Se connecter / S'enregistrer
Votre question

Ordinateur bloqué (virus ou pas?? aucune idée)

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
7 Mai 2011 12:59:28

Bonjour,

Mon ordinateur fonctionne de moins en moins bien, il m'affiche des messages d'erreur de plus en plus souvent.

Je ne retrouve pas mes Cd d'installation, et après avoir voulu en refaire de nouveaux, mon ordinateur me dit que le fichier "recovery disc est endommagé".

Quelqu'un peut-il m'aider???

Par avance merci a vous car je suis très embarrassé, mon ordinateur est mon outil de travail ( dans la musique)....

Thibaut

Autres pages sur : ordinateur bloque virus idee

7 Mai 2011 17:45:23

Bonjour
titi967, lis tes messages privés...
tu ne prends plus de topics dans cette section sinon, c'est le ban :o 
7 Mai 2011 21:41:31

je te mets le message privé vu que tu ne l'ouvres même pas... :o 

+++++++++++++++++++++++

Bonjour
visiblement, tu ne connais rien aux désinfections, les règles de cette section sont très strictes:
Rappels de cette section

Sais-tu que tu peux planter définitivement un pc en installant un nouvel antivirus et en faisant faire un scan sur une machine infectée?
tes pseudos interventions à coup de spybot et d'antivirus ne permettront pas de dépanner les infectés...


Merci de ne plus intervenir dans cette section où tu seras sanctionné.
(Tu peux néanmoins intervenir dans les autres sections du forum si tu en as l'envie)



Contenus similaires
7 Mai 2011 22:44:19

Citation :
comment savoir ce qui est destiné au "helper"


je t'ai dit de lire les règles...
http://www.infos-du-net.com/forum/272538-11-rappels-sec...
je me fous de tes "15 ans de pratique"... :o 
Citation :
Alors sois tu repond a ma question (q'apparement tu n'as pas lu), sinon j'irai voir ailleur.

Bon vent !
7 Mai 2011 22:57:01

Citation :
Merci de ne plus intervenir dans cette section où tu seras sanctionné.
(Tu peux néanmoins intervenir dans les autres sections du forum si tu en as l'envie)
7 Mai 2011 22:58:19

Thibaut_33 :) 

Télécharge DDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**
    10 Mai 2011 13:11:13

    Hello Sham, merci pour ton aide. Je suis seulement de retour car mon ordi a vraiment planté... j'ai fini par reussir afire ta manip sans qu'il ne coupe... voici le rapport



    DDS (Ver_11-03-05.01) - NTFSx86
    Run by Tib at 13:07:08,93 on 10/05/2011
    Internet Explorer: 8.0.6001.19048 BrowserJavaVersion: 1.6.0_03
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3070.1690 [GMT 2:00]
    .
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
    C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    C:\Windows\system32\TODDSrv.exe
    C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\Application Updater\ApplicationUpdater.exe
    C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
    C:\Windows\system32\wuauclt.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\rundll32.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\Program Files\foobar2000\foobar2000.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Tib\Desktop\Downloads\dds.scr
    C:\Windows\system32\conime.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uDefault_Page_URL = hxxp://www.google.fr
    mDefault_Page_URL = hxxp://www.google.fr
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    BHO: Aide pour le lien d'Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\npdivx32.dll
    BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - c:\program files\divx\divx plus web player\npdivx32.dll
    BHO: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    TB: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    uRun: [Google Update] "c:\users\tib\appdata\local\google\update\GoogleUpdate.exe" /c
    uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
    uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
    mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    mRun: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
    mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [Toshiba Registration] c:\program files\toshiba\registration\ToshibaRegistration.exe
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
    mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
    mRun: [PaperPort PTD] "c:\program files\scansoft\paperport\pptd40nt.exe"
    mRun: [IndexSearch] "c:\program files\scansoft\paperport\IndexSearch.exe"
    mRun: [PPort11reminder] "c:\program files\scansoft\paperport\ereg\ereg.exe" -r "c:\programdata\scansoft\paperport\11\config\ereg\Ereg.ini"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
    mRun: [DivX Download Manager] "c:\program files\divx\divx plus web player\DDmService.exe" start
    mRun: [<NO NAME>]
    mRun: [SearchSettings] "c:\program files\common files\spigot\search settings\SearchSettings.exe"
    mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
    mPolicies-system: EnableLUA = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    IE: {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4
    IE: {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.fr/exec/obidos/redirect-home?tag=Tosh...
    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
    Notify: igfxcui - igfxdev.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\tib\appdata\roaming\mozilla\firefox\profiles\j2fg5utc.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://fl.iamwired.net/websearch.php?src=tops&search=
    FF - prefs.js: browser.search.selectedEngine - Search
    FF - prefs.js: browser.startup.homepage - hxxp://fl.iamwired.net/
    FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=
    FF - component: c:\program files\common files\spigot\wtxpcom\components\WidgiToolbarFF.dll
    FF - plugin: c:\program files\clickpotatolite\bin\10.0.622.0\firefox\extensions\plugins\npclntax_ClickPotatoLiteSA.dll
    FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
    FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npclntax_ClickPotatoLiteSA.dll
    FF - plugin: c:\users\tib\appdata\local\google\update\1.3.21.53\npGoogleUpdate3.dll
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: ResultBar: {34EFA911-B536-4C08-BECE-CD5E55C875B0} - c:\program files\mozilla firefox\extensions\{34EFA911-B536-4C08-BECE-CD5E55C875B0}
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
    FF - Ext: ClickPotatoLite Component: ClickPotatoLite@ClickPotatoLite.com - c:\program files\clickpotatolite\bin\10.0.622.0\firefox\extensions
    FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\html5video
    FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\divx\divx plus web player\firefox\wpa
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-2-4 218688]
    R2 Application Updater;Application Updater;c:\program files\application updater\ApplicationUpdater.exe [2011-4-27 393112]
    R2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2007-12-25 40960]
    R2 NIHardwareService;NIHardwareService;c:\program files\common files\native instruments\hardware\NIHardwareService.exe [2011-3-9 3857408]
    R3 CnxtHdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service;c:\windows\system32\drivers\CHDART.sys [2008-2-18 187904]
    R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2008-1-15 48472]
    R3 QIOMem;Generic IO & Memory Access;c:\windows\system32\drivers\QIOMem.sys [2007-4-9 8192]
    S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2011-2-21 84832]
    S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2010-4-19 18432]
    S3 PTMIDICHIP;Ploytec MIDI-CHIP driver service;c:\windows\system32\drivers\xonemidi.sys [2011-4-10 21504]
    S3 XONE_2D;usb-audio.de driver for Allen & Heath XONE:2D;c:\windows\system32\drivers\XONE_2D.sys [2011-4-10 348160]
    S3 XONE_2D_WDM;XONE:2D WDM Audio;c:\windows\system32\drivers\XONE_2DW.sys [2010-2-11 34304]
    S3 XONE_2DM;XONE:2D WDM Midi Device;c:\windows\system32\drivers\XONE_2dm.sys [2010-2-11 18944]
    .
    =============== Created Last 30 ================
    .
    2011-05-09 21:23:43 -------- d-----w- c:\program files\pdfforge Toolbar
    2011-05-09 21:23:43 -------- d-----w- c:\program files\Application Updater
    2011-05-06 20:51:52 -------- d-----w- c:\users\tib\appdata\local\Sony
    2011-05-06 20:39:04 -------- d-----w- c:\program files\Sony
    2011-05-06 19:32:21 7071056 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{77b1ca32-81b3-4909-9859-0ac3edce9526}\mpengine.dll
    .
    ==================== Find3M ====================
    .
    2011-05-09 21:21:04 44544 ----a-w- c:\windows\system32\agremove.exe
    2011-03-10 17:03:51 1162240 ----a-w- c:\windows\system32\mfc42u.dll
    2011-03-10 17:03:51 1136640 ----a-w- c:\windows\system32\mfc42.dll
    2011-03-03 15:42:03 739328 ----a-w- c:\windows\system32\inetcomm.dll
    2011-03-03 13:25:11 2041856 ----a-w- c:\windows\system32\win32k.sys
    2011-03-02 15:44:27 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
    2011-02-22 06:21:28 916480 ----a-w- c:\windows\system32\wininet.dll
    2011-02-22 06:17:08 43520 ----a-w- c:\windows\system32\licmgr10.dll
    2011-02-22 06:16:53 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
    2011-02-22 06:16:40 71680 ----a-w- c:\windows\system32\iesetup.dll
    2011-02-22 06:16:40 109056 ----a-w- c:\windows\system32\iesysprep.dll
    2011-02-22 05:20:39 385024 ----a-w- c:\windows\system32\html.iec
    2011-02-22 04:43:54 133632 ----a-w- c:\windows\system32\ieUnatt.exe
    2011-02-22 04:42:38 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2011-02-17 06:23:50 420864 ----a-w- c:\windows\system32\vbscript.dll
    2011-02-16 16:16:37 34304 ----a-w- c:\windows\system32\atmlib.dll
    2011-02-16 14:02:23 292864 ----a-w- c:\windows\system32\atmfd.dll
    2011-02-15 20:33:42 34816 ----a-w- c:\windows\system32\identprv.dll
    2011-02-11 14:43:11 1700352 ----a-w- c:\windows\system32\gdiplus.dll
    .
    ============= FINISH: 13:07:52,49 ===============
    10 Mai 2011 13:34:32

    et ça aussi




    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_11-03-05.01)
    .
    Microsoft® Windows Vista™ Édition Familiale Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 11/02/2010 19:42:41
    System Uptime: 09/05/2011 23:17:17 (14 hours ago)
    .
    Motherboard: TOSHIBA | | Satellite A300
    Processor: Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz | U2E1 | 1833/166mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 116 GiB total, 33,735 GiB free.
    D: is CDROM ()
    E: is FIXED (NTFS) - 115 GiB total, 27,945 GiB free.
    F: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0000
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4
    PNP Device ID: ROOT\*6TO4MP\0000
    Service: tunnel
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0002
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4 #2
    PNP Device ID: ROOT\*6TO4MP\0002
    Service: tunnel
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0003
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4 #3
    PNP Device ID: ROOT\*6TO4MP\0003
    Service: tunnel
    .
    ==== System Restore Points ===================
    .
    RP519: 29/04/2011 12:48:40 - Point de contrôle planifié
    RP520: 29/04/2011 14:24:54 - Windows Update
    RP521: 30/04/2011 16:00:52 - Windows Update
    RP522: 01/05/2011 13:55:15 - Point de contrôle planifié
    RP523: 03/05/2011 09:54:21 - Windows Update
    RP524: 04/05/2011 05:09:38 - Point de contrôle planifié
    RP525: 04/05/2011 18:33:39 - Point de contrôle planifié
    RP526: 06/05/2011 21:31:55 - Windows Update
    RP527: 06/05/2011 22:38:50 - Installed Sound Forge Pro 10.0
    RP528: 07/05/2011 11:19:37 - Point de contrôle planifié
    RP529: 08/05/2011 12:51:54 - Point de contrôle planifié
    RP530: 10/05/2011 01:45:01 - Point de contrôle planifié
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 8.2.5 - Français
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Arturia minimoog V v1.6
    ATI Catalyst Install Manager
    Bluetooth Stack for Windows by Toshiba
    Bonjour
    Catalyst Control Center - Branding
    Catalyst Control Center Core Implementation
    Catalyst Control Center Graphics Full Existing
    Catalyst Control Center Graphics Full New
    Catalyst Control Center Graphics Light
    Catalyst Control Center Graphics Previews Vista
    Catalyst Control Center Localization Chinese Standard
    Catalyst Control Center Localization Chinese Traditional
    Catalyst Control Center Localization Dutch
    Catalyst Control Center Localization French
    Catalyst Control Center Localization German
    Catalyst Control Center Localization Italian
    Catalyst Control Center Localization Japanese
    Catalyst Control Center Localization Korean
    Catalyst Control Center Localization Portuguese
    Catalyst Control Center Localization Spanish
    Catalyst Control Center Localization Swedish
    ccc-core-static
    ccc-utility
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Dutch
    CCC Help English
    CCC Help French
    CCC Help German
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Portuguese
    CCC Help Spanish
    CCC Help Swedish
    Codeur Windows Media Série 9
    Conexant HD Audio
    Configuration DivX
    DAEMON Tools Lite
    DVD MovieFactory for TOSHIBA
    foobar2000 v0.9.6.3
    Google Chrome
    HDAUDIO Soft Data Fax Modem with SmartCP
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Intel® Matrix Storage Manager
    iTunes
    Java(TM) 6 Update 3
    Live 8.2
    Logiciel d'archivage WinRAR
    Malwarebytes' Anti-Malware
    Manuels TOSHIBA
    Marvell Miniport Driver
    Max 5.1.0
    Microsoft .NET Framework 3.5 SP1
    Microsoft Application Error Reporting
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Access MUI (French) 2007
    Microsoft Office Excel MUI (French) 2007
    Microsoft Office InfoPath MUI (French) 2007
    Microsoft Office Outlook MUI (French) 2007
    Microsoft Office PowerPoint MUI (French) 2007
    Microsoft Office Professional Plus 2007
    Microsoft Office Proof (Arabic) 2007
    Microsoft Office Proof (Dutch) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (German) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (French) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Publisher MUI (French) 2007
    Microsoft Office Shared MUI (French) 2007
    Microsoft Office Word MUI (French) 2007
    Microsoft Silverlight
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable - KB2467175
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Works
    Microsoft XML Parser
    Mixed In Key 4
    Mozilla Firefox (3.6)
    MSXML 4.0 SP2 (KB941833)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    Native Instruments Absynth 5
    Native Instruments Controller Editor
    Native Instruments Massive
    Native Instruments Traktor
    Native Instruments Traktor 2
    Native Instruments Traktor DJ Studio 3
    NetWaiting
    O2Micro Flash Memory Card Reader Driver (x86)
    PDFCreator
    pdfforge Toolbar v4.4
    Ploytec MIDI USB driver
    QuickTime
    Rob Papen Albino 3
    ScanSoft PaperPort 11
    Security Update for 2007 Microsoft Office System (KB2288621)
    Security Update for 2007 Microsoft Office System (KB2288931)
    Security Update for 2007 Microsoft Office System (KB2345043)
    Security Update for 2007 Microsoft Office System (KB2466156)
    Security Update for 2007 Microsoft Office System (KB2509488)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Security Update for Microsoft Office Access 2007 (KB979440)
    Security Update for Microsoft Office Excel 2007 (KB2464583)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB2464594)
    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
    Security Update for Microsoft Office Publisher 2007 (KB2284697)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2344993)
    Security Update for Windows Media Encoder (KB2447961)
    Security Update for Windows Media Encoder (KB954156)
    Security Update for Windows Media Encoder (KB979332)
    Skins
    Skype™ 4.2
    SmartAudio
    Sonic Charge µTonic VST
    Sound Forge Pro 10.0
    Sylenth1 v2.01
    Synaptics Pointing Device Driver
    TOSHIBA ConfigFree
    TOSHIBA Disc Creator
    TOSHIBA DVD PLAYER
    TOSHIBA Extended Tiles for Windows Mobility Center
    TOSHIBA SD Memory Utilities
    TOSHIBA Supervisor Password
    TRDCReminder
    TRORDCLauncher
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office Outlook 2007 (KB2509470)
    Update for Outlook 2007 Junk Email Filter (KB2522999)
    VC80CRTRedist - 8.0.50727.4053
    VLC media player 1.0.1
    Windows Media Player Firefox Plugin
    XONE:2D USB ASIO driver
    Xvid 1.2.1 final uninstall
    .
    ==== End Of File ===========================
    10 Mai 2011 13:48:05

    Sham_Rock a dit :
    Thibaut_33 :) 

    Télécharge DDS]http://i263.photobucket.com/albums/ii126/Sham_Rock1/tlcharger.gifDDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**




  • DDS (Ver_11-03-05.01) - NTFSx86
    Run by Tib at 13:07:08,93 on 10/05/2011
    Internet Explorer: 8.0.6001.19048 BrowserJavaVersion: 1.6.0_03
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3070.1690 [GMT 2:00]
    .
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
    C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    C:\Windows\system32\TODDSrv.exe
    C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\Application Updater\ApplicationUpdater.exe
    C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
    C:\Windows\system32\wuauclt.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\rundll32.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\Program Files\foobar2000\foobar2000.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Tib\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Tib\Desktop\Downloads\dds.scr
    C:\Windows\system32\conime.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uDefault_Page_URL = hxxp://www.google.fr
    mDefault_Page_URL = hxxp://www.google.fr
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    BHO: Aide pour le lien d'Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\npdivx32.dll
    BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - c:\program files\divx\divx plus web player\npdivx32.dll
    BHO: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    TB: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\ie\4.4\pdfforgeToolbarIE.dll
    uRun: [Google Update] "c:\users\tib\appdata\local\google\update\GoogleUpdate.exe" /c
    uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
    uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
    mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    mRun: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
    mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [Toshiba Registration] c:\program files\toshiba\registration\ToshibaRegistration.exe
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
    mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
    mRun: [PaperPort PTD] "c:\program files\scansoft\paperport\pptd40nt.exe"
    mRun: [IndexSearch] "c:\program files\scansoft\paperport\IndexSearch.exe"
    mRun: [PPort11reminder] "c:\program files\scansoft\paperport\ereg\ereg.exe" -r "c:\programdata\scansoft\paperport\11\config\ereg\Ereg.ini"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
    mRun: [DivX Download Manager] "c:\program files\divx\divx plus web player\DDmService.exe" start
    mRun: [<NO NAME>]
    mRun: [SearchSettings] "c:\program files\common files\spigot\search settings\SearchSettings.exe"
    mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
    mPolicies-system: EnableLUA = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    IE: {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4
    IE: {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.fr/exec/obidos/redirect-home?tag=Tosh...
    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
    Notify: igfxcui - igfxdev.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\tib\appdata\roaming\mozilla\firefox\profiles\j2fg5utc.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://fl.iamwired.net/websearch.php?src=tops&search=
    FF - prefs.js: browser.search.selectedEngine - Search
    FF - prefs.js: browser.startup.homepage - hxxp://fl.iamwired.net/
    FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=
    FF - component: c:\program files\common files\spigot\wtxpcom\components\WidgiToolbarFF.dll
    FF - plugin: c:\program files\clickpotatolite\bin\10.0.622.0\firefox\extensions\plugins\npclntax_ClickPotatoLiteSA.dll
    FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
    FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npclntax_ClickPotatoLiteSA.dll
    FF - plugin: c:\users\tib\appdata\local\google\update\1.3.21.53\npGoogleUpdate3.dll
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: ResultBar: {34EFA911-B536-4C08-BECE-CD5E55C875B0} - c:\program files\mozilla firefox\extensions\{34EFA911-B536-4C08-BECE-CD5E55C875B0}
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
    FF - Ext: ClickPotatoLite Component: ClickPotatoLite@ClickPotatoLite.com - c:\program files\clickpotatolite\bin\10.0.622.0\firefox\extensions
    FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\html5video
    FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\divx\divx plus web player\firefox\wpa
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-2-4 218688]
    R2 Application Updater;Application Updater;c:\program files\application updater\ApplicationUpdater.exe [2011-4-27 393112]
    R2 ConfigFree Service;ConfigFree Service;c:\program files\toshiba\configfree\CFSvcs.exe [2007-12-25 40960]
    R2 NIHardwareService;NIHardwareService;c:\program files\common files\native instruments\hardware\NIHardwareService.exe [2011-3-9 3857408]
    R3 CnxtHdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service;c:\windows\system32\drivers\CHDART.sys [2008-2-18 187904]
    R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2008-1-15 48472]
    R3 QIOMem;Generic IO & Memory Access;c:\windows\system32\drivers\QIOMem.sys [2007-4-9 8192]
    S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2011-2-21 84832]
    S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2010-4-19 18432]
    S3 PTMIDICHIP;Ploytec MIDI-CHIP driver service;c:\windows\system32\drivers\xonemidi.sys [2011-4-10 21504]
    S3 XONE_2D;usb-audio.de driver for Allen & Heath XONE:2D;c:\windows\system32\drivers\XONE_2D.sys [2011-4-10 348160]
    S3 XONE_2D_WDM;XONE:2D WDM Audio;c:\windows\system32\drivers\XONE_2DW.sys [2010-2-11 34304]
    S3 XONE_2DM;XONE:2D WDM Midi Device;c:\windows\system32\drivers\XONE_2dm.sys [2010-2-11 18944]
    .
    =============== Created Last 30 ================
    .
    2011-05-09 21:23:43 -------- d-----w- c:\program files\pdfforge Toolbar
    2011-05-09 21:23:43 -------- d-----w- c:\program files\Application Updater
    2011-05-06 20:51:52 -------- d-----w- c:\users\tib\appdata\local\Sony
    2011-05-06 20:39:04 -------- d-----w- c:\program files\Sony
    2011-05-06 19:32:21 7071056 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{77b1ca32-81b3-4909-9859-0ac3edce9526}\mpengine.dll
    .
    ==================== Find3M ====================
    .
    2011-05-09 21:21:04 44544 ----a-w- c:\windows\system32\agremove.exe
    2011-03-10 17:03:51 1162240 ----a-w- c:\windows\system32\mfc42u.dll
    2011-03-10 17:03:51 1136640 ----a-w- c:\windows\system32\mfc42.dll
    2011-03-03 15:42:03 739328 ----a-w- c:\windows\system32\inetcomm.dll
    2011-03-03 13:25:11 2041856 ----a-w- c:\windows\system32\win32k.sys
    2011-03-02 15:44:27 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
    2011-02-22 06:21:28 916480 ----a-w- c:\windows\system32\wininet.dll
    2011-02-22 06:17:08 43520 ----a-w- c:\windows\system32\licmgr10.dll
    2011-02-22 06:16:53 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
    2011-02-22 06:16:40 71680 ----a-w- c:\windows\system32\iesetup.dll
    2011-02-22 06:16:40 109056 ----a-w- c:\windows\system32\iesysprep.dll
    2011-02-22 05:20:39 385024 ----a-w- c:\windows\system32\html.iec
    2011-02-22 04:43:54 133632 ----a-w- c:\windows\system32\ieUnatt.exe
    2011-02-22 04:42:38 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2011-02-17 06:23:50 420864 ----a-w- c:\windows\system32\vbscript.dll
    2011-02-16 16:16:37 34304 ----a-w- c:\windows\system32\atmlib.dll
    2011-02-16 14:02:23 292864 ----a-w- c:\windows\system32\atmfd.dll
    2011-02-15 20:33:42 34816 ----a-w- c:\windows\system32\identprv.dll
    2011-02-11 14:43:11 1700352 ----a-w- c:\windows\system32\gdiplus.dll
    .
    ============= FINISH: 13:07:52,49 ===============


    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_11-03-05.01)
    .
    Microsoft® Windows Vista™ Édition Familiale Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 11/02/2010 19:42:41
    System Uptime: 09/05/2011 23:17:17 (14 hours ago)
    .
    Motherboard: TOSHIBA | | Satellite A300
    Processor: Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz | U2E1 | 1833/166mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 116 GiB total, 33,735 GiB free.
    D: is CDROM ()
    E: is FIXED (NTFS) - 115 GiB total, 27,945 GiB free.
    F: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0000
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4
    PNP Device ID: ROOT\*6TO4MP\0000
    Service: tunnel
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0002
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4 #2
    PNP Device ID: ROOT\*6TO4MP\0002
    Service: tunnel
    .
    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
    Description: Carte Microsoft 6to4
    Device ID: ROOT\*6TO4MP\0003
    Manufacturer: Microsoft
    Name: Carte Microsoft 6to4 #3
    PNP Device ID: ROOT\*6TO4MP\0003
    Service: tunnel
    .
    ==== System Restore Points ===================
    .
    RP519: 29/04/2011 12:48:40 - Point de contrôle planifié
    RP520: 29/04/2011 14:24:54 - Windows Update
    RP521: 30/04/2011 16:00:52 - Windows Update
    RP522: 01/05/2011 13:55:15 - Point de contrôle planifié
    RP523: 03/05/2011 09:54:21 - Windows Update
    RP524: 04/05/2011 05:09:38 - Point de contrôle planifié
    RP525: 04/05/2011 18:33:39 - Point de contrôle planifié
    RP526: 06/05/2011 21:31:55 - Windows Update
    RP527: 06/05/2011 22:38:50 - Installed Sound Forge Pro 10.0
    RP528: 07/05/2011 11:19:37 - Point de contrôle planifié
    RP529: 08/05/2011 12:51:54 - Point de contrôle planifié
    RP530: 10/05/2011 01:45:01 - Point de contrôle planifié
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 8.2.5 - Français
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Arturia minimoog V v1.6
    ATI Catalyst Install Manager
    Bluetooth Stack for Windows by Toshiba
    Bonjour
    Catalyst Control Center - Branding
    Catalyst Control Center Core Implementation
    Catalyst Control Center Graphics Full Existing
    Catalyst Control Center Graphics Full New
    Catalyst Control Center Graphics Light
    Catalyst Control Center Graphics Previews Vista
    Catalyst Control Center Localization Chinese Standard
    Catalyst Control Center Localization Chinese Traditional
    Catalyst Control Center Localization Dutch
    Catalyst Control Center Localization French
    Catalyst Control Center Localization German
    Catalyst Control Center Localization Italian
    Catalyst Control Center Localization Japanese
    Catalyst Control Center Localization Korean
    Catalyst Control Center Localization Portuguese
    Catalyst Control Center Localization Spanish
    Catalyst Control Center Localization Swedish
    ccc-core-static
    ccc-utility
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Dutch
    CCC Help English
    CCC Help French
    CCC Help German
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Portuguese
    CCC Help Spanish
    CCC Help Swedish
    Codeur Windows Media Série 9
    Conexant HD Audio
    Configuration DivX
    DAEMON Tools Lite
    DVD MovieFactory for TOSHIBA
    foobar2000 v0.9.6.3
    Google Chrome
    HDAUDIO Soft Data Fax Modem with SmartCP
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Intel® Matrix Storage Manager
    iTunes
    Java(TM) 6 Update 3
    Live 8.2
    Logiciel d'archivage WinRAR
    Malwarebytes' Anti-Malware
    Manuels TOSHIBA
    Marvell Miniport Driver
    Max 5.1.0
    Microsoft .NET Framework 3.5 SP1
    Microsoft Application Error Reporting
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Access MUI (French) 2007
    Microsoft Office Excel MUI (French) 2007
    Microsoft Office InfoPath MUI (French) 2007
    Microsoft Office Outlook MUI (French) 2007
    Microsoft Office PowerPoint MUI (French) 2007
    Microsoft Office Professional Plus 2007
    Microsoft Office Proof (Arabic) 2007
    Microsoft Office Proof (Dutch) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (German) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (French) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Publisher MUI (French) 2007
    Microsoft Office Shared MUI (French) 2007
    Microsoft Office Word MUI (French) 2007
    Microsoft Silverlight
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable - KB2467175
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Works
    Microsoft XML Parser
    Mixed In Key 4
    Mozilla Firefox (3.6)
    MSXML 4.0 SP2 (KB941833)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    Native Instruments Absynth 5
    Native Instruments Controller Editor
    Native Instruments Massive
    Native Instruments Traktor
    Native Instruments Traktor 2
    Native Instruments Traktor DJ Studio 3
    NetWaiting
    O2Micro Flash Memory Card Reader Driver (x86)
    PDFCreator
    pdfforge Toolbar v4.4
    Ploytec MIDI USB driver
    QuickTime
    Rob Papen Albino 3
    ScanSoft PaperPort 11
    Security Update for 2007 Microsoft Office System (KB2288621)
    Security Update for 2007 Microsoft Office System (KB2288931)
    Security Update for 2007 Microsoft Office System (KB2345043)
    Security Update for 2007 Microsoft Office System (KB2466156)
    Security Update for 2007 Microsoft Office System (KB2509488)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Security Update for Microsoft Office Access 2007 (KB979440)
    Security Update for Microsoft Office Excel 2007 (KB2464583)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB2464594)
    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
    Security Update for Microsoft Office Publisher 2007 (KB2284697)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2344993)
    Security Update for Windows Media Encoder (KB2447961)
    Security Update for Windows Media Encoder (KB954156)
    Security Update for Windows Media Encoder (KB979332)
    Skins
    Skype™ 4.2
    SmartAudio
    Sonic Charge µTonic VST
    Sound Forge Pro 10.0
    Sylenth1 v2.01
    Synaptics Pointing Device Driver
    TOSHIBA ConfigFree
    TOSHIBA Disc Creator
    TOSHIBA DVD PLAYER
    TOSHIBA Extended Tiles for Windows Mobility Center
    TOSHIBA SD Memory Utilities
    TOSHIBA Supervisor Password
    TRDCReminder
    TRORDCLauncher
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office Outlook 2007 (KB2509470)
    Update for Outlook 2007 Junk Email Filter (KB2522999)
    VC80CRTRedist - 8.0.50727.4053
    VLC media player 1.0.1
    Windows Media Player Firefox Plugin
    XONE:2D USB ASIO driver
    Xvid 1.2.1 final uninstall
    .
    ==== End Of File ===========================
    10 Mai 2011 21:14:27

    Bonsoir
    On commence ta désinfection:

    Lire: Les toolbars c'est pas obligatoire!

    +++++++++++++++++++++++++++

  • Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi, désactive ton anti-virus et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Scanner.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\


    10 Mai 2011 22:42:31

    Sham_Rock a dit :
    Bonsoir
    On commence ta désinfection:

    Lire: Les toolbars c'est pas obligatoire!

    +++++++++++++++++++++++++++

  • Télécharge Ad-Remover]http://i263.photobucket.com/albums/ii126/Sham_Rock1/tlcharger.gifAd-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi, désactive ton anti-virus et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Scanner.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\



  • ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

    Mis à jour par TeamXscript le 12/04/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    Site web: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 22:40:06 le 10/05/2011, Mode normal

    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86)
    Tib@PC-DE-TIB (TOSHIBA Satellite A300)

    ============== RECHERCHE ==============

    Service: "Application Updater" Présent

    Dossier trouvé: C:\Program Files\Mozilla FireFox\extensions\{34EFA911-B536-4C08-BECE-CD5E55C875B0}
    Fichier trouvé: C:\Program Files\Mozilla FireFox\extensions\pdfforge@mybrowserbar.com
    Fichier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur OfferBox.lnk
    Dossier trouvé: C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
    Dossier trouvé: C:\Program Files\Application Updater
    Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato
    Dossier trouvé: C:\Users\Tib\AppData\Roaming\ClickPotatoLite
    Dossier trouvé: C:\Program Files\ClickPotatoLite
    Dossier trouvé: C:\ProgramData\ClickPotatoLiteSA
    Dossier trouvé: C:\Users\Tib\AppData\Roaming\CrazyLoader
    Dossier trouvé: C:\Users\Tib\AppData\LocalLow\pdfforge
    Dossier trouvé: C:\Program Files\pdfforge Toolbar
    Dossier trouvé: C:\ProgramData\ResultBar
    Dossier trouvé: C:\Program Files\ResultBar
    Dossier trouvé: C:\Users\Tib\AppData\LocalLow\Search Settings
    Dossier trouvé: C:\Program Files\Common Files\Spigot
    Dossier trouvé: C:\Users\Tib\AppData\Roaming\OfferBox
    Fichier trouvé: C:\Program Files\Mozilla Firefox\plugins\npclntax_ClickPotatoLiteSA.dll

    Clé trouvée: HKLM\Software\Classes\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAx.Info
    Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAx.Info.1
    Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles
    Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles.1
    Clé trouvée: HKLM\Software\Classes\MenuButtonIE.ButtonIE
    Clé trouvée: HKLM\Software\Classes\MenuButtonIE.ButtonIE.1
    Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter
    Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter.1
    Clé trouvée: HKLM\Software\Classes\AppID\MenuButtonIE.DLL
    Clé trouvée: HKLM\Software\Classes\AppID\{11C27351-716B-4052-9361-E3B0A3F8221C}
    Clé trouvée: HKLM\Software\Application Updater
    Clé trouvée: HKLM\Software\ClickPotatoLite
    Clé trouvée: HKLM\Software\OfferBox
    Clé trouvée: HKLM\Software\pdfforge
    Clé trouvée: HKLM\Software\ResultBar
    Clé trouvée: HKLM\Software\Search Settings
    Clé trouvée: HKCU\Software\ClickPotatoLiteSA
    Clé trouvée: HKCU\Software\Spointer
    Clé trouvée: HKCU\Software\AppDataLow\Software\pdfforge
    Clé trouvée: HKCU\Software\AppDataLow\Software\Search Settings
    Clé trouvée: HKLM\Software\Kantaris\OpenCandy
    Clé trouvée: HKLM\Software\Classes\Installer\Products\53F25BCB65C42F943A6DDFDE450B8174
    Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\53F25BCB65C42F943A6DDFDE450B8174
    Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{5791B7D3-8B34-4218-9750-6A8E45D0AD32}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}
    Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
    Clé trouvée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
    Clé trouvée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
    Clé trouvée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
    Clé trouvée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
    Clé trouvée: HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
    Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA}
    Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}

    Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790477B776595332AB96
    Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790477B776595130AF98
    Valeur trouvée: HKLM\Software\Mozilla\Firefox\Extensions|ClickPotatoLite@ClickPotatoLite.com
    Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|SearchSettings
    Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{B922D405-6D13-4A2B-AE89-08A030DA4402}


