CID à gogo systhéme surper lent + ...
Karmann69
Messages postés
6
Statut
Membre
-
karmann69 -
karmann69 -
Bonjour,
je vous contacte car je ne sais plus quoi faire !
j'ai en fait trois problème
1 j'ai constamment une multitude de page pub CID
2 mon ordinateur est de + en + lent
3 il se plante 5 …10 / jour
HELP ME
J’ai déjà parcouru les forums mais son succès
Alors j’utilise Mozilla firefox comme explorateur
J’ai fait tourner mon anti virus Mcafee + CCleaner
J’ai installé hijackthis, j’ai un rapport mais que dois je en faire ???
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:02:26, on 25/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Quentin\Bureau\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Bat Wave Base Dale] C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\mix camp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Base road long save] C:\Documents and Settings\All Users\Application Data\File dvd base road\knob 4.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe AcPro7_0_5 -reboot 1
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{50C9827A-D1FF-4094-8754-54351F378EB2}: NameServer = 164.15.59.200
O17 - HKLM\System\CCS\Services\Tcpip\..\{53B31CEC-061B-4AE1-8891-447FEB6C19EE}: NameServer = 164.15.59.200,164.15.125.1
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
je vous contacte car je ne sais plus quoi faire !
j'ai en fait trois problème
1 j'ai constamment une multitude de page pub CID
2 mon ordinateur est de + en + lent
3 il se plante 5 …10 / jour
HELP ME
J’ai déjà parcouru les forums mais son succès
Alors j’utilise Mozilla firefox comme explorateur
J’ai fait tourner mon anti virus Mcafee + CCleaner
J’ai installé hijackthis, j’ai un rapport mais que dois je en faire ???
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:02:26, on 25/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Quentin\Bureau\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Bat Wave Base Dale] C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\mix camp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Base road long save] C:\Documents and Settings\All Users\Application Data\File dvd base road\knob 4.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe AcPro7_0_5 -reboot 1
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{50C9827A-D1FF-4094-8754-54351F378EB2}: NameServer = 164.15.59.200
O17 - HKLM\System\CCS\Services\Tcpip\..\{53B31CEC-061B-4AE1-8891-447FEB6C19EE}: NameServer = 164.15.59.200,164.15.125.1
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
A voir également:
- CID à gogo systhéme surper lent + ...
- Pc lent - Guide
- Mon mac est lent comment le nettoyer - Guide
- Mon pc est trop lent et se bloque - Guide
- Nettoyer ordinateur lent gratuit - Guide
- Samy vous donne accès au fichier partagé le cid. que pouvez-vous faire avec ce document en ligne ? - Forum Virus
12 réponses
salut sorry impossible de continuer avant aujourd'hui
voilà j'ai fait ce que tu as dit
voici ce que j'ai dans le bloc notes
C:\fixwareout\FindT\nircmd.exe Files missing...
Quentin
voilà j'ai fait ce que tu as dit
voici ce que j'ai dans le bloc notes
C:\fixwareout\FindT\nircmd.exe Files missing...
Quentin
Bonsoir,
Pour ce qui est des pubs c'est super !! Le problème est résolu encore un grand merci !
Mais mon ordinateur se plante régulièrement !
Je n'arrive pas a cerner le problème, il se bloque (plante) et c'est assez aléatoire un jour 10 fois le lendemain pas....etc
Quentin
Pour ce qui est des pubs c'est super !! Le problème est résolu encore un grand merci !
Mais mon ordinateur se plante régulièrement !
Je n'arrive pas a cerner le problème, il se bloque (plante) et c'est assez aléatoire un jour 10 fois le lendemain pas....etc
Quentin
Salut !!
commence par faire ceci stp :
▶ Télécharger et enregistrer lopSD sur le Bureau
(C est le numéro 4 en bas de la page)
▶ Double-clic Lop S&D
▶ Faire l'installation
▶ Fermer toutes les applications
▶ Le lancer par un double-clic sur le raccourci qui est sur le bureau
Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur
▶ Taper F pour français , puis presser entrée
▶ Taper 1
▶ Presser Entrée
▶ Le PC va redémarrer
Note= si l'antivirus annonce une infection dans TEMP , l'ignorer
▶ Attendre l'apparition du rapport
▶ Copier le rapport et le coller dans la réponse
le rapport se trouve aussi à C:\lopR
commence par faire ceci stp :
▶ Télécharger et enregistrer lopSD sur le Bureau
(C est le numéro 4 en bas de la page)
▶ Double-clic Lop S&D
▶ Faire l'installation
▶ Fermer toutes les applications
▶ Le lancer par un double-clic sur le raccourci qui est sur le bureau
Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur
▶ Taper F pour français , puis presser entrée
▶ Taper 1
▶ Presser Entrée
▶ Le PC va redémarrer
Note= si l'antivirus annonce une infection dans TEMP , l'ignorer
▶ Attendre l'apparition du rapport
▶ Copier le rapport et le coller dans la réponse
le rapport se trouve aussi à C:\lopR
super rapide !!! coool
voilà le rapport
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Quentin ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 53 Go Free : 14 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total : 244 Go Free : 236 Go
G:\ (Local Disk) - NTFS - Total : 37 Go Free : 3 Go
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( jeu. 25/09/2008|23:06 )
--------------------\\ Listing des dossiers dans APPLIC~1
[25/04/2008|00:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Corel
[10/11/2006|10:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/04/2008|00:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[23/03/2007|07:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/11/2006|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[17/11/2006|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[10/11/2006|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/01/2007|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[23/07/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
[13/02/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[31/03/2008|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
[13/02/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/08/2008|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[25/04/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/11/2006|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[28/04/2008|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Quark
[20/03/2007|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\toolmathidlecool
[10/11/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/11/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2006|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/03/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[19/03/2007|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/11/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/11/2006|10:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[31/07/2008|09:29] C:\DOCUME~1\Quentin\APPLIC~1\Adobe
[19/03/2007|19:59] C:\DOCUME~1\Quentin\APPLIC~1\AdobeUM
[21/01/2007|22:06] C:\DOCUME~1\Quentin\APPLIC~1\Ahead
[15/11/2006|17:01] C:\DOCUME~1\Quentin\APPLIC~1\Apple Computer
[25/04/2008|12:54] C:\DOCUME~1\Quentin\APPLIC~1\Auslogics
[15/11/2006|08:39] C:\DOCUME~1\Quentin\APPLIC~1\Corel
[16/11/2006|11:02] C:\DOCUME~1\Quentin\APPLIC~1\Help
[10/11/2006|10:44] C:\DOCUME~1\Quentin\APPLIC~1\Identities
[19/03/2007|20:24] C:\DOCUME~1\Quentin\APPLIC~1\Lavasoft
[10/11/2006|12:51] C:\DOCUME~1\Quentin\APPLIC~1\Leadertech
[11/11/2006|23:22] C:\DOCUME~1\Quentin\APPLIC~1\Macromedia
[04/02/2007|18:58] C:\DOCUME~1\Quentin\APPLIC~1\Media Player Classic
[28/07/2008|17:04] C:\DOCUME~1\Quentin\APPLIC~1\Microsoft
[04/08/2008|22:05] C:\DOCUME~1\Quentin\APPLIC~1\Mozilla
[04/08/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\PEAK DART PILE
[06/02/2007|19:30] C:\DOCUME~1\Quentin\APPLIC~1\Quark
[05/04/2007|17:12] C:\DOCUME~1\Quentin\APPLIC~1\Real
[25/11/2007|20:58] C:\DOCUME~1\Quentin\APPLIC~1\Screenshot Sender
[11/11/2006|13:57] C:\DOCUME~1\Quentin\APPLIC~1\Sun
[23/05/2008|08:27] C:\DOCUME~1\Quentin\APPLIC~1\Teleca
[10/11/2006|12:52] C:\DOCUME~1\Quentin\APPLIC~1\TuneUp Software
[24/09/2007|18:22] C:\DOCUME~1\Quentin\APPLIC~1\Ulead Systems
[25/09/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\WinRAR
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/09/2008 23:00][--ah-----] C:\WINDOWS\tasks\AE76081F9189B8DF.job
[19/09/2008 17:24][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[25/09/2008 21:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( AE76081F9189B8DF.job )=( c:\docume~1\quentin\applic~1\peakda~1\procmixanti.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[11/11/2006|11:11] C:\Program Files\Adobe
[25/04/2008|12:53] C:\Program Files\Auslogics
[25/04/2008|12:13] C:\Program Files\CCleaner
[10/11/2006|10:37] C:\Program Files\ComPlus Applications
[15/11/2006|08:43] C:\Program Files\Corel
[11/11/2006|11:12] C:\Program Files\directx
[10/11/2006|11:13] C:\Program Files\DVD Decrypter
[18/01/2007|23:25] C:\Program Files\DVD Shrink
[01/02/2007|23:25] C:\Program Files\eBay
[10/11/2006|12:51] C:\Program Files\Executive Software
[23/05/2008|08:23] C:\Program Files\Fichiers communs
[25/09/2007|18:31] C:\Program Files\InstallShield Installation Information
[14/08/2008|16:09] C:\Program Files\Internet Explorer
[10/11/2006|12:44] C:\Program Files\iPod
[10/11/2006|12:44] C:\Program Files\iTunes
[23/07/2008|10:05] C:\Program Files\Java
[10/11/2006|12:53] C:\Program Files\K-Lite Codec Pack
[13/02/2008|12:33] C:\Program Files\Lavasoft
[09/08/2008|08:27] C:\Program Files\LimeWire
[13/02/2008|13:10] C:\Program Files\McAfee
[14/08/2008|16:09] C:\Program Files\Messenger
[12/08/2008|20:36] C:\Program Files\Messenger Plus! Live
[10/11/2006|10:40] C:\Program Files\microsoft frontpage
[10/11/2006|13:00] C:\Program Files\Microsoft Office
[19/08/2008|16:01] C:\Program Files\Microsoft Silverlight
[10/11/2006|13:14] C:\Program Files\Movie Maker
[25/09/2008|23:04] C:\Program Files\Mozilla Firefox
[23/05/2008|23:47] C:\Program Files\MP3 Player Utilities 4.03
[25/04/2008|04:13] C:\Program Files\MSBuild
[10/11/2006|10:36] C:\Program Files\MSN
[10/11/2006|10:37] C:\Program Files\MSN Gaming Zone
[14/01/2007|10:03] C:\Program Files\MSXML 4.0
[25/04/2008|04:15] C:\Program Files\MSXML 6.0
[23/05/2008|12:54] C:\Program Files\MyMPxPlayer.org
[10/11/2006|12:36] C:\Program Files\Nero
[10/11/2006|10:38] C:\Program Files\NetMeeting
[13/02/2008|12:31] C:\Program Files\Network Associates
[10/11/2006|10:37] C:\Program Files\Online Services
[21/06/2007|03:01] C:\Program Files\Outlook Express
[23/07/2008|10:03] C:\Program Files\PEAK DART PILE
[10/11/2006|10:58] C:\Program Files\PowerQuest
[28/04/2008|22:41] C:\Program Files\Quark
[10/11/2006|12:44] C:\Program Files\QuickTime
[25/05/2008|20:25] C:\Program Files\RAR Password Cracker
[16/11/2006|11:02] C:\Program Files\Real
[25/04/2008|04:08] C:\Program Files\Reference Assemblies
[10/11/2006|10:39] C:\Program Files\Services en ligne
[11/11/2006|11:13] C:\Program Files\TCWorks
[10/11/2006|12:52] C:\Program Files\TuneUp Utilities 2006
[16/11/2006|11:00] C:\Program Files\Ulead Systems
[10/11/2006|10:44] C:\Program Files\Uninstall Information
[09/03/2008|08:50] C:\Program Files\Windows Live
[25/04/2008|04:18] C:\Program Files\Windows Media Connect 2
[25/04/2008|04:18] C:\Program Files\Windows Media Player
[10/11/2006|10:37] C:\Program Files\Windows NT
[10/11/2006|10:39] C:\Program Files\WindowsUpdate
[25/09/2008|21:59] C:\Program Files\WinRAR
[10/11/2006|10:40] C:\Program Files\xerox
[19/03/2007|22:10] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[11/11/2006|11:12] C:\Program Files\Fichiers communs\Adobe
[10/11/2006|12:49] C:\Program Files\Fichiers communs\Adobe Systems Shared
[10/11/2006|12:36] C:\Program Files\Fichiers communs\Ahead
[12/01/2007|20:54] C:\Program Files\Fichiers communs\Cisco Systems
[10/11/2006|13:00] C:\Program Files\Fichiers communs\Designer
[10/11/2006|12:38] C:\Program Files\Fichiers communs\InstallShield
[11/11/2006|13:56] C:\Program Files\Fichiers communs\Java
[13/02/2008|13:10] C:\Program Files\Fichiers communs\McAfee
[25/04/2008|04:15] C:\Program Files\Fichiers communs\Microsoft Shared
[10/11/2006|10:38] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|11:31] C:\Program Files\Fichiers communs\ODBC
[16/11/2006|11:08] C:\Program Files\Fichiers communs\Real
[10/11/2006|10:38] C:\Program Files\Fichiers communs\Services
[10/11/2006|11:31] C:\Program Files\Fichiers communs\SpeechEngines
[21/06/2007|03:01] C:\Program Files\Fichiers communs\System
[09/08/2008|07:51] C:\Program Files\Fichiers communs\Teleca Shared
[16/11/2006|11:00] C:\Program Files\Fichiers communs\Ulead Systems
[09/03/2008|08:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/02/2008|12:31] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/11/2006|11:07] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 45 Processes )
IEXPLORE.EXE ~ [PID:376]
IEXPLORE.EXE ~ [PID:2964]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road\knob 4.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\mix camp.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\1barbfastenc.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\cxvdjekl.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\ekorhnmg.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\mntscjvp.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\rfznsdre.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\trbxbsws.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\vdbzejex.exe
C:\Program Files\peakda~1
C:\DOCUME~1\Quentin\Cookies\quentin@www.adserver5[1].txt
C:\DOCUME~1\Quentin\Cookies\quentin@32vegas[1].txt
C:\DOCUME~1\Quentin\Cookies\quentin@banner.32vegas[2].txt
C:\DOCUME~1\Quentin\Cookies\quentin@www.lop[2].txt
C:\WINDOWS\Tasks\AE76081F9189B8DF.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Base road long save"="C:\\Documents and Settings\\All Users\\Application Data\\File dvd base road\\knob 4.exe"
"Bat Wave Base Dale"="C:\\Documents and Settings\\All Users\\Application Data\\Link Axis Bat Wave\\mix camp.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-25 23:08:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 113
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:60][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\Temp
[F:57][D:0]-> C:\DOCUME~1\Quentin\Cookies
[F:1315][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - jeu. 25/09/2008|23:09 - Option : [1]
--------------------\\ Fin du rapport a 23:09:38
voilà le rapport
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Quentin ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 53 Go Free : 14 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total : 244 Go Free : 236 Go
G:\ (Local Disk) - NTFS - Total : 37 Go Free : 3 Go
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( jeu. 25/09/2008|23:06 )
--------------------\\ Listing des dossiers dans APPLIC~1
[25/04/2008|00:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Corel
[10/11/2006|10:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/04/2008|00:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[23/03/2007|07:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/11/2006|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[17/11/2006|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[10/11/2006|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/01/2007|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[23/07/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
[13/02/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[31/03/2008|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
[13/02/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/08/2008|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[25/04/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/11/2006|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[28/04/2008|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Quark
[20/03/2007|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\toolmathidlecool
[10/11/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/11/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2006|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/03/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[19/03/2007|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/11/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/11/2006|10:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[31/07/2008|09:29] C:\DOCUME~1\Quentin\APPLIC~1\Adobe
[19/03/2007|19:59] C:\DOCUME~1\Quentin\APPLIC~1\AdobeUM
[21/01/2007|22:06] C:\DOCUME~1\Quentin\APPLIC~1\Ahead
[15/11/2006|17:01] C:\DOCUME~1\Quentin\APPLIC~1\Apple Computer
[25/04/2008|12:54] C:\DOCUME~1\Quentin\APPLIC~1\Auslogics
[15/11/2006|08:39] C:\DOCUME~1\Quentin\APPLIC~1\Corel
[16/11/2006|11:02] C:\DOCUME~1\Quentin\APPLIC~1\Help
[10/11/2006|10:44] C:\DOCUME~1\Quentin\APPLIC~1\Identities
[19/03/2007|20:24] C:\DOCUME~1\Quentin\APPLIC~1\Lavasoft
[10/11/2006|12:51] C:\DOCUME~1\Quentin\APPLIC~1\Leadertech
[11/11/2006|23:22] C:\DOCUME~1\Quentin\APPLIC~1\Macromedia
[04/02/2007|18:58] C:\DOCUME~1\Quentin\APPLIC~1\Media Player Classic
[28/07/2008|17:04] C:\DOCUME~1\Quentin\APPLIC~1\Microsoft
[04/08/2008|22:05] C:\DOCUME~1\Quentin\APPLIC~1\Mozilla
[04/08/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\PEAK DART PILE
[06/02/2007|19:30] C:\DOCUME~1\Quentin\APPLIC~1\Quark
[05/04/2007|17:12] C:\DOCUME~1\Quentin\APPLIC~1\Real
[25/11/2007|20:58] C:\DOCUME~1\Quentin\APPLIC~1\Screenshot Sender
[11/11/2006|13:57] C:\DOCUME~1\Quentin\APPLIC~1\Sun
[23/05/2008|08:27] C:\DOCUME~1\Quentin\APPLIC~1\Teleca
[10/11/2006|12:52] C:\DOCUME~1\Quentin\APPLIC~1\TuneUp Software
[24/09/2007|18:22] C:\DOCUME~1\Quentin\APPLIC~1\Ulead Systems
[25/09/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\WinRAR
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/09/2008 23:00][--ah-----] C:\WINDOWS\tasks\AE76081F9189B8DF.job
[19/09/2008 17:24][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[25/09/2008 21:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( AE76081F9189B8DF.job )=( c:\docume~1\quentin\applic~1\peakda~1\procmixanti.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[11/11/2006|11:11] C:\Program Files\Adobe
[25/04/2008|12:53] C:\Program Files\Auslogics
[25/04/2008|12:13] C:\Program Files\CCleaner
[10/11/2006|10:37] C:\Program Files\ComPlus Applications
[15/11/2006|08:43] C:\Program Files\Corel
[11/11/2006|11:12] C:\Program Files\directx
[10/11/2006|11:13] C:\Program Files\DVD Decrypter
[18/01/2007|23:25] C:\Program Files\DVD Shrink
[01/02/2007|23:25] C:\Program Files\eBay
[10/11/2006|12:51] C:\Program Files\Executive Software
[23/05/2008|08:23] C:\Program Files\Fichiers communs
[25/09/2007|18:31] C:\Program Files\InstallShield Installation Information
[14/08/2008|16:09] C:\Program Files\Internet Explorer
[10/11/2006|12:44] C:\Program Files\iPod
[10/11/2006|12:44] C:\Program Files\iTunes
[23/07/2008|10:05] C:\Program Files\Java
[10/11/2006|12:53] C:\Program Files\K-Lite Codec Pack
[13/02/2008|12:33] C:\Program Files\Lavasoft
[09/08/2008|08:27] C:\Program Files\LimeWire
[13/02/2008|13:10] C:\Program Files\McAfee
[14/08/2008|16:09] C:\Program Files\Messenger
[12/08/2008|20:36] C:\Program Files\Messenger Plus! Live
[10/11/2006|10:40] C:\Program Files\microsoft frontpage
[10/11/2006|13:00] C:\Program Files\Microsoft Office
[19/08/2008|16:01] C:\Program Files\Microsoft Silverlight
[10/11/2006|13:14] C:\Program Files\Movie Maker
[25/09/2008|23:04] C:\Program Files\Mozilla Firefox
[23/05/2008|23:47] C:\Program Files\MP3 Player Utilities 4.03
[25/04/2008|04:13] C:\Program Files\MSBuild
[10/11/2006|10:36] C:\Program Files\MSN
[10/11/2006|10:37] C:\Program Files\MSN Gaming Zone
[14/01/2007|10:03] C:\Program Files\MSXML 4.0
[25/04/2008|04:15] C:\Program Files\MSXML 6.0
[23/05/2008|12:54] C:\Program Files\MyMPxPlayer.org
[10/11/2006|12:36] C:\Program Files\Nero
[10/11/2006|10:38] C:\Program Files\NetMeeting
[13/02/2008|12:31] C:\Program Files\Network Associates
[10/11/2006|10:37] C:\Program Files\Online Services
[21/06/2007|03:01] C:\Program Files\Outlook Express
[23/07/2008|10:03] C:\Program Files\PEAK DART PILE
[10/11/2006|10:58] C:\Program Files\PowerQuest
[28/04/2008|22:41] C:\Program Files\Quark
[10/11/2006|12:44] C:\Program Files\QuickTime
[25/05/2008|20:25] C:\Program Files\RAR Password Cracker
[16/11/2006|11:02] C:\Program Files\Real
[25/04/2008|04:08] C:\Program Files\Reference Assemblies
[10/11/2006|10:39] C:\Program Files\Services en ligne
[11/11/2006|11:13] C:\Program Files\TCWorks
[10/11/2006|12:52] C:\Program Files\TuneUp Utilities 2006
[16/11/2006|11:00] C:\Program Files\Ulead Systems
[10/11/2006|10:44] C:\Program Files\Uninstall Information
[09/03/2008|08:50] C:\Program Files\Windows Live
[25/04/2008|04:18] C:\Program Files\Windows Media Connect 2
[25/04/2008|04:18] C:\Program Files\Windows Media Player
[10/11/2006|10:37] C:\Program Files\Windows NT
[10/11/2006|10:39] C:\Program Files\WindowsUpdate
[25/09/2008|21:59] C:\Program Files\WinRAR
[10/11/2006|10:40] C:\Program Files\xerox
[19/03/2007|22:10] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[11/11/2006|11:12] C:\Program Files\Fichiers communs\Adobe
[10/11/2006|12:49] C:\Program Files\Fichiers communs\Adobe Systems Shared
[10/11/2006|12:36] C:\Program Files\Fichiers communs\Ahead
[12/01/2007|20:54] C:\Program Files\Fichiers communs\Cisco Systems
[10/11/2006|13:00] C:\Program Files\Fichiers communs\Designer
[10/11/2006|12:38] C:\Program Files\Fichiers communs\InstallShield
[11/11/2006|13:56] C:\Program Files\Fichiers communs\Java
[13/02/2008|13:10] C:\Program Files\Fichiers communs\McAfee
[25/04/2008|04:15] C:\Program Files\Fichiers communs\Microsoft Shared
[10/11/2006|10:38] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|11:31] C:\Program Files\Fichiers communs\ODBC
[16/11/2006|11:08] C:\Program Files\Fichiers communs\Real
[10/11/2006|10:38] C:\Program Files\Fichiers communs\Services
[10/11/2006|11:31] C:\Program Files\Fichiers communs\SpeechEngines
[21/06/2007|03:01] C:\Program Files\Fichiers communs\System
[09/08/2008|07:51] C:\Program Files\Fichiers communs\Teleca Shared
[16/11/2006|11:00] C:\Program Files\Fichiers communs\Ulead Systems
[09/03/2008|08:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/02/2008|12:31] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/11/2006|11:07] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 45 Processes )
IEXPLORE.EXE ~ [PID:376]
IEXPLORE.EXE ~ [PID:2964]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road\knob 4.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\mix camp.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\1barbfastenc.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\cxvdjekl.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\ekorhnmg.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\mntscjvp.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\rfznsdre.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\trbxbsws.exe
C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\vdbzejex.exe
C:\Program Files\peakda~1
C:\DOCUME~1\Quentin\Cookies\quentin@www.adserver5[1].txt
C:\DOCUME~1\Quentin\Cookies\quentin@32vegas[1].txt
C:\DOCUME~1\Quentin\Cookies\quentin@banner.32vegas[2].txt
C:\DOCUME~1\Quentin\Cookies\quentin@www.lop[2].txt
C:\WINDOWS\Tasks\AE76081F9189B8DF.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Base road long save"="C:\\Documents and Settings\\All Users\\Application Data\\File dvd base road\\knob 4.exe"
"Bat Wave Base Dale"="C:\\Documents and Settings\\All Users\\Application Data\\Link Axis Bat Wave\\mix camp.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-25 23:08:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 113
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:60][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\Temp
[F:57][D:0]-> C:\DOCUME~1\Quentin\Cookies
[F:1315][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - jeu. 25/09/2008|23:09 - Option : [1]
--------------------\\ Fin du rapport a 23:09:38
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
ok maintenant :
▶ Relance Lop S&D
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
ensuite :
▶ Télécharger SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
(c est le numéro 8 en bas de la page)
▶ Double cliquer sur SDFix.exe et choisir Install pour l'extraire dans un dossier dédié sur ton disque C:.
/!\ Démarre en mode sans échec : après le bip et avant le logo windows tapoter sur la touche F8 (ou F5): menu M.S.E..
▶ Choisir son compte, pas celui de l'Administrateur ou autre.
Dérouler la liste des instructions ci-dessous :
• Ouvrir le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuyer sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuyer sur une touche pour redémarrer le PC.
• Le système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuyer sur une touche pour finir l'exécution du script et charger les icônes du Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copier/coller le contenu du fichier Report.txt dans la prochaine réponse sur le forum
▶ Relance Lop S&D
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
ensuite :
▶ Télécharger SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
(c est le numéro 8 en bas de la page)
▶ Double cliquer sur SDFix.exe et choisir Install pour l'extraire dans un dossier dédié sur ton disque C:.
/!\ Démarre en mode sans échec : après le bip et avant le logo windows tapoter sur la touche F8 (ou F5): menu M.S.E..
▶ Choisir son compte, pas celui de l'Administrateur ou autre.
Dérouler la liste des instructions ci-dessous :
• Ouvrir le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuyer sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuyer sur une touche pour redémarrer le PC.
• Le système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuyer sur une touche pour finir l'exécution du script et charger les icônes du Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copier/coller le contenu du fichier Report.txt dans la prochaine réponse sur le forum
voici le rapport de Lop s&D je continue avec SDfix
-------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Quentin ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 53 Go Free : 14 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total : 244 Go Free : 236 Go
G:\ (Local Disk) - NTFS - Total : 37 Go Free : 3 Go
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( jeu. 25/09/2008|23:15 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road\knob 4.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\mix camp.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\1barbfastenc.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\cxvdjekl.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\ekorhnmg.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\mntscjvp.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\rfznsdre.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\trbxbsws.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\vdbzejex.exe
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@32vegas[1].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@www.lop[2].txt
Supprime! - C:\WINDOWS\Tasks\AE76081F9189B8DF.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1
Supprime! - C:\Program Files\peakda~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[25/04/2008|00:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Corel
[10/11/2006|10:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/04/2008|00:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[23/03/2007|07:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/11/2006|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[17/11/2006|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[10/11/2006|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/01/2007|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[13/02/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[13/02/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/08/2008|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[25/04/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/11/2006|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[28/04/2008|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Quark
[20/03/2007|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\toolmathidlecool
[10/11/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/11/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2006|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/03/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[19/03/2007|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/11/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/11/2006|10:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[31/07/2008|09:29] C:\DOCUME~1\Quentin\APPLIC~1\Adobe
[19/03/2007|19:59] C:\DOCUME~1\Quentin\APPLIC~1\AdobeUM
[21/01/2007|22:06] C:\DOCUME~1\Quentin\APPLIC~1\Ahead
[15/11/2006|17:01] C:\DOCUME~1\Quentin\APPLIC~1\Apple Computer
[25/04/2008|12:54] C:\DOCUME~1\Quentin\APPLIC~1\Auslogics
[15/11/2006|08:39] C:\DOCUME~1\Quentin\APPLIC~1\Corel
[16/11/2006|11:02] C:\DOCUME~1\Quentin\APPLIC~1\Help
[10/11/2006|10:44] C:\DOCUME~1\Quentin\APPLIC~1\Identities
[19/03/2007|20:24] C:\DOCUME~1\Quentin\APPLIC~1\Lavasoft
[10/11/2006|12:51] C:\DOCUME~1\Quentin\APPLIC~1\Leadertech
[11/11/2006|23:22] C:\DOCUME~1\Quentin\APPLIC~1\Macromedia
[04/02/2007|18:58] C:\DOCUME~1\Quentin\APPLIC~1\Media Player Classic
[28/07/2008|17:04] C:\DOCUME~1\Quentin\APPLIC~1\Microsoft
[04/08/2008|22:05] C:\DOCUME~1\Quentin\APPLIC~1\Mozilla
[06/02/2007|19:30] C:\DOCUME~1\Quentin\APPLIC~1\Quark
[05/04/2007|17:12] C:\DOCUME~1\Quentin\APPLIC~1\Real
[25/11/2007|20:58] C:\DOCUME~1\Quentin\APPLIC~1\Screenshot Sender
[11/11/2006|13:57] C:\DOCUME~1\Quentin\APPLIC~1\Sun
[23/05/2008|08:27] C:\DOCUME~1\Quentin\APPLIC~1\Teleca
[10/11/2006|12:52] C:\DOCUME~1\Quentin\APPLIC~1\TuneUp Software
[24/09/2007|18:22] C:\DOCUME~1\Quentin\APPLIC~1\Ulead Systems
[25/09/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\WinRAR
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[19/09/2008 17:24][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[25/09/2008 21:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[11/11/2006|11:11] C:\Program Files\Adobe
[25/04/2008|12:53] C:\Program Files\Auslogics
[25/04/2008|12:13] C:\Program Files\CCleaner
[10/11/2006|10:37] C:\Program Files\ComPlus Applications
[15/11/2006|08:43] C:\Program Files\Corel
[11/11/2006|11:12] C:\Program Files\directx
[10/11/2006|11:13] C:\Program Files\DVD Decrypter
[18/01/2007|23:25] C:\Program Files\DVD Shrink
[01/02/2007|23:25] C:\Program Files\eBay
[10/11/2006|12:51] C:\Program Files\Executive Software
[23/05/2008|08:23] C:\Program Files\Fichiers communs
[25/09/2007|18:31] C:\Program Files\InstallShield Installation Information
[14/08/2008|16:09] C:\Program Files\Internet Explorer
[10/11/2006|12:44] C:\Program Files\iPod
[10/11/2006|12:44] C:\Program Files\iTunes
[23/07/2008|10:05] C:\Program Files\Java
[10/11/2006|12:53] C:\Program Files\K-Lite Codec Pack
[13/02/2008|12:33] C:\Program Files\Lavasoft
[09/08/2008|08:27] C:\Program Files\LimeWire
[13/02/2008|13:10] C:\Program Files\McAfee
[14/08/2008|16:09] C:\Program Files\Messenger
[12/08/2008|20:36] C:\Program Files\Messenger Plus! Live
[10/11/2006|10:40] C:\Program Files\microsoft frontpage
[10/11/2006|13:00] C:\Program Files\Microsoft Office
[19/08/2008|16:01] C:\Program Files\Microsoft Silverlight
[10/11/2006|13:14] C:\Program Files\Movie Maker
[25/09/2008|23:04] C:\Program Files\Mozilla Firefox
[23/05/2008|23:47] C:\Program Files\MP3 Player Utilities 4.03
[25/04/2008|04:13] C:\Program Files\MSBuild
[10/11/2006|10:36] C:\Program Files\MSN
[10/11/2006|10:37] C:\Program Files\MSN Gaming Zone
[14/01/2007|10:03] C:\Program Files\MSXML 4.0
[25/04/2008|04:15] C:\Program Files\MSXML 6.0
[23/05/2008|12:54] C:\Program Files\MyMPxPlayer.org
[10/11/2006|12:36] C:\Program Files\Nero
[10/11/2006|10:38] C:\Program Files\NetMeeting
[13/02/2008|12:31] C:\Program Files\Network Associates
[10/11/2006|10:37] C:\Program Files\Online Services
[21/06/2007|03:01] C:\Program Files\Outlook Express
[10/11/2006|10:58] C:\Program Files\PowerQuest
[28/04/2008|22:41] C:\Program Files\Quark
[10/11/2006|12:44] C:\Program Files\QuickTime
[25/05/2008|20:25] C:\Program Files\RAR Password Cracker
[16/11/2006|11:02] C:\Program Files\Real
[25/04/2008|04:08] C:\Program Files\Reference Assemblies
[10/11/2006|10:39] C:\Program Files\Services en ligne
[11/11/2006|11:13] C:\Program Files\TCWorks
[10/11/2006|12:52] C:\Program Files\TuneUp Utilities 2006
[16/11/2006|11:00] C:\Program Files\Ulead Systems
[10/11/2006|10:44] C:\Program Files\Uninstall Information
[09/03/2008|08:50] C:\Program Files\Windows Live
[25/04/2008|04:18] C:\Program Files\Windows Media Connect 2
[25/04/2008|04:18] C:\Program Files\Windows Media Player
[10/11/2006|10:37] C:\Program Files\Windows NT
[10/11/2006|10:39] C:\Program Files\WindowsUpdate
[25/09/2008|21:59] C:\Program Files\WinRAR
[10/11/2006|10:40] C:\Program Files\xerox
[19/03/2007|22:10] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[11/11/2006|11:12] C:\Program Files\Fichiers communs\Adobe
[10/11/2006|12:49] C:\Program Files\Fichiers communs\Adobe Systems Shared
[10/11/2006|12:36] C:\Program Files\Fichiers communs\Ahead
[12/01/2007|20:54] C:\Program Files\Fichiers communs\Cisco Systems
[10/11/2006|13:00] C:\Program Files\Fichiers communs\Designer
[10/11/2006|12:38] C:\Program Files\Fichiers communs\InstallShield
[11/11/2006|13:56] C:\Program Files\Fichiers communs\Java
[13/02/2008|13:10] C:\Program Files\Fichiers communs\McAfee
[25/04/2008|04:15] C:\Program Files\Fichiers communs\Microsoft Shared
[10/11/2006|10:38] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|11:31] C:\Program Files\Fichiers communs\ODBC
[16/11/2006|11:08] C:\Program Files\Fichiers communs\Real
[10/11/2006|10:38] C:\Program Files\Fichiers communs\Services
[10/11/2006|11:31] C:\Program Files\Fichiers communs\SpeechEngines
[21/06/2007|03:01] C:\Program Files\Fichiers communs\System
[09/08/2008|07:51] C:\Program Files\Fichiers communs\Teleca Shared
[16/11/2006|11:00] C:\Program Files\Fichiers communs\Ulead Systems
[09/03/2008|08:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/02/2008|12:31] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/11/2006|11:07] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 43 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-25 23:17:18
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 113
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:62][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\Temp
[F:55][D:0]-> C:\DOCUME~1\Quentin\Cookies
[F:1415][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - jeu. 25/09/2008|23:09 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - jeu. 25/09/2008|23:18 - Option : [2]
--------------------\\ Fin du rapport a 23:18:59
-------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Quentin ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 53 Go Free : 14 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total : 244 Go Free : 236 Go
G:\ (Local Disk) - NTFS - Total : 37 Go Free : 3 Go
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( jeu. 25/09/2008|23:15 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road\knob 4.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\mix camp.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\1barbfastenc.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\cxvdjekl.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\ekorhnmg.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\mntscjvp.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\rfznsdre.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\trbxbsws.exe
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1\vdbzejex.exe
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@32vegas[1].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\Quentin\Cookies\quentin@www.lop[2].txt
Supprime! - C:\WINDOWS\Tasks\AE76081F9189B8DF.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\File dvd base road
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
Supprime! - C:\DOCUME~1\Quentin\APPLIC~1\peakda~1
Supprime! - C:\Program Files\peakda~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[25/04/2008|00:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Corel
[10/11/2006|10:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/04/2008|00:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[23/03/2007|07:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/11/2006|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[17/11/2006|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[10/11/2006|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/01/2007|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[13/02/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[13/02/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/08/2008|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[25/04/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/11/2006|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[28/04/2008|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Quark
[20/03/2007|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\toolmathidlecool
[10/11/2006|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/11/2006|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2006|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/03/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[19/03/2007|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[10/11/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/11/2006|10:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[31/07/2008|09:29] C:\DOCUME~1\Quentin\APPLIC~1\Adobe
[19/03/2007|19:59] C:\DOCUME~1\Quentin\APPLIC~1\AdobeUM
[21/01/2007|22:06] C:\DOCUME~1\Quentin\APPLIC~1\Ahead
[15/11/2006|17:01] C:\DOCUME~1\Quentin\APPLIC~1\Apple Computer
[25/04/2008|12:54] C:\DOCUME~1\Quentin\APPLIC~1\Auslogics
[15/11/2006|08:39] C:\DOCUME~1\Quentin\APPLIC~1\Corel
[16/11/2006|11:02] C:\DOCUME~1\Quentin\APPLIC~1\Help
[10/11/2006|10:44] C:\DOCUME~1\Quentin\APPLIC~1\Identities
[19/03/2007|20:24] C:\DOCUME~1\Quentin\APPLIC~1\Lavasoft
[10/11/2006|12:51] C:\DOCUME~1\Quentin\APPLIC~1\Leadertech
[11/11/2006|23:22] C:\DOCUME~1\Quentin\APPLIC~1\Macromedia
[04/02/2007|18:58] C:\DOCUME~1\Quentin\APPLIC~1\Media Player Classic
[28/07/2008|17:04] C:\DOCUME~1\Quentin\APPLIC~1\Microsoft
[04/08/2008|22:05] C:\DOCUME~1\Quentin\APPLIC~1\Mozilla
[06/02/2007|19:30] C:\DOCUME~1\Quentin\APPLIC~1\Quark
[05/04/2007|17:12] C:\DOCUME~1\Quentin\APPLIC~1\Real
[25/11/2007|20:58] C:\DOCUME~1\Quentin\APPLIC~1\Screenshot Sender
[11/11/2006|13:57] C:\DOCUME~1\Quentin\APPLIC~1\Sun
[23/05/2008|08:27] C:\DOCUME~1\Quentin\APPLIC~1\Teleca
[10/11/2006|12:52] C:\DOCUME~1\Quentin\APPLIC~1\TuneUp Software
[24/09/2007|18:22] C:\DOCUME~1\Quentin\APPLIC~1\Ulead Systems
[25/09/2008|22:00] C:\DOCUME~1\Quentin\APPLIC~1\WinRAR
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[19/09/2008 17:24][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[25/09/2008 21:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[11/11/2006|11:11] C:\Program Files\Adobe
[25/04/2008|12:53] C:\Program Files\Auslogics
[25/04/2008|12:13] C:\Program Files\CCleaner
[10/11/2006|10:37] C:\Program Files\ComPlus Applications
[15/11/2006|08:43] C:\Program Files\Corel
[11/11/2006|11:12] C:\Program Files\directx
[10/11/2006|11:13] C:\Program Files\DVD Decrypter
[18/01/2007|23:25] C:\Program Files\DVD Shrink
[01/02/2007|23:25] C:\Program Files\eBay
[10/11/2006|12:51] C:\Program Files\Executive Software
[23/05/2008|08:23] C:\Program Files\Fichiers communs
[25/09/2007|18:31] C:\Program Files\InstallShield Installation Information
[14/08/2008|16:09] C:\Program Files\Internet Explorer
[10/11/2006|12:44] C:\Program Files\iPod
[10/11/2006|12:44] C:\Program Files\iTunes
[23/07/2008|10:05] C:\Program Files\Java
[10/11/2006|12:53] C:\Program Files\K-Lite Codec Pack
[13/02/2008|12:33] C:\Program Files\Lavasoft
[09/08/2008|08:27] C:\Program Files\LimeWire
[13/02/2008|13:10] C:\Program Files\McAfee
[14/08/2008|16:09] C:\Program Files\Messenger
[12/08/2008|20:36] C:\Program Files\Messenger Plus! Live
[10/11/2006|10:40] C:\Program Files\microsoft frontpage
[10/11/2006|13:00] C:\Program Files\Microsoft Office
[19/08/2008|16:01] C:\Program Files\Microsoft Silverlight
[10/11/2006|13:14] C:\Program Files\Movie Maker
[25/09/2008|23:04] C:\Program Files\Mozilla Firefox
[23/05/2008|23:47] C:\Program Files\MP3 Player Utilities 4.03
[25/04/2008|04:13] C:\Program Files\MSBuild
[10/11/2006|10:36] C:\Program Files\MSN
[10/11/2006|10:37] C:\Program Files\MSN Gaming Zone
[14/01/2007|10:03] C:\Program Files\MSXML 4.0
[25/04/2008|04:15] C:\Program Files\MSXML 6.0
[23/05/2008|12:54] C:\Program Files\MyMPxPlayer.org
[10/11/2006|12:36] C:\Program Files\Nero
[10/11/2006|10:38] C:\Program Files\NetMeeting
[13/02/2008|12:31] C:\Program Files\Network Associates
[10/11/2006|10:37] C:\Program Files\Online Services
[21/06/2007|03:01] C:\Program Files\Outlook Express
[10/11/2006|10:58] C:\Program Files\PowerQuest
[28/04/2008|22:41] C:\Program Files\Quark
[10/11/2006|12:44] C:\Program Files\QuickTime
[25/05/2008|20:25] C:\Program Files\RAR Password Cracker
[16/11/2006|11:02] C:\Program Files\Real
[25/04/2008|04:08] C:\Program Files\Reference Assemblies
[10/11/2006|10:39] C:\Program Files\Services en ligne
[11/11/2006|11:13] C:\Program Files\TCWorks
[10/11/2006|12:52] C:\Program Files\TuneUp Utilities 2006
[16/11/2006|11:00] C:\Program Files\Ulead Systems
[10/11/2006|10:44] C:\Program Files\Uninstall Information
[09/03/2008|08:50] C:\Program Files\Windows Live
[25/04/2008|04:18] C:\Program Files\Windows Media Connect 2
[25/04/2008|04:18] C:\Program Files\Windows Media Player
[10/11/2006|10:37] C:\Program Files\Windows NT
[10/11/2006|10:39] C:\Program Files\WindowsUpdate
[25/09/2008|21:59] C:\Program Files\WinRAR
[10/11/2006|10:40] C:\Program Files\xerox
[19/03/2007|22:10] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[11/11/2006|11:12] C:\Program Files\Fichiers communs\Adobe
[10/11/2006|12:49] C:\Program Files\Fichiers communs\Adobe Systems Shared
[10/11/2006|12:36] C:\Program Files\Fichiers communs\Ahead
[12/01/2007|20:54] C:\Program Files\Fichiers communs\Cisco Systems
[10/11/2006|13:00] C:\Program Files\Fichiers communs\Designer
[10/11/2006|12:38] C:\Program Files\Fichiers communs\InstallShield
[11/11/2006|13:56] C:\Program Files\Fichiers communs\Java
[13/02/2008|13:10] C:\Program Files\Fichiers communs\McAfee
[25/04/2008|04:15] C:\Program Files\Fichiers communs\Microsoft Shared
[10/11/2006|10:38] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|11:31] C:\Program Files\Fichiers communs\ODBC
[16/11/2006|11:08] C:\Program Files\Fichiers communs\Real
[10/11/2006|10:38] C:\Program Files\Fichiers communs\Services
[10/11/2006|11:31] C:\Program Files\Fichiers communs\SpeechEngines
[21/06/2007|03:01] C:\Program Files\Fichiers communs\System
[09/08/2008|07:51] C:\Program Files\Fichiers communs\Teleca Shared
[16/11/2006|11:00] C:\Program Files\Fichiers communs\Ulead Systems
[09/03/2008|08:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/02/2008|12:31] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/11/2006|11:07] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 43 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-25 23:17:18
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 113
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:62][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\Temp
[F:55][D:0]-> C:\DOCUME~1\Quentin\Cookies
[F:1415][D:10]-> C:\DOCUME~1\Quentin\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - jeu. 25/09/2008|23:09 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - jeu. 25/09/2008|23:18 - Option : [2]
--------------------\\ Fin du rapport a 23:18:59
héééééééé voici le rapport SDfix
SDFix: Version 1.116
Run by Quentin on jeu. 25/09/2008 at 23:41
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\~VM183.TMP - Deleted
C:\~VM184.TMP - Deleted
C:\~VM185.TMP - Deleted
C:\~VM186.TMP - Deleted
C:\~VM187.TMP - Deleted
C:\~VM188.TMP - Deleted
C:\~VM189.TMP - Deleted
C:\~VM18A.TMP - Deleted
C:\~VM18B.TMP - Deleted
C:\~VM183.TMP - Deleted
C:\~VM184.TMP - Deleted
C:\~VM185.TMP - Deleted
C:\~VM186.TMP - Deleted
C:\~VM187.TMP - Deleted
C:\~VM188.TMP - Deleted
C:\~VM189.TMP - Deleted
C:\~VM18A.TMP - Deleted
C:\~VM18B.TMP - Deleted
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
SDFix: Version 1.116
Run by Quentin on jeu. 25/09/2008 at 23:41
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\~VM183.TMP - Deleted
C:\~VM184.TMP - Deleted
C:\~VM185.TMP - Deleted
C:\~VM186.TMP - Deleted
C:\~VM187.TMP - Deleted
C:\~VM188.TMP - Deleted
C:\~VM189.TMP - Deleted
C:\~VM18A.TMP - Deleted
C:\~VM18B.TMP - Deleted
C:\~VM183.TMP - Deleted
C:\~VM184.TMP - Deleted
C:\~VM185.TMP - Deleted
C:\~VM186.TMP - Deleted
C:\~VM187.TMP - Deleted
C:\~VM188.TMP - Deleted
C:\~VM189.TMP - Deleted
C:\~VM18A.TMP - Deleted
C:\~VM18B.TMP - Deleted
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
ensuite fais ceci stp :
▶ Télécharger malwarebytes
▶ Voici un tuto pour bien l installer et bien l utiliser :
https://www.androidworld.fr/
aide toi bien du tuto pour supprimer correctement ce qu il aura trouvé
Après l analyse, redémarrer le pc et poste le rapport !!
Et refais un nouveau rapport hijackthis stp
▶ Télécharger malwarebytes
▶ Voici un tuto pour bien l installer et bien l utiliser :
https://www.androidworld.fr/
aide toi bien du tuto pour supprimer correctement ce qu il aura trouvé
Après l analyse, redémarrer le pc et poste le rapport !!
Et refais un nouveau rapport hijackthis stp
voilà j'ai fait tourner malwarebytes
il n'a rien détecté
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1205
Windows 5.1.2600 Service Pack 2
26/09/2008 7:42:09
mbam-log-2008-09-26 (07-42-09).txt
Type de recherche: Examen complet (C:\|F:\|G:\|)
Eléments examinés: 125855
Temps écoulé: 59 minute(s), 59 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
il n'a rien détecté
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1205
Windows 5.1.2600 Service Pack 2
26/09/2008 7:42:09
mbam-log-2008-09-26 (07-42-09).txt
Type de recherche: Examen complet (C:\|F:\|G:\|)
Eléments examinés: 125855
Temps écoulé: 59 minute(s), 59 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
je refais tourner hijackthis comme demandé
voici le rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:49:49, on 26/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Quentin\Bureau\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe AcPro7_0_5 -reboot 1
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{50C9827A-D1FF-4094-8754-54351F378EB2}: NameServer = 164.15.59.200
O17 - HKLM\System\CCS\Services\Tcpip\..\{53B31CEC-061B-4AE1-8891-447FEB6C19EE}: NameServer = 164.15.59.200,164.15.125.1
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
voici le rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:49:49, on 26/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Quentin\Bureau\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe AcPro7_0_5 -reboot 1
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{50C9827A-D1FF-4094-8754-54351F378EB2}: NameServer = 164.15.59.200
O17 - HKLM\System\CCS\Services\Tcpip\..\{53B31CEC-061B-4AE1-8891-447FEB6C19EE}: NameServer = 164.15.59.200,164.15.125.1
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
Salut !!
relance hijackthis en cliquant sur scan only et coches ces lignes stp :
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
puis tu cliques sur fix checked.
vas faire la mise à niveau d adobe reader à cette adresse :
https://get2.adobe.com/reader/otherversions/
ensuite fais ceci pour vérifier stp :
▶ Télécharge Fixwareout
(c est le numéro 11 en bas de la page)
▶Double clique sur Fixwareout.exe
▶Clique "Next", puis "Install", et vérifie que "Run fixit" soit coché, puis tu cliques "Finish".
▶Suivre les directives à l'écran.
▶L'outils va te demander de redémarrer ton PC, tu redémarres.
▶Le redémarrage risque de prendre un peu plus de temps, ceci est normal.
▶Le rapport va t'être dans le bloc note lors du redémarrage et tu pourras le sauvegarder.
Pour me copier/coller le rapport du "Bloc note" tu vas dans le menu Édition et clique sur "Sélectionner tout" et retourne dans "Édition" et clique sur "copier"
Sur le forum, faire un click droit et cliquer sur "coller".
relance hijackthis en cliquant sur scan only et coches ces lignes stp :
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
puis tu cliques sur fix checked.
vas faire la mise à niveau d adobe reader à cette adresse :
https://get2.adobe.com/reader/otherversions/
ensuite fais ceci pour vérifier stp :
▶ Télécharge Fixwareout
(c est le numéro 11 en bas de la page)
▶Double clique sur Fixwareout.exe
▶Clique "Next", puis "Install", et vérifie que "Run fixit" soit coché, puis tu cliques "Finish".
▶Suivre les directives à l'écran.
▶L'outils va te demander de redémarrer ton PC, tu redémarres.
▶Le redémarrage risque de prendre un peu plus de temps, ceci est normal.
▶Le rapport va t'être dans le bloc note lors du redémarrage et tu pourras le sauvegarder.
Pour me copier/coller le rapport du "Bloc note" tu vas dans le menu Édition et clique sur "Sélectionner tout" et retourne dans "Édition" et clique sur "copier"
Sur le forum, faire un click droit et cliquer sur "coller".
