Program Files\Windows Media Player
    [18/12/2006|23:13] C:\Program Files\Windows NT
    [12/12/2006|20:03] C:\Program Files\WindowsUpdate
    [26/04/2008|10:19] C:\Program Files\WinRAR
    [07/12/2006|00:35] C:\Program Files\xerox
    [18/02/2008|13:42] C:\Program Files\Xing

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [03/01/2007|23:03] C:\Program Files\Fichiers communs\Adobe
    [17/11/2007|23:47] C:\Program Files\Fichiers communs\Ahead
    [24/05/2008|10:51] C:\Program Files\Fichiers communs\Apple
    [11/01/2008|00:19] C:\Program Files\Fichiers communs\Click2Learn
    [23/01/2007|23:33] C:\Program Files\Fichiers communs\COWON
    [21/11/2007|23:10] C:\Program Files\Fichiers communs\DESIGNER
    [23/01/2007|19:52] C:\Program Files\Fichiers communs\HP
    [25/10/2007|18:52] C:\Program Files\Fichiers communs\InstallShield
    [14/12/2006|20:01] C:\Program Files\Fichiers communs\Java
    [09/02/2007|19:53] C:\Program Files\Fichiers communs\Logitech
    [14/06/2008|00:42] C:\Program Files\Fichiers communs\Microsoft Shared
    [07/12/2006|00:33] C:\Program Files\Fichiers communs\MSSoap
    [28/05/2007|17:56] C:\Program Files\Fichiers communs\muvee Technologies
    [28/05/2007|21:40] C:\Program Files\Fichiers communs\Nikon
    [07/12/2006|00:29] C:\Program Files\Fichiers communs\ODBC
    [25/10/2007|18:49] C:\Program Files\Fichiers communs\ScanSoft Shared
    [07/12/2006|00:33] C:\Program Files\Fichiers communs\Services
    [07/12/2006|00:29] C:\Program Files\Fichiers communs\SpeechEngines
    [14/06/2007|00:04] C:\Program Files\Fichiers communs\System
    [11/11/2007|15:40] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [18/02/2008|13:42] C:\Program Files\Fichiers communs\Xing Shared

    --------------------\\ Process

    ( 53 Processus )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-07-30 00:00:11
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections

    Aucune autre infection trouvée !

    [F:112][D:22]-> C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp
    [F:117][D:0]-> C:\DOCUME~1\JEANMI~1\Cookies
    [F:861][D:10]-> C:\DOCUME~1\JEANMI~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------\\ Fin du rapport a 0:01:12,78

    Merci Chiquitine29 pour ton coup de main.

    Jimimi
    0
  9. Utilisateur anonyme
     
    pour completer

    Telecharge malwarebytes

    -> http://www.malwarebytes.org/mbam/program/mbam-setup.exe

    Tu l´instale; le programme va se mettre automatiquement a jour.

    Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression".

    Click maintenant sur l´onglet recherche et coche la case : "executer un examen complet".

    Puis click sur "rechercher".

    Laisse le scanner le pc...

    Si des elements on ete trouvés > click sur supprimer la selection.

    si il t´es demandé de redemarrer > click sur "yes".

    A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum.

    Copie et colle le rapport stp.

    PS : les rapport sont aussi rangé dans l onglet rapport/log
    0
    1. jiminat
       
      OK. La suite demain. Bonne nuit.
      0
  10. Utilisateur anonyme
     
    pas de soucis bonne nuit
    0