    ============== SCAN ADDITIONNEL ==============

    **** Mozilla Firefox Version [3.6 (fr)] ****

    Plugins\npclntax_ClickPotatoLiteSA.dll (Pinball Corporation.)
    Extensions\{34EFA911-B536-4C08-BECE-CD5E55C875B0} (ResultBar)
    HKLM_Extensions|ClickPotatoLite@ClickPotatoLite.com - C:\Program Files\ClickPotatoLite\bin\10.0.622.0\firefox\extensions
    HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
    HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa

    -- C:\Users\Tib\AppData\Roaming\Mozilla\FireFox\Profiles\j2fg5utc.default --
    Searchplugins\Search.xml (?)
    Prefs.js - browser.search.defaultenginename, Search
    Prefs.js - browser.search.defaulturl, hxxp://fl.iamwired.net/websearch.php?src=tops&search=
    Prefs.js - browser.search.selectedEngine, Search
    Prefs.js - browser.startup.homepage, hxxp://fl.iamwired.net/
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2
    Prefs.js - keyword.URL, hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=

    ========================================

    **** Google Chrome Version [11.0.696.65] ****

    Extension\bjeikeheijdjdfjbmknpefojickbkmom (C:\Program Files\OfferBox\OfferBoxChromeExtension.crx) (x)
    Extension\fnjbmmemklcjgepojigaapkoodmkgbae (C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx) (?)
    Extension\nneajnkjbffgblleaoojgaacokifdkhm (C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx) (?)

    -- C:\Users\Tib\AppData\Local\Google\Chrome\User Data\Default --
    Preferences - default_search_provider: "Google" (Activé: true) (hxxp://www.google.fr/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7;&rlz=1I7ADFA_fr)
    Plugin - ClickPotatoLite Firefox Plugin (Activé: true) (C:\Program Files\Mozilla Firefox\plugins\npclntax_ClickPotatoLiteSA.dll)
    Plugin - "Silverlight" (Activé: true)
    Plugin - "DivX Player" (Activé: true)
    Plugin - "ClickPotatoLite Firefox Plugin" (Activé: true)

    ========================================

    **** Internet Explorer Version [8.0.6001.19048] ****

    HKCU_Main|Default_Page_URL - hxxp://www.google.fr
    HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKCU_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://fl.iamwired.net/
    HKLM_Main|Default_Page_URL - hxxp://www.google.fr
    HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://go.microsoft.com/fwlink/?LinkId=69157
    HKCU_URLSearchHooks|{B922D405-6D13-4A2B-AE89-08A030DA4402} - "pdfforge Toolbar" (C:\Program Files\pdfforge Toolbar\IE\4.4\pdfforgeToolbarIE.dll)
    HKCU_SearchScopes\{669F3B42-B209-4378-85DB-ED0F0AFB719A} - "Search" (hxxp://fl.iamwired.net/websearch.php?src=tops&search={SearchTerms})
    HKLM_Toolbar|{B922D405-6D13-4A2B-AE89-08A030DA4402} (C:\Program Files\pdfforge Toolbar\IE\4.4\pdfforgeToolbarIE.dll)
    HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC)
    HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files\DivX\DivX Plus Web Player\dwpBroker.exe (DivX, LLC)
    HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
    HKLM_ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} - C:\Program Files\ClickPotatoLite\bin\10.0.622.0\Weather.exe (x)
    HKLM_ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\WidgiHelper.exe (Spigot, Inc.)
    HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.)
    HKLM_Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - "?" (?)
    HKLM_Extensions\{76577871-04EC-495E-A12B-91F7C3600AFA} - "eBay - Achetez, Vendez" (C:\Toshiba\Webshops\ebay.ico)
    HKLM_Extensions\{8A918C1D-E123-4E36-B562-5C1519E434CE} - "Amazon.fr" (C:\Toshiba\Webshops\amazon.ico)
    BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll)
    BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll)
    BHO\{B922D405-6D13-4A2B-AE89-08A030DA4402} - "pdfforge Toolbar" (C:\Program Files\pdfforge Toolbar\IE\4.4\pdfforgeToolbarIE.dll)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
    C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)

    C:\Ad-Report-SCAN[1].txt - 10/05/2011 22:40:15 (10460 Octet(s))

    Fin à: 22:40:55, 10/05/2011

    ============== E.O.F ==============

    10 Mai 2011 23:31:55

    re


  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Nettoyer.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\

    +++++++++++++++++++++++++
    10 Mai 2011 23:59:47

    Sham_Rock a dit :
    re


  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Nettoyer.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\

    +++++++++++++++++++++++++


  • Re Mr, et merci encore de bien vouloir m'aider t'assures ;) 

    ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

    Mis à jour par TeamXscript le 12/04/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    Site web: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 23:38:37 le 10/05/2011, Mode normal

    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86)
    Tib@PC-DE-TIB (TOSHIBA Satellite A300)

    ============== ACTION(S) ==============


    Dossier supprimé: C:\Users\Tib\AppData\Roaming\ClickPotatoLite
    Dossier supprimé: C:\Program Files\ClickPotatoLite
    Dossier supprimé: C:\ProgramData\ClickPotatoLiteSA
    Dossier supprimé: C:\Users\Tib\AppData\Roaming\CrazyLoader
    Dossier supprimé: C:\Users\Tib\AppData\LocalLow\pdfforge
    Dossier supprimé: C:\Program Files\pdfforge Toolbar
    Dossier supprimé: C:\ProgramData\ResultBar
    Dossier supprimé: C:\Program Files\ResultBar
    Dossier supprimé: C:\Users\Tib\AppData\LocalLow\Search Settings
    Dossier supprimé: C:\Program Files\Common Files\Spigot
    Dossier supprimé: C:\Users\Tib\AppData\Roaming\OfferBox
    Fichier supprimé: C:\Program Files\Mozilla Firefox\plugins\npclntax_ClickPotatoLiteSA.dll

    (!) -- Fichiers temporaires supprimés.


    Clé supprimée: HKLM\Software\Classes\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAx.Info
    Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAx.Info.1
    Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles
    Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles.1
    Clé supprimée: HKLM\Software\Classes\MenuButtonIE.ButtonIE
    Clé supprimée: HKLM\Software\Classes\MenuButtonIE.ButtonIE.1
    Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter
    Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter.1
    Clé supprimée: HKLM\Software\Classes\AppID\MenuButtonIE.DLL
    Clé supprimée: HKLM\Software\Classes\AppID\{11C27351-716B-4052-9361-E3B0A3F8221C}
    Clé supprimée: HKLM\Software\Application Updater
    Clé supprimée: HKLM\Software\ClickPotatoLite
    Clé supprimée: HKLM\Software\OfferBox
    Clé supprimée: HKLM\Software\pdfforge
    Clé supprimée: HKLM\Software\ResultBar
    Clé supprimée: HKLM\Software\Search Settings
    Clé supprimée: HKCU\Software\ClickPotatoLiteSA
    Clé supprimée: HKCU\Software\Spointer
    Clé supprimée: HKCU\Software\AppDataLow\Software\pdfforge
    Clé supprimée: HKCU\Software\AppDataLow\Software\Search Settings
    Clé supprimée: HKLM\Software\Kantaris\OpenCandy
    Clé supprimée: HKLM\Software\Classes\Installer\Products\53F25BCB65C42F943A6DDFDE450B8174
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\53F25BCB65C42F943A6DDFDE450B8174
    Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{5791B7D3-8B34-4218-9750-6A8E45D0AD32}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
    Clé supprimée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
    Clé supprimée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
    Clé supprimée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
    Clé supprimée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
    Clé supprimée: HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}

    Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790477B776595332AB96
    Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790477B776595130AF98
    Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|ClickPotatoLite@ClickPotatoLite.com
    Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|SearchSettings
    Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{B922D405-6D13-4A2B-AE89-08A030DA4402}


    ============== SCAN ADDITIONNEL ==============

    **** Mozilla Firefox Version [3.6 (fr)] ****

    HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
    HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa

    -- C:\Users\Tib\AppData\Roaming\Mozilla\FireFox\Profiles\j2fg5utc.default --
    Searchplugins\Search.xml (?)
    Prefs.js - browser.search.defaultenginename, Search
    Prefs.js - browser.search.defaulturl, hxxp://fl.iamwired.net/websearch.php?src=tops&search=
    Prefs.js - browser.search.selectedEngine, Search
    Prefs.js - browser.startup.homepage, hxxp://fl.iamwired.net/
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2
    Prefs.js - keyword.URL, hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=

    ========================================

    **** Google Chrome Version [11.0.696.65] ****

    Extension\fnjbmmemklcjgepojigaapkoodmkgbae (C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx) (?)
    Extension\nneajnkjbffgblleaoojgaacokifdkhm (C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx) (?)

    -- C:\Users\Tib\AppData\Local\Google\Chrome\User Data\Default --
    Preferences - default_search_provider: "Google" (Activé: true) (hxxp://www.google.fr/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7;&rlz=1I7ADFA_fr)
    Plugin - ClickPotatoLite Firefox Plugin (Activé: true) (C:\Program Files\Mozilla Firefox\plugins\npclntax_ClickPotatoLiteSA.dll) (x)
    Plugin - "Silverlight" (Activé: true)
    Plugin - "DivX Player" (Activé: true)
    Plugin - "ClickPotatoLite Firefox Plugin" (Activé: true)

    ========================================

    **** Internet Explorer Version [8.0.6001.19048] ****

    HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
    HKCU_Main|Start Page - hxxp://fr.msn.com/
    HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
    HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Start Page - hxxp://fr.msn.com/
    HKCU_URLSearchHooks|{B922D405-6D13-4A2B-AE89-08A030DA4402} (x)
    HKCU_SearchScopes\{669F3B42-B209-4378-85DB-ED0F0AFB719A} - "Search" (hxxp://fl.iamwired.net/websearch.php?src=tops&search={SearchTerms})
    HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC)
    HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files\DivX\DivX Plus Web Player\dwpBroker.exe (DivX, LLC)
    HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
    HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.)
    HKLM_Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - "?" (?)
    HKLM_Extensions\{76577871-04EC-495E-A12B-91F7C3600AFA} - "eBay - Achetez, Vendez" (C:\Toshiba\Webshops\ebay.ico)
    HKLM_Extensions\{8A918C1D-E123-4E36-B562-5C1519E434CE} - "Amazon.fr" (C:\Toshiba\Webshops\amazon.ico)
    BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll)
    BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 92 Fichier(s)
    C:\Program Files\Ad-Remover\Backup: 16 Fichier(s)

    C:\Ad-Report-CLEAN[1].txt - 10/05/2011 23:36:34 (1017 Octet(s))
    C:\Ad-Report-CLEAN[2].txt - 10/05/2011 23:38:40 (9342 Octet(s))
    C:\Ad-Report-SCAN[1].txt - 10/05/2011 22:40:15 (10599 Octet(s))

    Fin à: 23:39:30, 10/05/2011

    ============== E.O.F ==============
    11 Mai 2011 09:55:25

    bonjour :) 
    met à jour Malwarebytes' Anti-Malware , fais un scan avec et poste le rapport


    Aide :
  • Comment utiliser MBAM.
    11 Mai 2011 11:47:39

    Sham_Rock a dit :
    bonjour :) 
    met à jour Malwarebytes' Anti-Malware , fais un scan avec et poste le rapport


    Aide :
  • Comment utiliser MBAM.



  • Bonjour Sham_Rock,

    Voici le Rapport après avoir elimité 8 fichiers nuisibles...


    Malwarebytes' Anti-Malware 1.50.1.1100
    www.malwarebytes.org

    Version de la base de données: 6552

    Windows 6.0.6002 Service Pack 2
    Internet Explorer 8.0.6001.19048

    11/05/2011 11:46:05
    mbam-log-2011-05-11 (11-46-05).txt

    Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
    Elément(s) analysé(s): 329225
    Temps écoulé: 1 heure(s), 19 minute(s), 4 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 8

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    c:\program files\ad-remover\quarantine\C\program files\clickpotatolite\bin\10.0.622.0\launchhelp.dll.vir (Adware.Seekmo) -> Quarantined and deleted successfully.
    c:\program files\ad-remover\quarantine\C\program files\clickpotatolite\bin\10.0.622.0\firefox\extensions\plugins\npclntax_clickpotatolitesa.dll.vir (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\program files\ad-remover\quarantine\C\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.vir (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\program files\ad-remover\quarantine\C\program files\mozilla firefox\plugins\npclntax_clickpotatolitesa.dll.vir (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\Temp\xvid-win32.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
    c:\Users\Tib\AppData\Local\security tool.exe (Rogue.SecurityTool) -> Quarantined and deleted successfully.
    c:\Users\Tib\AppData\Local\Temp\loop.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    e:\logiciels\cycling.74.maxmsp.v5.1.0-lz0\nfoviewer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    11 Mai 2011 18:07:12

    re
    Citation :
    c:\Users\Tib\AppData\Local\security tool.exe (Rogue.SecurityTool) -> Quarantined and deleted successfully.


    Je préfère vérifier que tout est propre...

    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>

    +++++++++++++++++++++
    12 Mai 2011 13:59:57

    Sham_Rock a dit :
    re
    Citation :
    c:\Users\Tib\AppData\Local\security tool.exe (Rogue.SecurityTool) -> Quarantined and deleted successfully.


    Je préfère vérifier que tout est propre...

    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix]http://i263.photobucket.com/albums/ii126/Sham_Rock1/tlcharger.gif Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>

    +++++++++++++++++++++



    Hello, j'ai bien fait la manipulation 2 fois. Par contre j'ai toujours les memes messages en bas a droite de mon ecran qui me disent que dans le dossier Data app, des fichiers sont endommagés... je ne sais pas de quoi ca peut venir??? Cf photo en piece jointe \"Hebergement " alt="" class="imgLz frmImg " />


    et voici le rapport comme convenu


    ComboFix 11-05-11.02 - Tib 12/05/2011 13:35:29.2.2 - x86
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3070.2161 [GMT 2:00]
    Lancé depuis: c:\users\Tib\Desktop\Downloads\ComboFix.exe
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2011-04-12 au 2011-05-12 ))))))))))))))))))))))))))))))))))))
    .
    .
    2011-05-12 11:40 . 2011-05-12 11:40 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-05-10 21:41 . 2011-05-12 09:38 17408 ----a-w- c:\windows\system32\rpcnetp.dll
    2011-05-10 21:40 . 2011-05-12 09:37 17408 ----a-w- c:\windows\system32\rpcnetp.exe
    2011-05-10 21:25 . 2011-04-11 07:04 7071056 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B78384D9-7273-4786-AD32-8A5C09C46D40}\mpengine.dll
    2011-05-10 20:40 . 2011-05-10 20:40 -------- d-----w- c:\program files\Ad-Remover
    2011-05-06 20:53 . 2011-05-06 20:53 -------- d-----w- c:\users\Tib\AppData\Roaming\Publish Providers
    2011-05-06 20:51 . 2011-05-06 20:51 -------- d-----w- c:\users\Tib\AppData\Local\Sony
    2011-05-06 20:39 . 2011-05-06 20:39 -------- d-----w- c:\programdata\Sony
    2011-05-06 20:39 . 2011-05-06 20:39 -------- d-----w- c:\program files\Sony
    2011-05-06 20:36 . 2011-05-06 20:53 -------- d-----w- c:\users\Tib\AppData\Roaming\Sony
    2011-04-16 14:59 . 2011-04-16 14:59 -------- d-----w- c:\programdata\WindowsSearch
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-05-10 19:33 . 2010-02-18 11:29 44544 ----a-w- c:\windows\system32\agremove.exe
    2011-02-15 20:33 . 2010-08-25 21:36 34816 ----a-w- c:\windows\system32\identprv.dll
    2011-02-11 14:43 . 2011-02-11 14:43 1700352 ----a-w- c:\windows\system32\gdiplus.dll
    .
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-02-22 26101032]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-29 1029416]
    "Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2007-05-04 571024]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2010-09-24 40368]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
    "SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
    "PaperPort PTD"="c:\program files\ScanSoft\PaperPort\pptd40nt.exe" [2007-10-11 29984]
    "IndexSearch"="c:\program files\ScanSoft\PaperPort\IndexSearch.exe" [2007-10-11 46368]
    "PPort11reminder"="c:\program files\ScanSoft\PaperPort\Ereg\Ereg.exe" [2007-08-31 328992]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-12-13 421160]
    "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-01-10 1230704]
    "DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
    .
    c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    TRDCReminder.lnk - c:\program files\Toshiba\TRDCReminder\TRDCReminder.exe [2007-7-27 389120]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    2010-09-24 09:15 40368 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    2007-09-25 00:11 132496 ----a-w- c:\program files\Java\jre1.6.0_03\bin\jusched.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
    "DisableMonitoring"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1543374950-1040591033-837338934-1000]
    "EnableNotificationsRef"=dword:00000002
    .
    R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys [2002-07-17 84832]
    R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [x]
    R3 MAUSBFASTTRACKPRO;Service for M-Audio FastTrack Pro;c:\windows\system32\DRIVERS\MAudioFastTrackPro.sys [x]
    R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl.sys [2010-04-19 18432]
    R3 PTMIDICHIP;Ploytec MIDI-CHIP driver service;c:\windows\system32\drivers\xonemidi.sys [2007-06-06 21504]
    R3 XONE_2D;usb-audio.de driver for Allen & Heath XONE:2D;c:\windows\system32\Drivers\XONE_2D.sys [2008-02-22 348160]
    R3 XONE_2D_WDM;XONE:2D WDM Audio;c:\windows\system32\drivers\XONE_2DW.sys [2008-02-22 34304]
    R3 XONE_2DM;XONE:2D WDM Midi Device;c:\windows\system32\drivers\XONE_2dm.sys [2008-02-22 18944]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-04 218688]
    S2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [2007-12-25 40960]
    S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2011-03-09 3857408]
    S3 CnxtHdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service;c:\windows\system32\drivers\CHDART.sys [2008-02-01 187904]
    S3 O2MDRDR;O2MDRDR;c:\windows\system32\DRIVERS\o2media.sys [2008-01-15 48472]
    S3 QIOMem;Generic IO & Memory Access;c:\windows\system32\DRIVERS\QIOMem.sys [2007-04-09 8192]
    .
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2011-05-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1543374950-1040591033-837338934-1000Core.job
    - c:\users\Tib\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-08 23:59]
    .
    2011-05-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1543374950-1040591033-837338934-1000UA.job
    - c:\users\Tib\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-08 23:59]
    .
    .
    ------- Examen supplémentaire -------
    .
    uInternet Settings,ProxyOverride = *.local
    IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    FF - ProfilePath - c:\users\Tib\AppData\Roaming\Mozilla\Firefox\Profiles\j2fg5utc.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://fl.iamwired.net/websearch.php?src=tops&search=
    FF - prefs.js: browser.startup.homepage - hxxp://fl.iamwired.net/
    FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
    FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\html5video
    FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\DivX\DivX Plus Web Player\firefox\wpa
    FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2011-05-12 13:40
    Windows 6.0.6002 Service Pack 2 NTFS
    .
    Recherche de processus cachés ...
    .
    Recherche d'éléments en démarrage automatique cachés ...
    .
    Recherche de fichiers cachés ...
    .
    Scan terminé avec succès
    Fichiers cachés: 0
    .
    **************************************************************************
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    Heure de fin: 2011-05-12 13:42:26
    ComboFix-quarantined-files.txt 2011-05-12 11:42
    ComboFix2.txt 2011-05-12 09:44
    .
    Avant-CF: 34 937 413 632 octets libres
    Après-CF: 34 904 334 336 octets libres
    .
    - - End Of File - - A6AE90B4EC9806349CBFE7C91E2D6CA3

    12 Mai 2011 21:40:08

    Sham_Rock a dit :
    Bonsoir
    tu as ton dvd de vista?
    tuto:
    http://www.vista-xp.fr/forum/topic428.html#p1428


    Et bien non justement, je suis emmerdé car j'avais gravé les Dvd que je ne rtrouvent plus... et la avec cette histoire de fichiers endommagés je ne peut pas utiliser le Toshiba Recovery... suis blazé...
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS