Se connecter / S'enregistrer
Votre question

[Résolu] Publicités CID à EXTERMINER!!!

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
16 Mai 2008 22:29:15

Salut,

J'ai un problème que vous connaissez bien, les publicités CID non désirées.
Merci de m'aider à les ÉRADIQUER et après c'est promis je naviguerai plus prudemment. ^^

Autres pages sur : resolu publicites cid exterminer

16 Mai 2008 22:32:48

Voilà mon rapport Hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:10, on 16/05/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Toshiba TEMPO\Toshiba.Tempo.UI.TrayApplication.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Protector Suite QL\psqltray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [PSQLLauncher] "C:\Program Files\Protector Suite QL\launcher.exe" /startup
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [lxdimon.exe] "C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Toshiba TEMPO] C:\Program Files\Toshiba TEMPO\Toshiba.Tempo.UI.TrayApplication.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Bore Online] "C:\ProgramData\sectmanagermanager.lzqvfv"
O4 - HKCU\..\Run: [axis love poll lite] "C:\ProgramData\mpeg inter log.jhyan7"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: logiciel Soliland - {8354F0FE-550E-4E14-AFE1-E5CEF9009311} - C:\Program Files\Logiciel Soliland\soliland.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{634C0CD1-AAE5-4787-AAC0-3B626EC0C369}: NameServer = 130.66.33.8
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
O23 - Service: lxdi_device - - C:\Windows\system32\lxdicoms.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: Notebook Performance Tuning Service (TempoMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPO\TempoSVC.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 13025 bytes
16 Mai 2008 22:48:45


Hello ,

Désactive tes protections résidentes ( Antivirus , ... ) tu les réactivera après le scan

Télécharge Lop S&D [:eric_71:22] < ici

Double-clique dessus pour lancer l'installation
Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier
C:\ProgramData\sectmanagermanager.lzqvfv

Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
Séléctionne la langue souhaitée , Choisis l'Option 4 ( LopScript )
Une page blanche va s'ouvrir , clique droit dessus et choisis Coller
Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Contenus similaires
16 Mai 2008 23:18:25

Voici le rapport, mais bon après avoir [Enregister] il n'a pas scanné tout de suite j'ai donc redémarré l'application recommencé les démarches et à un moment l'ordinateur a redémarré et finalement le scan a été fait...

Sinon merci pour ton aide c'est très sympa^^


-----------------------[ Lop S&D 4.2.0-8 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Denis PHAM ] [ "C:\Lop SD" ] [ Selection : 4 ]
[ 16/05/2008 | 23:08:00,00 ] [ PC : PC-DENIS-A101 ]
[ MAJ : 11-05-2008 | 18:25 ]
[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ LopScript //////////////////////////////////

C:\ProgramData\sectmanagermanager.lzqvfv

Supprimé! - C:\ProgramData\sectmanagermanager.lzqvfv

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\ProgramData\Each New Axis Love\Tons Open.exe
Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
Supprimé! - C:\ProgramData\Dash Once Ping.e45y6e6
Supprimé! - C:\ProgramData\mpeg inter log.jhyan7
Supprimé! - C:\Users\DENISP~1\AppData\Local\Temp\bis2205.exe
Supprimé! - C:\Users\DENISP~1\AppData\Local\Temp\bisA976.exe
Supprimé! - C:\ProgramData\Each New Axis Love
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[09/05/2008|14:40] C:\Users\DENISP~1\AppData\Roaming\Adobe\Fireworks CS3
[02/05/2008|17:57] C:\Users\DENISP~1\AppData\Roaming\Adobe\PatcherLogs
[23/03/2008|15:02] C:\Users\DENISP~1\AppData\Roaming\Adobe\Workflow
[23/03/2008|15:02] C:\Users\DENISP~1\AppData\Roaming\Adobe\CameraRaw
[20/03/2008|01:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Acrobat
[17/03/2008|14:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\Common
[16/03/2008|16:41] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe PDF
[15/03/2008|19:31] C:\Users\DENISP~1\AppData\Roaming\Adobe\Color
[15/03/2008|19:31] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Photoshop CS3
[15/03/2008|19:16] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[15/03/2008|19:12] C:\Users\DENISP~1\AppData\Roaming\Adobe\After Effects
[15/03/2008|19:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\PremierePro
[15/03/2008|19:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\Premiere Pro
[15/03/2008|19:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe DVD
[15/03/2008|19:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Encore
[15/03/2008|19:07] C:\Users\DENISP~1\AppData\Roaming\Adobe\Soundbooth
[15/03/2008|19:04] C:\Users\DENISP~1\AppData\Roaming\Adobe\Dreamweaver 9
[15/03/2008|18:37] C:\Users\DENISP~1\AppData\Roaming\Adobe\Updater5
[19/02/2008|14:57] C:\Users\DENISP~1\AppData\Roaming\Adobe\Flash Player
[28/11/2007|15:08] C:\Users\DENISP~1\AppData\Roaming\Adobe\Linguistics


[16/05/2008|23:02] C:\Users\DENISP~1\AppData\Roaming\Apple Computer\iTunes
[23/03/2008|03:52] C:\Users\DENISP~1\AppData\Roaming\Apple Computer\Safari

[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.config
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.config.bak
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\active
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\downloads.config
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\downloads.config.bak
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\tracker.config
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\tracker.config.bak
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.statistics
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.statistics.bak
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\dht
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\net
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\tables.config
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\tables.config.bak
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\VuzeActivities.config
[16/05/2008|17:50] C:\Users\DENISP~1\AppData\Roaming\Azureus\VuzeActivities.config.bak
[16/05/2008|17:47] C:\Users\DENISP~1\AppData\Roaming\Azureus\logs
[16/05/2008|17:20] C:\Users\DENISP~1\AppData\Roaming\Azureus\tmp
[16/05/2008|17:17] C:\Users\DENISP~1\AppData\Roaming\Azureus\torrents
[16/05/2008|17:17] C:\Users\DENISP~1\AppData\Roaming\Azureus\unsentdata.config
[16/05/2008|17:17] C:\Users\DENISP~1\AppData\Roaming\Azureus\unsentdata.config.bak
[16/05/2008|17:17] C:\Users\DENISP~1\AppData\Roaming\Azureus\ipfilter.cache
[10/05/2008|18:25] C:\Users\DENISP~1\AppData\Roaming\Azureus\banips.config
[10/05/2008|18:25] C:\Users\DENISP~1\AppData\Roaming\Azureus\banips.config.bak
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\update.log
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\updates
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\update.properties
[06/04/2008|23:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\restart.bat
[06/04/2008|23:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\media
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\shares
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\plugins
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.certs
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.keystore
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.lock


[15/10/2007|00:56] C:\Users\DENISP~1\AppData\Roaming\DesktopSMS\Updates

[05/10/2007|15:16] C:\Users\DENISP~1\AppData\Roaming\DivX\DivX Codec

[18/04/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\dvdcss\CACHEDIR.TAG
[18/04/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\dvdcss\MXL_89-2008031810094900

[22/04/2008|22:39] C:\Users\DENISP~1\AppData\Roaming\DWGeditor\DWGeditorPerformance.log

[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\fm3032.INI
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.DBF
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.FPT
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.CDX
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\color
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\printer
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\imageman
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\scanned
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\sending
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\received
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\Coverpgs

[24/03/2008|13:28] C:\Users\DENISP~1\AppData\Roaming\FloodLightGames\Death on the Nile

[15/03/2008|15:29] C:\Users\DENISP~1\AppData\Roaming\Google\Local Search History

[20/09/2007|18:53] C:\Users\DENISP~1\AppData\Roaming\Identities\{FC2316FF-EFC9-4AB2-9236-E4F9F90B2CFF}


[27/04/2008|19:39] C:\Users\DENISP~1\AppData\Roaming\Lexmark Productivity Studio\LXDIPDS.xml

[21/09/2007|16:25] C:\Users\DENISP~1\AppData\Roaming\Macromedia\Flash Player


[16/05/2008|18:22] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Templates
[16/05/2008|18:16] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Excel
[16/05/2008|18:16] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows Photo Gallery
[13/05/2008|23:58] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Signatures
[11/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Microsoft\SystemCertificates
[05/05/2008|12:32] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Word
[27/04/2008|22:51] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Office
[20/04/2008|13:14] C:\Users\DENISP~1\AppData\Roaming\Microsoft\MSN Messenger
[07/04/2008|00:06] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Outlook
[01/03/2008|00:51] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows Live Photo Gallery
[20/02/2008|21:32] C:\Users\DENISP~1\AppData\Roaming\Microsoft\UProof
[03/02/2008|17:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\PowerPoint
[03/02/2008|17:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\CLView
[28/01/2008|00:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Clip Organizer
[22/12/2007|15:55] C:\Users\DENISP~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
[07/12/2007|20:50] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Installer
[21/10/2007|21:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Internet Explorer
[29/09/2007|14:08] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Speech
[29/09/2007|13:48] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Proof
[25/09/2007|22:25] C:\Users\DENISP~1\AppData\Roaming\Microsoft\MMC
[24/09/2007|00:14] C:\Users\DENISP~1\AppData\Roaming\Microsoft\eHome
[21/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Document Building Blocks
[21/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\AddIns
[21/09/2007|13:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\OIS
[21/09/2007|13:19] C:\Users\DENISP~1\AppData\Roaming\Microsoft\HTML Help
[21/09/2007|12:54] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Crypto
[20/09/2007|22:21] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows
[20/09/2007|20:33] C:\Users\DENISP~1\AppData\Roaming\Microsoft\IdentityCRL
[20/09/2007|18:53] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Protect
[20/09/2007|18:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\CLR Security Config
[20/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Credentials

[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Mozilla\registry.dat
[01/10/2007|01:04] C:\Users\DENISP~1\AppData\Roaming\Mozilla\Firefox

[21/02/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\My Games\Sid Meier's Civilization 4

[16/05/2008|23:08] C:\Users\DENISP~1\AppData\Roaming\nvModes.001\nvModes.001

[16/05/2008|19:10] C:\Users\DENISP~1\AppData\Roaming\nvModes.dat\nvModes.dat

[22/11/2007|18:36] C:\Users\DENISP~1\AppData\Roaming\OpenOffice.org2\user

[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\FileAccess.log
[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\SolidWorksPerformance.log
[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\swxJRNL.swj
[15/05/2008|02:55] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\swxJRNL.BAK
[15/05/2008|02:39] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\HoleWizardFavorites.mdb

[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\profiles.ini
[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\Profiles
[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\registry.dat

[12/10/2007|16:30] C:\Users\DENISP~1\AppData\Roaming\Toshiba\TOSHIBA Online Product Information

[16/05/2008|22:05] C:\Users\DENISP~1\AppData\Roaming\vlc\vlcrc
[28/09/2007|23:49] C:\Users\DENISP~1\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[16/05/2008 23:05][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{9A2115AC-653D-473F-BC56-770CD4D4C025}.job
[16/05/2008 22:20][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[16/05/2008 23:07][--ah-----] C:\Windows\tasks\SA.DAT
[16/05/2008 23:06][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[18/05/2007|09:49] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[16/03/2008|16:40] C:\ProgramData\Adobe
[15/03/2008|19:16] C:\ProgramData\ALM
[03/11/2007|21:40] C:\ProgramData\Apple
[03/11/2007|21:43] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[03/11/2007|19:15] C:\ProgramData\Azureus
[20/09/2007|18:45] C:\ProgramData\Bureau
[12/05/2008|15:59] C:\ProgramData\DassaultSystemes
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[20/09/2007|18:45] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[29/09/2007|13:31] C:\ProgramData\FaxCtr
[15/03/2008|19:30] C:\ProgramData\FLEXnet
[24/03/2008|13:28] C:\ProgramData\FloodLightGames
[25/11/2007|14:04] C:\ProgramData\Google
[07/12/2007|20:50] C:\ProgramData\IsolatedStorage
[15/03/2008|16:21] C:\ProgramData\Lavasoft
[15/05/2008|17:42] C:\ProgramData\Lx_cats
[09/11/2007|17:54] C:\ProgramData\lxdi
[08/12/2007|00:35] C:\ProgramData\Media Center Programs
[20/09/2007|18:45] C:\ProgramData\Menu D‚marrer
[30/11/2007|20:50] C:\ProgramData\Messenger Plus!
[27/01/2008|22:23] C:\ProgramData\Microsoft
[14/05/2008|00:25] C:\ProgramData\Microsoft Help
[20/09/2007|18:45] C:\ProgramData\ModŠles
[20/02/2008|21:19] C:\ProgramData\Office Genuine Advantage
[02/01/2008|19:08] C:\ProgramData\sectmanagermanager.1o44q72
[20/09/2007|20:57] C:\ProgramData\sectmanagermanager.1wc44
[29/03/2008|14:08] C:\ProgramData\sectmanagermanager.6wz0aam
[16/01/2008|14:01] C:\ProgramData\sectmanagermanager.7mmor6a
[28/03/2008|03:39] C:\ProgramData\sectmanagermanager.92v2o
[02/01/2008|19:08] C:\ProgramData\sectmanagermanager.b4yh3
[12/01/2008|14:14] C:\ProgramData\sectmanagermanager.ch0ydm
[29/12/2007|22:58] C:\ProgramData\sectmanagermanager.ftydvpv
[28/03/2008|03:39] C:\ProgramData\sectmanagermanager.oj5c4r
[16/01/2008|14:01] C:\ProgramData\sectmanagermanager.p3cs5
[20/12/2007|22:04] C:\ProgramData\sectmanagermanager.rec7v
[21/02/2008|21:58] C:\ProgramData\sectmanagermanager.xpfnec
[07/01/2008|14:05] C:\ProgramData\sectmanagermanager.yiesv
[01/05/2008|11:00] C:\ProgramData\sectmanagermanager.zz8aaeq
[22/04/2008|18:54] C:\ProgramData\SolidWorks
[02/02/2008|16:15] C:\ProgramData\SPL303.tmp
[29/10/2007|21:03] C:\ProgramData\SPL6A0.tmp
[29/10/2007|21:04] C:\ProgramData\SPL8C05.tmp
[02/11/2006|15:02] C:\ProgramData\Start Menu
[01/05/2008|11:01] C:\ProgramData\stupid eggs bows
[05/11/2007|22:44] C:\ProgramData\Symantec
[24/03/2008|14:30] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[10/07/2007|17:50] C:\ProgramData\Toshiba
[20/09/2007|18:49] C:\ProgramData\ToshibaEurope
[12/07/2007|11:29] C:\ProgramData\UIB
[10/07/2007|18:01] C:\ProgramData\Ulead Systems
[10/07/2007|17:47] C:\ProgramData\Vista64
[21/12/2007|20:18] C:\ProgramData\WLInstaller
[10/07/2007|17:47] C:\ProgramData\XP

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[29/09/2007|13:30] C:\Program Files\Abbyy FineReader 6.0 Sprint
[18/05/2007|09:49] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[23/03/2008|13:26] C:\Program Files\Adobe
[10/05/2008|18:37] C:\Program Files\Alcohol Soft
[19/10/2007|15:15] C:\Program Files\Alwil Software
[20/04/2008|13:19] C:\Program Files\Apple Software Update
[20/04/2008|04:24] C:\Program Files\Azureus
[15/03/2008|18:43] C:\Program Files\Bonjour
[20/09/2007|17:34] C:\Program Files\Camera Assistant Software for Toshiba
[22/04/2008|18:50] C:\Program Files\Common Files
[03/02/2008|15:17] C:\Program Files\des materiaux
[21/09/2007|16:19] C:\Program Files\desktop.ini
[23/04/2008|21:49] C:\Program Files\DivX
[25/12/2007|23:57] C:\Program Files\Dofus
[22/04/2008|18:59] C:\Program Files\DWGeditor
[23/03/2008|16:17] C:\Program Files\Electronic Arts
[20/09/2007|18:45] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/10/2007|15:44] C:\Program Files\File Search for LAN
[25/09/2007|17:28] C:\Program Files\Firaxis Games
[25/11/2007|20:26] C:\Program Files\Google
[08/12/2007|02:28] C:\Program Files\GUILD WARS
[18/04/2007|09:08] C:\Program Files\IDM
[09/05/2008|14:17] C:\Program Files\InstallShield Installation Information
[20/09/2007|18:52] C:\Program Files\Intel
[09/04/2008|13:20] C:\Program Files\Internet Explorer
[10/07/2007|18:02] C:\Program Files\InterVideo
[06/04/2008|20:19] C:\Program Files\iPod
[06/04/2008|20:20] C:\Program Files\iTunes
[28/03/2008|23:32] C:\Program Files\Java
[15/03/2008|16:21] C:\Program Files\Lavasoft
[29/09/2007|13:32] C:\Program Files\Lexmark 3500-4500 Series
[29/09/2007|13:32] C:\Program Files\Lexmark Fax Solutions
[29/03/2008|00:02] C:\Program Files\Logiciel Soliland
[18/04/2007|08:05] C:\Program Files\ltmoh
[28/03/2008|03:39] C:\Program Files\Messenger Plus! Live
[22/12/2007|04:01] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[22/04/2008|18:48] C:\Program Files\Microsoft Office
[21/12/2007|20:29] C:\Program Files\Microsoft SQL Server Compact Edition
[27/01/2008|22:25] C:\Program Files\Microsoft Visual Studio
[27/01/2008|22:19] C:\Program Files\Microsoft Visual Studio 8
[27/01/2008|22:27] C:\Program Files\Microsoft Works
[27/01/2008|22:23] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[20/04/2008|01:16] C:\Program Files\Mozilla Firefox
[02/05/2008|00:44] C:\Program Files\Mozilla Thunderbird
[27/01/2008|22:26] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[27/03/2008|02:34] C:\Program Files\MSN Games
[10/07/2007|16:53] C:\Program Files\MSXML 4.0
[18/04/2007|08:14] C:\Program Files\My Company Name
[18/04/2007|09:08] C:\Program Files\myphotobook
[03/11/2007|18:54] C:\Program Files\Neuf
[08/12/2007|00:12] C:\Program Files\OpenOffice.org 2.3
[16/02/2008|16:56] C:\Program Files\PowerISO
[12/07/2007|11:31] C:\Program Files\Protector Suite QL
[06/04/2008|20:17] C:\Program Files\QuickTime
[10/07/2007|17:22] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[20/04/2008|13:20] C:\Program Files\Safari
[09/05/2008|14:17] C:\Program Files\Sierra
[22/04/2008|18:56] C:\Program Files\SolidWorks
[12/03/2008|12:35] C:\Program Files\Sword of The New World
[20/09/2007|17:38] C:\Program Files\Synaptics
[10/07/2007|18:04] C:\Program Files\TOSHIBA
[07/12/2007|20:50] C:\Program Files\Toshiba TEMPO
[16/05/2008|22:07] C:\Program Files\Trend Micro
[10/07/2007|17:58] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/09/2007|21:02] C:\Program Files\VideoLAN
[21/09/2007|13:29] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[10/07/2007|16:58] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[27/02/2008|04:01] C:\Program Files\Windows Live
[22/12/2007|04:01] C:\Program Files\Windows Live Toolbar
[14/05/2008|00:25] C:\Program Files\Windows Mail
[18/04/2007|08:46] C:\Program Files\Windows Media Components
[10/10/2007|13:50] C:\Program Files\Windows Media Player
[20/09/2007|18:45] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[09/01/2008|02:04] C:\Program Files\Windows Sidebar
[26/10/2007|20:05] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[15/03/2008|19:20] C:\Program Files\Common Files\Adobe
[03/11/2007|21:40] C:\Program Files\Common Files\Apple
[15/03/2008|19:18] C:\Program Files\Common Files\Control Panels
[22/04/2008|18:50] C:\Program Files\Common Files\DESIGNER
[22/04/2008|18:58] C:\Program Files\Common Files\eDrawings2007
[18/04/2007|08:47] C:\Program Files\Common Files\InstallShield
[18/04/2007|07:44] C:\Program Files\Common Files\Java
[15/03/2008|18:37] C:\Program Files\Common Files\Macrovision Shared
[22/04/2008|18:44] C:\Program Files\Common Files\microsoft shared
[05/10/2007|00:10] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[22/04/2008|18:56] C:\Program Files\Common Files\SolidWorks Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[05/11/2007|22:41] C:\Program Files\Common Files\Symantec Shared
[27/01/2008|22:18] C:\Program Files\Common Files\System
[10/07/2007|18:02] C:\Program Files\Common Files\Ulead Systems
[21/12/2007|20:27] C:\Program Files\Common Files\WindowsLiveInstaller
[15/03/2008|16:20] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 72

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-16 23:09:37
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\Z2LGQSY6\crackle.com
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\Z2LGQSY6\crackle.com\crackleSettings.sol
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol
=> C:\Users\Denis PHAM\Desktop\Risk 2+Crack - Raccourci.lnk


/!\ [Fich:5174][Doss:635] C:\Users\DENISP~1\AppData\Local\Temp
/!\ [Fich:55][Doss:1] C:\Users\DENISP~1\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:1][Doss:4] C:\Users\DENISP~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5

[ UAC => 1 ]

--------------------[ Fin du rapport a 23:11:15,30 ]----------------------
17 Mai 2008 08:49:06

Re , c'est normal qu'il redémarre ( pour désactiver l'UAC ) sur Vista ( il la réactive ensuite )

il en reste , tu peux recommencer l'option 4 avec ce script :

C:\ProgramData\sectmanagermanager.1o44q72
C:\ProgramData\sectmanagermanager.1wc44
C:\ProgramData\sectmanagermanager.6wz0aam
C:\ProgramData\sectmanagermanager.7mmor6a
C:\ProgramData\sectmanagermanager.92v2o
C:\ProgramData\sectmanagermanager.b4yh3
C:\ProgramData\sectmanagermanager.ch0ydm
C:\ProgramData\sectmanagermanager.ftydvpv
C:\ProgramData\sectmanagermanager.oj5c4r
C:\ProgramData\sectmanagermanager.p3cs5
C:\ProgramData\sectmanagermanager.rec7v
C:\ProgramData\sectmanagermanager.xpfnec
C:\ProgramData\sectmanagermanager.yiesv
C:\ProgramData\sectmanagermanager.zz8aaeq
C:\ProgramData\stupid eggs bows
C:\Users\Denis PHAM\Desktop\Risk 2+Crack - Raccourci.lnk


17 Mai 2008 12:08:10

Petit problème
Durant la suppression il me met :

Please wait ... Regitry 3 ...
Le fichier spécifié est introuvable

Puis plus rien :( 
17 Mai 2008 12:39:17

Citation :
Please wait ... Regitry 3 ...
Le fichier spécifié est introuvable

Puis plus rien :( 

La fenêtre reste bloquée la dessus ?

Poste quand même le rapport C:\lopR.txt ( il doit quand même y avoir le dédut )
17 Mai 2008 13:00:44


-----------------------[ Lop S&D 4.2.0-8 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Denis PHAM ] [ "C:\Lop SD" ] [ Selection : 4 ]
[ 17/05/2008 | 11:45:40,38 ] [ PC : PC-DENIS-A101 ]
[ MAJ : 11-05-2008 | 18:25 ]
[ UAC => 0 ]

18 Mai 2008 10:36:58

Bizarre ,

Séléctionne l'encadré ci dessous en entier , puis clique droit , choisis Copier
@echo off
tree /a /f "c:\lop sd">>tmp.txt
tmp.txt
exit
::

Puis , menu Démarrer / Tous les programmes / Accessoires / Executer , tape cmd et valide par OK
fais un clique droit dans la fenêtre noire et choisis Coller
il va sortir un rapport , poste le ici
18 Mai 2008 11:04:45

Voili, voilou

Structure du dossier pour le volume Vista
Le num‚ro de s‚rie du volume est 3A3D-20C7
C:\LOP SD
| App-Prog.lsd
| AuDoss.lsd
| autrinf.cmd
| AWF.cmd
| Back.cmd
| Boo.reg
| BooFix.cmd
| catchme.exe
| DirectFix.cmd
| Doss.lsd
| Filter0.txt
| Filter1.txt
| Filter2.txt
| Filter3.txt
| Filter4.txt
| Filter5.bat
| FixLop.txt
| Icon_Lop.ico
| KILL.cmd
| Langues.cmd
| Lop S&D.lnk
| LopScript.cmd
| LopScript.txt
| LopSD.cmd
| lsTasks.exe
| osVer.exe
| paths.bat
| Process.exe
| RegLop.reg
| sed.exe
| setpath.exe
| S_LopV.cmd
| S_LopX.cmd
| task.txt
| Uninstal.exe
|
\---Backup-Lop
+---D
+---F
| Tons Open.exe
| Uninstall.exe
|
+---Hosts
| hosts
|
+---Reg
| HKCU_Run.reg
| HKLM_Run.reg
| HKLM_Uninstall.reg
|
+---S-F
| bis2205.exe
| bisA976.exe
| Dash Once Ping.e45y6e6
| mpeg inter log.jhyan7
|
\---ScriptFix
\---ProgramData
sectmanagermanager.lzqvfv

18 Mai 2008 13:15:38

Re ,

C'est bon pourtant , tu peux recommencer le script mais en lançant Lop S&D par clique droit / Exécuter en tant qu'administrateur

18 Mai 2008 17:25:09

Nop toujours la même chose. En tout cas j'avais au préalable désactivé Avast et mon pare feu Windows.
18 Mai 2008 17:50:04

Bon j'ai peut être fait quelque chose de pas bien chez les chasseurs de virus mais j'ai simplement supprimé ces entités en les jetant à la corbeille.

Puis j'ai refait un scan le voilà :


-----------------------[ Lop S&D 4.2.0-8 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Denis PHAM ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 18/05/2008 | 17:42:23,83 ] [ PC : PC-DENIS-A101 ]
[ MAJ : 11-05-2008 | 18:25 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[18/05/2008|00:02] C:\Users\DENISP~1\AppData\Roaming\Adobe\Fireworks CS3
[02/05/2008|17:57] C:\Users\DENISP~1\AppData\Roaming\Adobe\PatcherLogs
[23/03/2008|15:02] C:\Users\DENISP~1\AppData\Roaming\Adobe\Workflow
[23/03/2008|15:02] C:\Users\DENISP~1\AppData\Roaming\Adobe\CameraRaw
[20/03/2008|01:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Acrobat
[17/03/2008|14:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\Common
[16/03/2008|16:41] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe PDF
[15/03/2008|19:31] C:\Users\DENISP~1\AppData\Roaming\Adobe\Color
[15/03/2008|19:31] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Photoshop CS3
[15/03/2008|19:16] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[15/03/2008|19:12] C:\Users\DENISP~1\AppData\Roaming\Adobe\After Effects
[15/03/2008|19:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\PremierePro
[15/03/2008|19:10] C:\Users\DENISP~1\AppData\Roaming\Adobe\Premiere Pro
[15/03/2008|19:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe DVD
[15/03/2008|19:09] C:\Users\DENISP~1\AppData\Roaming\Adobe\Adobe Encore
[15/03/2008|19:07] C:\Users\DENISP~1\AppData\Roaming\Adobe\Soundbooth
[15/03/2008|19:04] C:\Users\DENISP~1\AppData\Roaming\Adobe\Dreamweaver 9
[15/03/2008|18:37] C:\Users\DENISP~1\AppData\Roaming\Adobe\Updater5
[19/02/2008|14:57] C:\Users\DENISP~1\AppData\Roaming\Adobe\Flash Player
[28/11/2007|15:08] C:\Users\DENISP~1\AppData\Roaming\Adobe\Linguistics


[18/05/2008|14:06] C:\Users\DENISP~1\AppData\Roaming\Apple Computer\iTunes
[23/03/2008|03:52] C:\Users\DENISP~1\AppData\Roaming\Apple Computer\Safari

[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.config
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.config.bak
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\active
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\downloads.config
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\downloads.config.bak
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\tracker.config
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\tracker.config.bak
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.statistics
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\azureus.statistics.bak
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\dht
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\net
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\tables.config
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\tables.config.bak
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\VuzeActivities.config
[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Azureus\VuzeActivities.config.bak
[18/05/2008|00:53] C:\Users\DENISP~1\AppData\Roaming\Azureus\logs
[18/05/2008|00:26] C:\Users\DENISP~1\AppData\Roaming\Azureus\tmp
[18/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\torrents
[18/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\unsentdata.config
[18/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\unsentdata.config.bak
[18/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\ipfilter.cache
[10/05/2008|18:25] C:\Users\DENISP~1\AppData\Roaming\Azureus\banips.config
[10/05/2008|18:25] C:\Users\DENISP~1\AppData\Roaming\Azureus\banips.config.bak
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\update.log
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\updates
[20/04/2008|04:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\update.properties
[06/04/2008|23:24] C:\Users\DENISP~1\AppData\Roaming\Azureus\restart.bat
[06/04/2008|23:22] C:\Users\DENISP~1\AppData\Roaming\Azureus\media
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\shares
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\plugins
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.certs
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.keystore
[03/11/2007|19:15] C:\Users\DENISP~1\AppData\Roaming\Azureus\.lock


[15/10/2007|00:56] C:\Users\DENISP~1\AppData\Roaming\DesktopSMS\Updates

[05/10/2007|15:16] C:\Users\DENISP~1\AppData\Roaming\DivX\DivX Codec

[18/04/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\dvdcss\CACHEDIR.TAG
[18/04/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\dvdcss\MXL_89-2008031810094900

[22/04/2008|22:39] C:\Users\DENISP~1\AppData\Roaming\DWGeditor\DWGeditorPerformance.log

[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\fm3032.INI
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.DBF
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.FPT
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\FAXLOG32.CDX
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\color
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\printer
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\imageman
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\scanned
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\sending
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\received
[03/03/2008|14:25] C:\Users\DENISP~1\AppData\Roaming\FaxCtr\Coverpgs

[24/03/2008|13:28] C:\Users\DENISP~1\AppData\Roaming\FloodLightGames\Death on the Nile

[15/03/2008|15:29] C:\Users\DENISP~1\AppData\Roaming\Google\Local Search History

[20/09/2007|18:53] C:\Users\DENISP~1\AppData\Roaming\Identities\{FC2316FF-EFC9-4AB2-9236-E4F9F90B2CFF}


[27/04/2008|19:39] C:\Users\DENISP~1\AppData\Roaming\Lexmark Productivity Studio\LXDIPDS.xml

[21/09/2007|16:25] C:\Users\DENISP~1\AppData\Roaming\Macromedia\Flash Player


[18/05/2008|01:01] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Templates
[17/05/2008|17:24] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Excel
[16/05/2008|18:16] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows Photo Gallery
[13/05/2008|23:58] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Signatures
[11/05/2008|00:22] C:\Users\DENISP~1\AppData\Roaming\Microsoft\SystemCertificates
[05/05/2008|12:32] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Word
[27/04/2008|22:51] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Office
[20/04/2008|13:14] C:\Users\DENISP~1\AppData\Roaming\Microsoft\MSN Messenger
[07/04/2008|00:06] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Outlook
[01/03/2008|00:51] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows Live Photo Gallery
[20/02/2008|21:32] C:\Users\DENISP~1\AppData\Roaming\Microsoft\UProof
[03/02/2008|17:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\PowerPoint
[03/02/2008|17:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\CLView
[28/01/2008|00:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Clip Organizer
[22/12/2007|15:55] C:\Users\DENISP~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
[07/12/2007|20:50] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Installer
[21/10/2007|21:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Internet Explorer
[29/09/2007|14:08] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Speech
[29/09/2007|13:48] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Proof
[25/09/2007|22:25] C:\Users\DENISP~1\AppData\Roaming\Microsoft\MMC
[24/09/2007|00:14] C:\Users\DENISP~1\AppData\Roaming\Microsoft\eHome
[21/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Document Building Blocks
[21/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\AddIns
[21/09/2007|13:20] C:\Users\DENISP~1\AppData\Roaming\Microsoft\OIS
[21/09/2007|13:19] C:\Users\DENISP~1\AppData\Roaming\Microsoft\HTML Help
[21/09/2007|12:54] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Crypto
[20/09/2007|22:21] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Windows
[20/09/2007|20:33] C:\Users\DENISP~1\AppData\Roaming\Microsoft\IdentityCRL
[20/09/2007|18:53] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Protect
[20/09/2007|18:52] C:\Users\DENISP~1\AppData\Roaming\Microsoft\CLR Security Config
[20/09/2007|18:49] C:\Users\DENISP~1\AppData\Roaming\Microsoft\Credentials

[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Mozilla\registry.dat
[01/10/2007|01:04] C:\Users\DENISP~1\AppData\Roaming\Mozilla\Firefox

[21/02/2008|21:04] C:\Users\DENISP~1\AppData\Roaming\My Games\Sid Meier's Civilization 4

[18/05/2008|17:42] C:\Users\DENISP~1\AppData\Roaming\nvModes.001\nvModes.001

[18/05/2008|16:57] C:\Users\DENISP~1\AppData\Roaming\nvModes.dat\nvModes.dat

[22/11/2007|18:36] C:\Users\DENISP~1\AppData\Roaming\OpenOffice.org2\user

[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\FileAccess.log
[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\SolidWorksPerformance.log
[15/05/2008|23:35] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\swxJRNL.swj
[15/05/2008|02:55] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\swxJRNL.BAK
[15/05/2008|02:39] C:\Users\DENISP~1\AppData\Roaming\SolidWorks\HoleWizardFavorites.mdb

[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\profiles.ini
[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\Profiles
[01/12/2007|14:35] C:\Users\DENISP~1\AppData\Roaming\Thunderbird\registry.dat

[12/10/2007|16:30] C:\Users\DENISP~1\AppData\Roaming\Toshiba\TOSHIBA Online Product Information

[18/05/2008|01:18] C:\Users\DENISP~1\AppData\Roaming\vlc\vlcrc
[28/09/2007|23:49] C:\Users\DENISP~1\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[18/05/2008 17:40][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{9A2115AC-653D-473F-BC56-770CD4D4C025}.job
[18/05/2008 17:20][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[18/05/2008 17:42][--ah-----] C:\Windows\tasks\SA.DAT
[18/05/2008 17:40][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[18/05/2007|09:49] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[16/03/2008|16:40] C:\ProgramData\Adobe
[15/03/2008|19:16] C:\ProgramData\ALM
[03/11/2007|21:40] C:\ProgramData\Apple
[03/11/2007|21:43] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[03/11/2007|19:15] C:\ProgramData\Azureus
[20/09/2007|18:45] C:\ProgramData\Bureau
[12/05/2008|15:59] C:\ProgramData\DassaultSystemes
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[20/09/2007|18:45] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[29/09/2007|13:31] C:\ProgramData\FaxCtr
[15/03/2008|19:30] C:\ProgramData\FLEXnet
[24/03/2008|13:28] C:\ProgramData\FloodLightGames
[25/11/2007|14:04] C:\ProgramData\Google
[07/12/2007|20:50] C:\ProgramData\IsolatedStorage
[15/03/2008|16:21] C:\ProgramData\Lavasoft
[15/05/2008|17:42] C:\ProgramData\Lx_cats
[09/11/2007|17:54] C:\ProgramData\lxdi
[08/12/2007|00:35] C:\ProgramData\Media Center Programs
[20/09/2007|18:45] C:\ProgramData\Menu D‚marrer
[30/11/2007|20:50] C:\ProgramData\Messenger Plus!
[27/01/2008|22:23] C:\ProgramData\Microsoft
[14/05/2008|00:25] C:\ProgramData\Microsoft Help
[20/09/2007|18:45] C:\ProgramData\ModŠles
[17/05/2008|14:07] C:\ProgramData\ntuser.pol
[20/02/2008|21:19] C:\ProgramData\Office Genuine Advantage
[22/04/2008|18:54] C:\ProgramData\SolidWorks
[02/02/2008|16:15] C:\ProgramData\SPL303.tmp
[29/10/2007|21:03] C:\ProgramData\SPL6A0.tmp
[29/10/2007|21:04] C:\ProgramData\SPL8C05.tmp
[02/11/2006|15:02] C:\ProgramData\Start Menu
[05/11/2007|22:44] C:\ProgramData\Symantec
[24/03/2008|14:30] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[10/07/2007|17:50] C:\ProgramData\Toshiba
[20/09/2007|18:49] C:\ProgramData\ToshibaEurope
[12/07/2007|11:29] C:\ProgramData\UIB
[10/07/2007|18:01] C:\ProgramData\Ulead Systems
[10/07/2007|17:47] C:\ProgramData\Vista64
[21/12/2007|20:18] C:\ProgramData\WLInstaller
[10/07/2007|17:47] C:\ProgramData\XP

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[29/09/2007|13:30] C:\Program Files\Abbyy FineReader 6.0 Sprint
[18/05/2007|09:49] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[23/03/2008|13:26] C:\Program Files\Adobe
[10/05/2008|18:37] C:\Program Files\Alcohol Soft
[19/10/2007|15:15] C:\Program Files\Alwil Software
[20/04/2008|13:19] C:\Program Files\Apple Software Update
[20/04/2008|04:24] C:\Program Files\Azureus
[15/03/2008|18:43] C:\Program Files\Bonjour
[20/09/2007|17:34] C:\Program Files\Camera Assistant Software for Toshiba
[22/04/2008|18:50] C:\Program Files\Common Files
[03/02/2008|15:17] C:\Program Files\des materiaux
[21/09/2007|16:19] C:\Program Files\desktop.ini
[23/04/2008|21:49] C:\Program Files\DivX
[25/12/2007|23:57] C:\Program Files\Dofus
[22/04/2008|18:59] C:\Program Files\DWGeditor
[23/03/2008|16:17] C:\Program Files\Electronic Arts
[20/09/2007|18:45] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/10/2007|15:44] C:\Program Files\File Search for LAN
[25/09/2007|17:28] C:\Program Files\Firaxis Games
[25/11/2007|20:26] C:\Program Files\Google
[08/12/2007|02:28] C:\Program Files\GUILD WARS
[18/04/2007|09:08] C:\Program Files\IDM
[09/05/2008|14:17] C:\Program Files\InstallShield Installation Information
[20/09/2007|18:52] C:\Program Files\Intel
[09/04/2008|13:20] C:\Program Files\Internet Explorer
[10/07/2007|18:02] C:\Program Files\InterVideo
[06/04/2008|20:19] C:\Program Files\iPod
[06/04/2008|20:20] C:\Program Files\iTunes
[28/03/2008|23:32] C:\Program Files\Java
[15/03/2008|16:21] C:\Program Files\Lavasoft
[29/09/2007|13:32] C:\Program Files\Lexmark 3500-4500 Series
[29/09/2007|13:32] C:\Program Files\Lexmark Fax Solutions
[29/03/2008|00:02] C:\Program Files\Logiciel Soliland
[18/04/2007|08:05] C:\Program Files\ltmoh
[28/03/2008|03:39] C:\Program Files\Messenger Plus! Live
[22/12/2007|04:01] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[22/04/2008|18:48] C:\Program Files\Microsoft Office
[21/12/2007|20:29] C:\Program Files\Microsoft SQL Server Compact Edition
[27/01/2008|22:25] C:\Program Files\Microsoft Visual Studio
[27/01/2008|22:19] C:\Program Files\Microsoft Visual Studio 8
[27/01/2008|22:27] C:\Program Files\Microsoft Works
[27/01/2008|22:23] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[20/04/2008|01:16] C:\Program Files\Mozilla Firefox
[02/05/2008|00:44] C:\Program Files\Mozilla Thunderbird
[27/01/2008|22:26] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[27/03/2008|02:34] C:\Program Files\MSN Games
[10/07/2007|16:53] C:\Program Files\MSXML 4.0
[18/04/2007|08:14] C:\Program Files\My Company Name
[18/04/2007|09:08] C:\Program Files\myphotobook
[03/11/2007|18:54] C:\Program Files\Neuf
[08/12/2007|00:12] C:\Program Files\OpenOffice.org 2.3
[16/02/2008|16:56] C:\Program Files\PowerISO
[12/07/2007|11:31] C:\Program Files\Protector Suite QL
[06/04/2008|20:17] C:\Program Files\QuickTime
[10/07/2007|17:22] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[20/04/2008|13:20] C:\Program Files\Safari
[09/05/2008|14:17] C:\Program Files\Sierra
[22/04/2008|18:56] C:\Program Files\SolidWorks
[12/03/2008|12:35] C:\Program Files\Sword of The New World
[20/09/2007|17:38] C:\Program Files\Synaptics
[10/07/2007|18:04] C:\Program Files\TOSHIBA
[07/12/2007|20:50] C:\Program Files\Toshiba TEMPO
[16/05/2008|22:07] C:\Program Files\Trend Micro
[10/07/2007|17:58] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/09/2007|21:02] C:\Program Files\VideoLAN
[21/09/2007|13:29] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[10/07/2007|16:58] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[27/02/2008|04:01] C:\Program Files\Windows Live
[22/12/2007|04:01] C:\Program Files\Windows Live Toolbar
[14/05/2008|00:25] C:\Program Files\Windows Mail
[18/04/2007|08:46] C:\Program Files\Windows Media Components
[10/10/2007|13:50] C:\Program Files\Windows Media Player
[20/09/2007|18:45] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[09/01/2008|02:04] C:\Program Files\Windows Sidebar
[26/10/2007|20:05] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[15/03/2008|19:20] C:\Program Files\Common Files\Adobe
[03/11/2007|21:40] C:\Program Files\Common Files\Apple
[15/03/2008|19:18] C:\Program Files\Common Files\Control Panels
[22/04/2008|18:50] C:\Program Files\Common Files\DESIGNER
[22/04/2008|18:58] C:\Program Files\Common Files\eDrawings2007
[18/04/2007|08:47] C:\Program Files\Common Files\InstallShield
[18/04/2007|07:44] C:\Program Files\Common Files\Java
[15/03/2008|18:37] C:\Program Files\Common Files\Macrovision Shared
[22/04/2008|18:44] C:\Program Files\Common Files\microsoft shared
[05/10/2007|00:10] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[22/04/2008|18:56] C:\Program Files\Common Files\SolidWorks Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[05/11/2007|22:41] C:\Program Files\Common Files\Symantec Shared
[27/01/2008|22:18] C:\Program Files\Common Files\System
[10/07/2007|18:02] C:\Program Files\Common Files\Ulead Systems
[21/12/2007|20:27] C:\Program Files\Common Files\WindowsLiveInstaller
[15/03/2008|16:20] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 56

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-18 17:42:49
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\Z2LGQSY6\crackle.com
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\Z2LGQSY6\crackle.com\crackleSettings.sol
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com
=> C:\Users\Denis PHAM\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol


/!\ [Fich:6133][Doss:636] C:\Users\DENISP~1\AppData\Local\Temp
/!\ [Fich:55][Doss:1] C:\Users\DENISP~1\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:1][Doss:4] C:\Users\DENISP~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5

[ UAC => 1 ]

--------------------[ Fin du rapport a 17:45:03,89 ]----------------------
18 Mai 2008 19:59:35

Oki , c'est clean ;) 

Reposte un HiJackThis
18 Mai 2008 20:17:33

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:08:10, on 16/05/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Toshiba TEMPO\Toshiba.Tempo.UI.TrayApplication.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Protector Suite QL\psqltray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [PSQLLauncher] "C:\Program Files\Protector Suite QL\launcher.exe" /startup
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [lxdimon.exe] "C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Toshiba TEMPO] C:\Program Files\Toshiba TEMPO\Toshiba.Tempo.UI.TrayApplication.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Bore Online] "C:\ProgramData\sectmanagermanager.lzqvfv"
O4 - HKCU\..\Run: [axis love poll lite] "C:\ProgramData\mpeg inter log.jhyan7"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: logiciel Soliland - {8354F0FE-550E-4E14-AFE1-E5CEF9009311} - C:\Program Files\Logiciel Soliland\soliland.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{634C0CD1-AAE5-4787-AAC0-3B626EC0C369}: NameServer = 130.66.33.8
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
O23 - Service: lxdi_device - - C:\Windows\system32\lxdicoms.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: Notebook Performance Tuning Service (TempoMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPO\TempoSVC.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 13025 bytes
18 Mai 2008 20:34:21

O1 - Hosts: ::1 localhost

Encore un petit problème ^^ lors du scan il y a une alerte comme quoi le programme ne peut pas accéder au dossier Hosts...
Est ce que c'est important d'y accéder ?

Et encore un petit truc tu me conseilles quelle antivirus gratuit ?
19 Mai 2008 20:32:03

Re ,

Ton Hosts est propre ;) 

Relance HiJackThis par clique droit / Exécuter en tant qu'administrateur
clique cette fois sur [do a system scan only]
coche dans les cases à gauche les lignes suivantes ( et uniquement celles-ci ) :
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKCU\..\Run: [Bore Online] "C:\ProgramData\sectmanagermanager.lzqvfv"
O4 - HKCU\..\Run: [axis love poll lite] "C:\ProgramData\mpeg inter log.jhyan7"

et clique sur [Fix checked] ( en bas à gauche )
A la demande de confirmation , répond Oui

--------------------------------------------------------

Pour l'antivirus je te conseille plutôt Antivir ( Avast est une passoire :D  )

Regarde ici : Antivirus : Lequel choisir ? Comment fonctionne-t-il ?


Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS