Probleme de pub

please help me Messages postés 2 Statut Membre -  
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   -
Bonjour,

A chaque fois que j'ouvre une page internet j'ai une page de pub qui vient s'afficher je ne trouve pas la cause de ce problème.
Que dois-je faire pour résoudre ce problème. Aidez moi svp !!!
Merci d'avance.
Configuration: Windows Vista
Firefox 2.0.0.16

4 réponses

  1. Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 324
     
    Salut,

    - Télécharge HijackThis V 2.02 (HijackThis Installer) :
    http://www.trendsecure.com/portal/en-US/threat_analytics/HJTInstall.exe

    - Fais un double-clic sur HJTInstall.exe afin de lancer l'installation

    - Clique sur Install ensuite sur I Accept

    - Clique sur Do a scan system and save log file

    - Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse.
    0
    1. please help me Messages postés 2 Statut Membre
       
      Merci beaucoup de m'aider :)

      voila le résultat :

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 22:08:54, on 26/08/2008
      Platform: Windows Vista SP1 (WinNT 6.00.1905)
      MSIE: Internet Explorer v7.00 (7.00.6001.18000)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\Dwm.exe
      C:\Windows\system32\taskeng.exe
      C:\Windows\Explorer.EXE
      C:\Program Files\Windows Defender\MSASCui.exe
      C:\Windows\RtHDVCpl.exe
      C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
      C:\Windows\ehome\ehtray.exe
      C:\Windows\ehome\ehmsas.exe
      C:\Program Files\Windows Media Player\wmpnscfg.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Windows\System32\mobsync.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Windows\system32\conime.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Windows\system32\SearchFilterHost.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O1 - Hosts: ::1 localhost
      O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
      O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
      O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
      O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
      O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
      O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
      O4 - HKLM\..\Run: [Apanel] C:\ACERSW\config\NewSetApanel.cmd
      O4 - HKLM\..\Run: [MSConfig] "C:\Windows\system32\msconfig.exe" /auto
      O4 - HKLM\..\Run: [Skytel] Skytel.exe
      O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
      O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
      O4 - HKCU\..\Run: [two city internet heck] "C:\ProgramData\gpl vga five.l0dlkzs"
      O4 - HKCU\..\Run: [Error mail] "C:\ProgramData\Upload Bags Bags.nbsyyrr"
      O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll
      O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
      O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
      O13 - Gopher Prefix:
      O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://team.mayetic.com/qp2.cab
      O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
      O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
      O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
      O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
      O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
      O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
      O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
      O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
      O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
      O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
      O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
      0
  2. Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 324
     
    ---> Télécharge Lop S&D sur ton Bureau
    https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
    ---> Double-clique dessus pour lancer l'installation
    ---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
    ---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
    ---> Patiente jusqu'à la fin du scan
    ---> Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

    Si tu as un problème pour utiliser Lop S&D, regarde dans le tutorial :
    http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431
    0
  3. noctambule28 Messages postés 25275 Date d'inscription   Statut Membre Dernière intervention   2 875
     
    le rapport est là
    *******************

    Voila le rapport:

    --------------------\\ Lop S&D 4.2.3-4 XP/Vista

    Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
    X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
    Phoenix - AwardBIOS v6.00PG
    USER : José Martins ( Administrator )
    BOOT : Normal boot

    "C:\Lop SD" ( MAJ : 23-08-2008|10:35 )
    Option : [1] ( 26/08/2008|22:16 )

    [ UAC => 1 ]

    --------------------\\ Listing des dossiers dans Local

    [05/09/2007|16:19] C:\Users\MARTIN~1\AppData\Local\Acer Arcade Live
    [30/01/2008|19:57] C:\Users\MARTIN~1\AppData\Local\Adobe
    [05/09/2007|15:58] C:\Users\MARTIN~1\AppData\Local\Application Data
    [26/08/2008|10:17] C:\Users\MARTIN~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [29/03/2008|19:46] C:\Users\MARTIN~1\AppData\Local\DVDivine
    [14/03/2008|19:59] C:\Users\MARTIN~1\AppData\Local\GDIPFONTCACHEV1.DAT
    [07/05/2008|11:45] C:\Users\MARTIN~1\AppData\Local\Google
    [05/09/2007|15:58] C:\Users\MARTIN~1\AppData\Local\Historique
    [26/08/2008|13:26] C:\Users\MARTIN~1\AppData\Local\IconCache.db
    [14/08/2008|22:57] C:\Users\MARTIN~1\AppData\Local\Microsoft
    [10/09/2007|21:05] C:\Users\MARTIN~1\AppData\Local\Microsoft Games
    [05/05/2008|21:21] C:\Users\MARTIN~1\AppData\Local\Microsoft Help
    [12/06/2008|12:08] C:\Users\MARTIN~1\AppData\Local\Mozilla
    [05/09/2007|16:00] C:\Users\MARTIN~1\AppData\Local\PowerCinema
    [21/04/2008|23:36] C:\Users\MARTIN~1\AppData\Local\PunkBuster
    [26/08/2008|22:15] C:\Users\MARTIN~1\AppData\Local\Temp
    [05/09/2007|15:58] C:\Users\MARTIN~1\AppData\Local\Temporary Internet Files
    [16/09/2007|19:10] C:\Users\MARTIN~1\AppData\Local\VirtualStore

    --------------------\\ Tâches planifiées dans C:\Windows\tasks

    [26/08/2008 19:26][--ah-----] C:\Windows\tasks\SA.DAT
    [26/08/2008 13:27][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    --------------------\\ Listing des dossiers dans C:\ProgramData

    [06/05/2007|21:22] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
    [20/03/2008|15:10] C:\ProgramData\Adobe
    [02/11/2006|15:02] C:\ProgramData\Application Data
    [07/01/2008|20:02] C:\ProgramData\Bluetooth
    [05/10/2007|19:16] C:\ProgramData\BOONTY
    [05/09/2007|17:45] C:\ProgramData\bore nurb setup.axr9t
    [05/09/2007|15:55] C:\ProgramData\Bureau
    [06/05/2007|21:34] C:\ProgramData\CyberLink
    [02/11/2006|15:02] C:\ProgramData\Desktop
    [02/11/2006|15:02] C:\ProgramData\Documents
    [26/08/2008|10:15] C:\ProgramData\does dog two city
    [17/02/2008|16:53] C:\ProgramData\eMule
    [07/09/2007|18:23] C:\ProgramData\EPSON
    [05/09/2007|19:20] C:\ProgramData\eSobi
    [05/09/2007|15:55] C:\ProgramData\Favoris
    [02/11/2006|15:02] C:\ProgramData\Favorites
    [07/05/2008|11:33] C:\ProgramData\Google
    [14/08/2008|15:43] C:\ProgramData\gpl vga five.l0dlkzs
    [27/05/2008|18:13] C:\ProgramData\Jugs Win Part.mh7o9cx
    [26/08/2008|19:28] C:\ProgramData\Kaspersky Lab
    [30/07/2008|19:17] C:\ProgramData\Kaspersky Lab Setup Files
    [23/12/2007|14:08] C:\ProgramData\Media Center Programs
    [05/09/2007|15:55] C:\ProgramData\Menu D‚marrer
    [18/04/2008|21:21] C:\ProgramData\Messenger Plus!
    [16/03/2008|16:56] C:\ProgramData\Microsoft
    [15/08/2008|01:11] C:\ProgramData\Microsoft Help
    [05/09/2007|15:55] C:\ProgramData\ModŠles
    [28/07/2008|12:58] C:\ProgramData\noun dumb locks.o4jkesv
    [19/10/2007|16:25] C:\ProgramData\SeekmoSA
    [02/11/2006|15:02] C:\ProgramData\Start Menu
    [05/12/2007|10:56] C:\ProgramData\Symantec
    [02/11/2006|15:02] C:\ProgramData\Templates
    [07/09/2007|18:28] C:\ProgramData\UDL
    [14/08/2008|23:22] C:\ProgramData\Upload Bags Bags.1u2skp1
    [04/05/2008|21:33] C:\ProgramData\Upload Bags Bags.2sygy4p
    [28/07/2008|12:58] C:\ProgramData\Upload Bags Bags.6y8tl0
    [27/05/2008|18:12] C:\ProgramData\Upload Bags Bags.acqu6
    [14/08/2008|15:43] C:\ProgramData\Upload Bags Bags.agtrol
    [21/06/2008|19:19] C:\ProgramData\Upload Bags Bags.fy8ga
    [26/08/2008|12:34] C:\ProgramData\Upload Bags Bags.lqviaa
    [26/08/2008|13:17] C:\ProgramData\Upload Bags Bags.nbsyyrr
    [05/09/2007|17:45] C:\ProgramData\Upload Bags Bags.nr5134t
    [14/08/2008|15:43] C:\ProgramData\Upload Bags Bags.ryqki
    [13/02/2008|21:32] C:\ProgramData\Upload Bags Bags.s9ndzp
    [26/08/2008|12:55] C:\ProgramData\Upload Bags Bags.z2me0o
    [06/02/2008|18:53] C:\ProgramData\Upload Bags Bags.zad1a
    [01/03/2008|17:06] C:\ProgramData\WLInstaller
    [05/09/2007|16:59] C:\ProgramData\Yahoo! Companion

    --------------------\\ Listing des dossiers dans C:\Program Files

    [06/05/2007|21:33] C:\Program Files\Acer Arcade Live
    [04/06/2007|04:44] C:\Program Files\Acer Inc
    [06/05/2007|21:22] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
    [25/12/2007|13:23] C:\Program Files\Activision
    [20/03/2008|15:10] C:\Program Files\Adobe
    [04/06/2007|04:39] C:\Program Files\ATI
    [04/06/2007|04:41] C:\Program Files\ATI Technologies
    [23/04/2008|18:53] C:\Program Files\Circle Developement
    [01/03/2008|17:08] C:\Program Files\Common Files
    [06/05/2007|21:30] C:\Program Files\CyberLink
    [27/10/2007|12:22] C:\Program Files\DAEMON Tools
    [18/06/2008|20:17] C:\Program Files\desktop.ini
    [23/12/2007|14:00] C:\Program Files\Electronic Arts
    [07/09/2007|18:27] C:\Program Files\epson
    [06/05/2007|21:34] C:\Program Files\eSobi
    [05/09/2007|15:55] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [07/05/2008|17:01] C:\Program Files\Google
    [07/01/2008|19:48] C:\Program Files\InstallShield Installation Information
    [18/06/2008|20:07] C:\Program Files\Internet Explorer
    [07/01/2008|19:48] C:\Program Files\IVT Corporation
    [06/08/2008|23:28] C:\Program Files\Java
    [30/07/2008|19:33] C:\Program Files\Kaspersky Lab
    [10/03/2008|23:33] C:\Program Files\Lavalys
    [28/02/2008|17:52] C:\Program Files\LimeWire
    [27/10/2007|12:28] C:\Program Files\MagicDisc
    [24/10/2007|10:56] C:\Program Files\MagicISO
    [23/04/2008|18:51] C:\Program Files\Messenger Plus! Live
    [05/09/2007|18:18] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [02/11/2006|14:37] C:\Program Files\Microsoft Games
    [14/03/2008|18:59] C:\Program Files\Microsoft Office
    [14/03/2008|19:00] C:\Program Files\Microsoft Visual Studio
    [14/03/2008|18:55] C:\Program Files\Microsoft Visual Studio 8
    [06/05/2007|21:22] C:\Program Files\Microsoft Works
    [06/05/2007|21:20] C:\Program Files\Microsoft.NET
    [18/06/2008|20:07] C:\Program Files\Movie Maker
    [27/07/2008|20:24] C:\Program Files\Mozilla Firefox
    [14/03/2008|19:00] C:\Program Files\MSBuild
    [05/09/2007|18:11] C:\Program Files\MSXML 4.0
    [06/09/2007|18:36] C:\Program Files\Neuf
    [06/05/2007|21:18] C:\Program Files\NewTech Infosystems
    [22/11/2007|16:04] C:\Program Files\OpenOffice.org 2.3
    [06/05/2007|21:05] C:\Program Files\Realtek
    [02/11/2006|14:37] C:\Program Files\Reference Assemblies
    [27/10/2007|12:37] C:\Program Files\Sports Interactive
    [26/08/2008|22:08] C:\Program Files\Trend Micro
    [02/11/2006|15:01] C:\Program Files\Uninstall Information
    [10/09/2007|21:09] C:\Program Files\uTorrent
    [12/09/2007|10:40] C:\Program Files\VideoLAN
    [18/06/2008|20:07] C:\Program Files\Windows Calendar
    [18/06/2008|20:07] C:\Program Files\Windows Collaboration
    [18/06/2008|20:07] C:\Program Files\Windows Defender
    [18/06/2008|20:07] C:\Program Files\Windows Journal
    [01/03/2008|17:07] C:\Program Files\Windows Live
    [15/08/2008|01:06] C:\Program Files\Windows Mail
    [18/06/2008|20:07] C:\Program Files\Windows Media Player
    [05/09/2007|15:55] C:\Program Files\Windows NT
    [18/06/2008|20:07] C:\Program Files\Windows Photo Gallery
    [18/06/2008|20:07] C:\Program Files\Windows Sidebar
    [05/10/2007|18:58] C:\Program Files\WinRAR
    [16/10/2007|16:19] C:\Program Files\XviD
    [05/09/2007|15:59] C:\Program Files\Yahoo!
    [27/10/2007|12:39] C:\Program Files\Zero G Registry

    --------------------\\ Listing des dossiers dans C:\Program Files\Common Files

    [20/03/2008|15:11] C:\Program Files\Common Files\Adobe
    [05/10/2007|19:16] C:\Program Files\Common Files\BOONTY Shared
    [06/05/2007|21:20] C:\Program Files\Common Files\DESIGNER
    [12/09/2007|18:40] C:\Program Files\Common Files\InstallShield
    [22/11/2007|16:02] C:\Program Files\Common Files\Java
    [06/05/2007|21:17] C:\Program Files\Common Files\LightScribe
    [14/03/2008|19:00] C:\Program Files\Common Files\microsoft shared
    [06/05/2007|21:17] C:\Program Files\Common Files\muvee Technologies
    [06/05/2007|21:18] C:\Program Files\Common Files\NewTech Infosystems
    [09/09/2007|10:15] C:\Program Files\Common Files\PAC7311
    [02/11/2006|13:18] C:\Program Files\Common Files\Services
    [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
    [05/12/2007|10:58] C:\Program Files\Common Files\Symantec Shared
    [18/06/2008|20:07] C:\Program Files\Common Files\System
    [27/10/2007|12:21] C:\Program Files\Common Files\WhenU
    [01/03/2008|17:08] C:\Program Files\Common Files\WindowsLiveInstaller

    --------------------\\ Process

    ( 58 Processus )

    iexplore.exe ~ [PID:3448] ~ [Threads:6]

    --------------------\\ Recherche avec S_Lop

    C:\ProgramData\bore nurb setup.axr9t
    C:\ProgramData\Upload Bags Bags.acqu6
    C:\ProgramData\Upload Bags Bags.fy8ga
    C:\ProgramData\Upload Bags Bags.ryqki
    C:\ProgramData\Upload Bags Bags.zad1a
    C:\ProgramData\Upload Bags Bags.6y8tl0
    C:\ProgramData\Upload Bags Bags.agtrol
    C:\ProgramData\Upload Bags Bags.lqviaa
    C:\ProgramData\Upload Bags Bags.s9ndzp
    C:\ProgramData\Upload Bags Bags.z2me0o
    C:\ProgramData\gpl vga five.l0dlkzs
    C:\ProgramData\Jugs Win Part.mh7o9cx
    C:\ProgramData\noun dumb locks.o4jkesv
    C:\ProgramData\Upload Bags Bags.1u2skp1
    C:\ProgramData\Upload Bags Bags.2sygy4p
    C:\ProgramData\Upload Bags Bags.nbsyyrr
    C:\ProgramData\Upload Bags Bags.nr5134t

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\ProgramData\does dog two city
    C:\ProgramData\does dog two city\meal that.exe
    C:\Users\MARTIN~1\AppData\Local\Temp\msgpl_8dfa.tmp
    C:\Program Files\Circle Developement
    C:\Users\MARTIN~1\AppData\Roaming\MICROS~1\Windows\Cookies\martins_michael@adopt.euroclick[2].txt

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Error mail"="\"C:\\ProgramData\\Upload Bags Bags.nbsyyrr\""
    "two city internet heck"="\"C:\\ProgramData\\gpl vga five.l0dlkzs\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-08-26 22:16:31
    Windows 6.0.6001 Service Pack 1 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 46

    --------------------\\ Recherche d'autres infections

    C:\Windows\Pack.epk
    C:\Windows\System32\nvs2.inf
    [b]==> EGDACCESS <==/b

    --------------------\\ Cracks & Keygens ..

    C:\Users\MARTIN~1\AppData\Roaming\Microsoft\Windows\Recent\Kaspersky Internet Security 7.0 Latest Version Crack Clean Serial Keygen [mininova].lnk
    C:\Users\MARTIN~1\AppData\Roaming\Microsoft\Windows\Recent\Kaspersky Internet Security 7.0 Latest Version Crack Clean with Keygen with Serial [mininova].lnk
    C:\Users\MARTIN~1\AppData\Roaming\uTorrent\Crysis.Cracks+Key-SAVED.torrent
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Key
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinVista
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinXP
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\SAVED nfo.txt
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinVista\Bin32
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinVista\Bin64
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinVista\Bin32\Crysis.exe
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinVista\Bin64\Crysis.exe
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinXP\Crysis.exe
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Cracks\Crack for WinXP\WinXp nfo.txt
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Key\Crysis-Key.exe
    C:\Users\MARTIN~1\Documents\My Games\Crysis\Crysis.Cracks+Key-SAVED\Crysis-Key\SAVED-nfo.txt
    C:\Users\MARTIN~1\Downloads\Crysis.Cracks+Key-SAVED_[mininova].torrent

    [F:988][D:23]-> C:\Users\MARTIN~1\AppData\Local\Temp
    [F:48][D:1]-> C:\Users\MARTIN~1\AppData\Roaming\MICROS~1\Windows\Cookies
    [F:8][D:4]-> C:\Users\MARTIN~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
    [F:38][D:4]-> C:\$Recycle.Bin

    --------------------\\ Fin du rapport a 22:17:54
    [ UAC => 1 ]
    0
  4. Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 324
     
    Relance Lop S&D, fais l'option 2 et poste le rapport.
    0