Se connecter / S'enregistrer
Votre question

CID Je vais péter un cable

Tags :
  • Acer
  • Sécurité
Dernière réponse : dans Sécurité et virus
26 Juin 2008 00:13:35

Bonsoir a tous!!!

en cherchant a supprimer les CID :fou:  , je suis tombé sur vous et donc je voulais tenter ma chance aussi. donc je suis sous vista et j'ai depuis quelques temps des CID, j'ai deja téléchargé Hijackthis dont je poste mon rapport jusque la j'ai réussi a suivre mais mnt j'ai besoin de votre aide merci d'avance par ce que j'y pige rien du tout a très vite ciao à tous.

Logfile of HijackThis v1.99.1
Scan saved at 23:24:55, on 25/06/2008
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Users\xav'\Desktop\Hijackthis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [LaunchAp] "C:\Program Files\Launch Manager\LaunchAp.exe"
O4 - HKLM\..\Run: [LManager] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /QS
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [drv acid] "C:\ProgramData\EncCopyCopy.cbwyg8s"
O4 - HKCU\..\Run: [SHIM LINK FREE BALL] "C:\ProgramData\Sect bows army.wjprl4"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/VistaMSNPUpld...
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0....
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O20 - AppInit_DLLs: eNetHook.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Autres pages sur : cid vais peter cable

26 Juin 2008 00:20:02

:hello:  Bonsoir, voire bonne nuit :D 

Tu as utilisé une mauvaise version d'hijackthis. Désinstalle-la.

Télécharge et installe la celle que je t'ai donnée dans mon lien ( à lire ! ).
Hijackthis
Une fois cela fait, poste-moi un nouveau rapport fait avec la version que je t'ai donnée.

***

Télécharge Lop S&D.exe (d’ Eric 71 & Angeldark) sur ton bureau.

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)

    Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau


    ;) 
    26 Juin 2008 00:51:15

    Décidément tu dors jamais!!! bon je t'envoi le rapport !!! et merci encor de t'interessé a mon probleme je croi ke j'allais finir par bazarder mon PC !!!Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:53:06, on 26/06/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16681)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\RtHDVCpl.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Launch Manager\LaunchAp.exe
    C:\Program Files\Launch Manager\HotkeyApp.exe
    C:\Program Files\Launch Manager\OSDCtrl.exe
    C:\Program Files\Launch Manager\WButton.exe
    C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Registry Mechanic\RMTray.exe
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
    C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
    C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Windows\system32\NOTEPAD.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\Windows\system32\SearchFilterHost.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    O4 - HKLM\..\Run: [LaunchAp] "C:\Program Files\Launch Manager\LaunchAp.exe"
    O4 - HKLM\..\Run: [LManager] "C:\Program Files\Launch Manager\HotkeyApp.exe"
    O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"
    O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /QS
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [drv acid] "C:\ProgramData\EncCopyCopy.cbwyg8s"
    O4 - HKCU\..\Run: [SHIM LINK FREE BALL] "C:\ProgramData\Sect bows army.wjprl4"
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O13 - Gopher Prefix:
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/VistaMSNPUpld...
    O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0....
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: eNetHook.dll
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
    O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
    O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
    O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
    O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
    O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe

    --
    End of file - 13109 bytes
    Contenus similaires
    26 Juin 2008 01:16:24

    bon ca y est j'ai le rapport Lop S&d je te le poste!.!.!. par expliques bien le smanipes après merci d'avant a très vite jspr...



    -----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

    [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
    [ USER : xav' ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 26/06/2008 | 1:02:59,09 ] [ PC : PC-DE-XAV ]
    [ MAJ : 24-06-2008 | 11:00 ]
    [ UAC => 0 ]

    -------------[ Listing des dossiers dans Roaming ]------------

    [28/02/2008|02:03] C:\Users\xav'\AppData\Roaming\Adobe\Linguistics
    [14/02/2008|18:43] C:\Users\xav'\AppData\Roaming\Adobe\Flash Player
    [21/07/2007|13:21] C:\Users\xav'\AppData\Roaming\Adobe\Acrobat


    [08/05/2008|15:48] C:\Users\xav'\AppData\Roaming\Apple Computer\iTunes

    [15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\PowerProducer
    [15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\PowerDVD
    [15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\MediaCache
    [20/07/2007|22:00] C:\Users\xav'\AppData\Roaming\CyberLink\PowerCinema

    [24/07/2007|01:00] C:\Users\xav'\AppData\Roaming\DivX\DivX Player
    [22/07/2007|23:54] C:\Users\xav'\AppData\Roaming\DivX\DivX Codec

    [11/03/2008|20:59] C:\Users\xav'\AppData\Roaming\erreurchasseur\Logs


    [23/05/2008|18:56] C:\Users\xav'\AppData\Roaming\Google\GoogleEarth
    [16/05/2008|19:25] C:\Users\xav'\AppData\Roaming\Google\Local Search History

    [25/06/2008|23:19] C:\Users\xav'\AppData\Roaming\HP\CRMLogs
    [26/07/2007|00:37] C:\Users\xav'\AppData\Roaming\HP\Digital Imaging
    [26/07/2007|00:36] C:\Users\xav'\AppData\Roaming\HP\ScLogs

    [21/07/2007|19:16] C:\Users\xav'\AppData\Roaming\Identities\{AC01ECDF-AE09-4213-8F02-4B03BD0F7B58}


    [01/03/2008|01:38] C:\Users\xav'\AppData\Roaming\LimeWire\xml
    [01/03/2008|01:25] C:\Users\xav'\AppData\Roaming\LimeWire\.AppSpecialShare
    [01/03/2008|01:25] C:\Users\xav'\AppData\Roaming\LimeWire\themes

    [21/07/2007|19:57] C:\Users\xav'\AppData\Roaming\Macromedia\Flash Player


    [25/06/2008|23:11] C:\Users\xav'\AppData\Roaming\Microsoft\Excel
    [24/06/2008|20:06] C:\Users\xav'\AppData\Roaming\Microsoft\preuve
    [17/06/2008|11:24] C:\Users\xav'\AppData\Roaming\Microsoft\Word
    [26/05/2008|13:33] C:\Users\xav'\AppData\Roaming\Microsoft\Clip Organizer
    [22/05/2008|10:20] C:\Users\xav'\AppData\Roaming\Microsoft\Office
    [18/05/2008|00:25] C:\Users\xav'\AppData\Roaming\Microsoft\Windows Photo Gallery
    [16/04/2008|18:50] C:\Users\xav'\AppData\Roaming\Microsoft\Outlook
    [10/04/2008|23:28] C:\Users\xav'\AppData\Roaming\Microsoft\IdentityCRL
    [16/03/2008|20:37] C:\Users\xav'\AppData\Roaming\Microsoft\MSN Messenger
    [01/03/2008|03:20] C:\Users\xav'\AppData\Roaming\Microsoft\Access
    [22/01/2008|18:07] C:\Users\xav'\AppData\Roaming\Microsoft\ModŠles
    [24/12/2007|19:51] C:\Users\xav'\AppData\Roaming\Microsoft\PowerPoint
    [02/12/2007|18:39] C:\Users\xav'\AppData\Roaming\Microsoft\CLR Security Config
    [16/10/2007|07:48] C:\Users\xav'\AppData\Roaming\Microsoft\HTML Help
    [09/10/2007|17:27] C:\Users\xav'\AppData\Roaming\Microsoft\IMJP10
    [19/09/2007|23:22] C:\Users\xav'\AppData\Roaming\Microsoft\Forms
    [09/08/2007|23:48] C:\Users\xav'\AppData\Roaming\Microsoft\Internet Explorer
    [02/08/2007|22:08] C:\Users\xav'\AppData\Roaming\Microsoft\Crypto
    [25/07/2007|23:15] C:\Users\xav'\AppData\Roaming\Microsoft\Installer
    [23/07/2007|00:59] C:\Users\xav'\AppData\Roaming\Microsoft\eHome
    [22/07/2007|14:32] C:\Users\xav'\AppData\Roaming\Microsoft\FrontPage
    [22/07/2007|12:44] C:\Users\xav'\AppData\Roaming\Microsoft\Speech
    [21/07/2007|19:16] C:\Users\xav'\AppData\Roaming\Microsoft\SystemCertificates
    [21/07/2007|19:15] C:\Users\xav'\AppData\Roaming\Microsoft\Protect
    [21/07/2007|19:15] C:\Users\xav'\AppData\Roaming\Microsoft\Credentials
    [20/07/2007|22:42] C:\Users\xav'\AppData\Roaming\Microsoft\Macros compl‚mentaires
    [20/07/2007|22:20] C:\Users\xav'\AppData\Roaming\Microsoft\MMC
    [20/07/2007|22:16] C:\Users\xav'\AppData\Roaming\Microsoft\Windows



    [28/04/2008|18:24] C:\Users\xav'\AppData\Roaming\OpenOffice.org2\user


    [21/06/2008|16:36] C:\Users\xav'\AppData\Roaming\Planit International\Fusion


    [24/06/2008|23:55] C:\Users\xav'\AppData\Roaming\Real\RealPlayer
    [16/06/2008|15:20] C:\Users\xav'\AppData\Roaming\Real\Msg
    [30/09/2007|22:38] C:\Users\xav'\AppData\Roaming\Real\RealMediaSDK
    [28/09/2007|17:56] C:\Users\xav'\AppData\Roaming\Real\rnadmin


    [10/06/2008|17:39] C:\Users\xav'\AppData\Roaming\Shareaza\Data
    [10/06/2008|17:38] C:\Users\xav'\AppData\Roaming\Shareaza\Collections
    [22/01/2008|18:15] C:\Users\xav'\AppData\Roaming\Shareaza\Torrents

    [26/12/2007|20:16] C:\Users\xav'\AppData\Roaming\Skype\xavilou69
    [24/10/2007|22:06] C:\Users\xav'\AppData\Roaming\Skype\xavilou

    [20/07/2007|22:47] C:\Users\xav'\AppData\Roaming\Sun\Java


    [21/07/2007|20:05] C:\Users\xav'\AppData\Roaming\vlc\cache


    ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

    [25/06/2008 03:29][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{18BA6263-5F55-4A79-8C97-9C10951C1D8F}.job
    [20/06/2008 20:13][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - xav'.job
    [26/06/2008 01:02][--ah-----] C:\Windows\tasks\SA.DAT
    [26/06/2008 01:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    ------[ Listing des dossiers dans C:\ProgramData ]------

    [10/12/2006|12:26] C:\ProgramData\Adobe
    [02/04/2008|13:30] C:\ProgramData\Apple
    [14/04/2008|23:01] C:\ProgramData\Apple Computer
    [02/11/2006|15:02] C:\ProgramData\Application Data
    [24/06/2008|11:30] C:\ProgramData\BOONTY
    [21/07/2007|19:14] C:\ProgramData\Bureau
    [22/01/2008|17:32] C:\ProgramData\CyberLink
    [02/11/2006|15:02] C:\ProgramData\Desktop
    [02/11/2006|15:02] C:\ProgramData\Documents
    [13/06/2008|02:44] C:\ProgramData\EncCopyCopy.8no5t
    [05/05/2008|16:58] C:\ProgramData\EncCopyCopy.afy4s
    [13/06/2008|03:05] C:\ProgramData\EncCopyCopy.cbwyg8s
    [05/05/2008|16:58] C:\ProgramData\EncCopyCopy.u2lxw8
    [10/02/2008|23:10] C:\ProgramData\eSellerate
    [21/07/2007|19:14] C:\ProgramData\Favoris
    [02/11/2006|15:02] C:\ProgramData\Favorites
    [22/07/2007|00:18] C:\ProgramData\Google
    [25/06/2008|03:46] C:\ProgramData\Google Updater
    [05/05/2008|16:59] C:\ProgramData\hide cool shim link
    [26/07/2007|00:36] C:\ProgramData\HP
    [26/07/2007|00:22] C:\ProgramData\HPSSUPPLY
    [16/06/2008|07:43] C:\ProgramData\hpzinstall.log
    [21/07/2007|19:16] C:\ProgramData\InstallShield
    [21/07/2007|19:14] C:\ProgramData\Menu D‚marrer
    [20/07/2007|22:33] C:\ProgramData\Microsoft
    [21/07/2007|19:14] C:\ProgramData\ModŠles
    [05/05/2008|16:59] C:\ProgramData\oncereal
    [21/06/2008|16:36] C:\ProgramData\Planit Fusion Live But
    [05/05/2008|16:59] C:\ProgramData\Sect bows army.wjprl4
    [24/10/2007|22:01] C:\ProgramData\Skype
    [02/11/2006|15:02] C:\ProgramData\Start Menu
    [25/03/2008|02:38] C:\ProgramData\Symantec
    [02/11/2006|15:02] C:\ProgramData\Templates
    [26/07/2007|00:23] C:\ProgramData\WEBREG
    [10/04/2008|23:31] C:\ProgramData\WLInstaller

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [10/12/2006|12:33] C:\Program Files\Acer Arcade Deluxe
    [21/07/2007|19:15] C:\Program Files\Acer Inc
    [10/12/2006|12:26] C:\Program Files\Adobe
    [08/06/2008|22:16] C:\Program Files\Alwil Software
    [02/04/2008|13:34] C:\Program Files\Apple Software Update
    [05/05/2008|16:58] C:\Program Files\BitTorrent Fastest Tool
    [02/04/2008|13:38] C:\Program Files\Bonjour
    [24/06/2008|11:29] C:\Program Files\Common Files
    [10/12/2006|12:35] C:\Program Files\CyberLink
    [01/09/2007|00:45] C:\Program Files\desktop.ini
    [23/04/2008|20:00] C:\Program Files\DivX
    [01/03/2008|02:09] C:\Program Files\DomPlayer
    [08/11/2007|20:46] C:\Program Files\EPSON
    [21/07/2007|19:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [28/05/2008|09:34] C:\Program Files\Google
    [26/07/2007|00:18] C:\Program Files\Hewlett-Packard
    [26/07/2007|00:22] C:\Program Files\Hp
    [23/06/2008|23:15] C:\Program Files\InstallShield Installation Information
    [02/12/2006|20:41] C:\Program Files\Intel
    [13/06/2008|03:10] C:\Program Files\Internet Explorer
    [14/04/2008|23:01] C:\Program Files\iPod
    [14/04/2008|23:01] C:\Program Files\iTunes
    [05/05/2008|18:01] C:\Program Files\Java
    [09/04/2007|13:45] C:\Program Files\Launch Manager
    [05/05/2008|21:29] C:\Program Files\Messenger
    [24/09/2007|16:59] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [02/11/2006|14:37] C:\Program Files\Microsoft Games
    [20/07/2007|22:35] C:\Program Files\Microsoft Office
    [14/11/2007|23:04] C:\Program Files\Microsoft SQL Server Compact Edition
    [10/12/2006|22:06] C:\Program Files\Movie Maker
    [02/11/2006|14:37] C:\Program Files\MSBuild
    [10/02/2008|23:37] C:\Program Files\MSN
    [21/07/2007|20:07] C:\Program Files\MSXML 4.0
    [10/12/2006|12:34] C:\Program Files\NewTech Infosystems
    [29/11/2007|21:10] C:\Program Files\Norton Internet Security
    [23/06/2008|22:30] C:\Program Files\OpenOffice.org 2.4
    [13/04/2008|13:02] C:\Program Files\Picasa2
    [14/04/2008|23:00] C:\Program Files\QuickTime
    [28/09/2007|17:56] C:\Program Files\Real
    [02/12/2006|20:50] C:\Program Files\Realtek
    [02/11/2006|14:37] C:\Program Files\Reference Assemblies
    [06/06/2008|23:35] C:\Program Files\Registry Mechanic
    [22/07/2007|23:55] C:\Program Files\RM-X Player V5.0
    [22/07/2007|23:45] C:\Program Files\RM-X© Joog
    [22/01/2008|18:15] C:\Program Files\Shareaza
    [17/01/2008|11:21] C:\Program Files\Shareaza Applications
    [24/10/2007|22:01] C:\Program Files\Skype
    [10/02/2008|23:52] C:\Program Files\StuffPlug3
    [03/10/2007|21:47] C:\Program Files\Symantec
    [02/12/2006|20:58] C:\Program Files\Synaptics
    [13/03/2008|17:05] C:\Program Files\SystemRequirementsLab
    [24/06/2008|11:31] C:\Program Files\T‚l‚chargeur de Appartement 3D - Edition 2007
    [26/06/2008|00:52] C:\Program Files\Trend Micro
    [21/08/2007|19:24] C:\Program Files\TRIBOFILM Industries
    [02/11/2006|15:01] C:\Program Files\Uninstall Information
    [21/07/2007|20:03] C:\Program Files\VideoLAN
    [29/08/2007|18:43] C:\Program Files\Windows Calendar
    [10/12/2006|22:06] C:\Program Files\Windows Collaboration
    [21/07/2007|20:17] C:\Program Files\Windows Defender
    [10/12/2006|22:06] C:\Program Files\Windows Journal
    [25/06/2008|23:34] C:\Program Files\Windows Live
    [13/06/2008|03:10] C:\Program Files\Windows Mail
    [11/10/2007|15:35] C:\Program Files\Windows Media Player
    [21/07/2007|19:14] C:\Program Files\Windows NT
    [10/12/2006|22:06] C:\Program Files\Windows Photo Gallery
    [09/01/2008|04:04] C:\Program Files\Windows Sidebar
    [22/07/2007|00:21] C:\Program Files\WinRAR
    [05/05/2008|17:57] C:\Program Files\Yahoo!

    ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

    [10/12/2006|12:26] C:\Program Files\Common Files\Adobe
    [02/04/2008|13:30] C:\Program Files\Common Files\Apple
    [24/06/2008|11:29] C:\Program Files\Common Files\BOONTY Shared
    [20/07/2007|22:36] C:\Program Files\Common Files\Designer
    [11/03/2008|20:54] C:\Program Files\Common Files\ErreurChasseur
    [26/07/2007|00:18] C:\Program Files\Common Files\Hewlett-Packard
    [26/07/2007|00:21] C:\Program Files\Common Files\HP
    [21/07/2007|19:15] C:\Program Files\Common Files\InstallShield
    [20/07/2007|22:47] C:\Program Files\Common Files\Java
    [10/12/2006|12:34] C:\Program Files\Common Files\LightScribe
    [14/11/2007|22:17] C:\Program Files\Common Files\microsoft shared
    [10/12/2006|12:34] C:\Program Files\Common Files\muvee Technologies
    [10/12/2006|12:34] C:\Program Files\Common Files\NewTech Infosystems
    [12/08/2007|20:46] C:\Program Files\Common Files\PX Storage Engine
    [16/06/2008|15:16] C:\Program Files\Common Files\Real
    [02/11/2006|13:18] C:\Program Files\Common Files\Services
    [24/10/2007|22:01] C:\Program Files\Common Files\Skype
    [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
    [21/07/2007|20:19] C:\Program Files\Common Files\Symantec Shared
    [20/07/2007|22:35] C:\Program Files\Common Files\System
    [14/11/2007|22:17] C:\Program Files\Common Files\WindowsLiveInstaller
    [23/06/2008|02:01] C:\Program Files\Common Files\Wise Installation Wizard
    [16/06/2008|15:16] C:\Program Files\Common Files\xing shared

    ---------------------------[ Process ]--------------------------

    ... 91

    iexplore.exe ~ [3324]

    ----------------------[ Recherche avec S_Lop ]---------------------

    C:\ProgramData\Sect bows army.wjprl4
    C:\Users\xav'\AppData\Local\Temp\bis76C.exe

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\ProgramData\hide cool shim link
    C:\ProgramData\hide cool shim link\Title dead.exe
    C:\Program Files\BitTorrent Fastest Tool
    C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
    C:\Program Files\BitTorrent Fastest Tool\BitP.exe
    C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
    C:\Program Files\DomPlayer
    C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@www.adserver5[1].txt
    C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@adopt.euroclick[1].txt
    C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@2xmoinscher[2].txt
    C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@www.2xmoinscher[2].txt

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SHIM LINK FREE BALL"="\"C:\\ProgramData\\Sect bows army.wjprl4\""

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-06-26 01:05:49
    Windows 6.0.6000 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    => C:\Users\xav'\Desktop\Emulateur + jeux\Emulat g\ROMS SNES\mario kart super nintendo v1.4.7.3 cracked.zip


    [F:5041][D:278]-> C:\Users\xav'\AppData\Local\Temp
    [F:654][D:1]-> C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies
    [F:5128][D:9]-> C:\Users\xav'\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
    [F:20][D:3]-> C:\$Recycle.Bin

    [ UAC => 1 ]

    --------------------[ Fin du rapport a 1:11:53,58 ]----------------------
    26 Juin 2008 09:36:46

    Citation :
    Décidément tu dors jamais!!! bon je t'envoi le rapport !!! et merci encor de t'interessé a mon probleme je croi ke j'allais finir par bazarder mon PC !!!


    J'ai déjà eu affaire à toi ?

    Je viens de finir ma prépa, je suis enfin en vacances, alors j'en profite :D  Je suis plutôt un couche tard moi :D  :whistle: 

    ***

    Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier

    C:\ProgramData\EncCopyCopy.8no5t
    C:\ProgramData\EncCopyCopy.afy4s
    C:\ProgramData\EncCopyCopy.cbwyg8s
    C:\ProgramData\EncCopyCopy.u2lxw8
    C:\ProgramData\hide cool shim link
    C:\ProgramData\Sect bows army.wjprl4
    C:\ProgramData\Sect bows army.wjprl4
    C:\Users\xav'\AppData\Local\Temp\bis76C.exe
    C:\Users\xav'\Desktop\Emulateur + jeux\Emulat g\ROMS SNES\mario kart super nintendo v1.4.7.3 cracked.zip


    Relance Lop S&D

  • Choisis cette fois ci l'Option 4 (LopScript)
  • Une page blanche va s'ouvrir , clique droit dessus et choisis Coller
  • Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt)

    Que contient le dossier Planit Fusion Live But, dans C:\ProgramData\ ?

    ;) 
    26 Juin 2008 11:40:43

    salut !

    moi j'avais le même problème de pubs intempestives qui s'ouvraient n'importe quand..

    Panneau de configuration
    Ajouter Supprimer programme
    Tu cherches Messenger live plus
    ===> et tu vérras déjà que dans le nom il y a " ( CID) "
    tu désinstallles tout ( ou que le sponsor si t'as le choix)
    et tu réinstalles...

    ca fait une heure que je l'ai fait et aucun CID en vue ...
    mais il y a toujours ce problème dans le gestionnaire des tâches ...
    http://www.infos-du-net.com/forum/280667-11-help-plusie...
    26 Juin 2008 12:00:03

    Re,

    Oui cette astuce peut marcher, mais en général elle ne marche pas :) 

    Gemma11, merci de ne pas interférer dans une désinfection en cours.

    26 Juin 2008 23:17:00

    je comprend pas la question sur le rapport C:\Programme data ??? je sais po ce que tu attends en tout cas j'avais déja supprimer windows live mail et depuis je n'ai plus de CID je vai comme même faire ce que tu m'as dis de faire histoire d'etre sur car je vais certainement télécharger windows live mail parce ke c bien pratique kan on a plusieurs boites en tout cas merci de me consacré un peu de ton tps

    @+++
    26 Juin 2008 23:25:00

    Re,

    Tu fais la manip' demandée ci-dessus.

    ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS