Se connecter / S'enregistrer
Votre question

Pages et fenètres intempestives

Tags :
  • Fenêtre intempestive
  • Sécurité
Dernière réponse : dans Sécurité et virus
10 Avril 2008 09:28:25

Bonjour,
depuis quelques temps des pubs, des fenètres arrivent rendant la naviguation de + en + difficile, voir meme des pages qui souvrent sans etre connecté.
Merci de m'aider
j'ai fait une analyse hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:33:30, on 10/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\LogProtect\LogProtect.exe
C:\PROGRA~1\MESSAG~1\Demon.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\WINDOWS\Mixer.exe
C:\WINDOWS\system32\atwtusb.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Larousse\KLÉIO 2001\bin\hyperappel.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\PENSOFT\Quick95.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [LogProtect] "C:\Program Files\LogProtect\LogProtect.exe"
O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [BDMCon] c:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta
O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [WARN POP TRUST LIES] C:\Documents and Settings\All Users\Application Data\Camp Mess Warn Pop\CLOCK CURB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKCU\..\Run: [Knoblies] C:\DOCUME~1\CONFOR~1\APPLIC~1\GRIDKE~1\Save Itch About.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SpyShredder] C:\Program Files\SpyShredder\SpyShredder.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Quick StartUp.lnk = C:\PENSOFT\fquick32.exe
O4 - Startup: Start.lnk = C:\PENSOFT\Quick95.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Booster Wanadoo.lnk = C:\Program Files\Booster Wanadoo\wanadoo_booster.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: hyperappel.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/Obe...
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameShell/online/fr/hammer...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe

--
End of file - 13565 bytes

Autres pages sur : pages fenetres intempestives

10 Avril 2008 13:19:11

bonjour

Télécharge Lop S&D.exe sur ton bureau

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

    11 Avril 2008 06:26:03

    sur du lien? rien ne correspond,et depuis pire

    Contenus similaires
    11 Avril 2008 12:41:48

    Re bonjour, réussi analyse s&d voila le rapport


    -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : conforama ] [ "C:\Lop SD" ]
    [ 11/04/2008 | 12:27:59,04 ] [ PC : LYDIE ]
    [ MAJ : 08-04-2008 | 23:37 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [08/04/2008|09:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [08/04/2008|09:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [27/12/2007|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [10/11/2007|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [10/11/2007|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [15/12/2003|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft
    [18/01/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [09/12/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
    [29/12/2007|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
    [21/02/2008|05:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    [11/11/2007|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [09/11/2007|14:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [09/12/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [20/08/2004|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
    [23/02/2008|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
    [26/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd
    [26/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [01/03/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [05/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [08/04/2006|14:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [31/12/2007|04:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
    [16/02/2008|05:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
    [29/12/2007|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [16/11/2003|18:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [29/11/2007|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
    [29/09/2003|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [09/12/2007|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [29/12/2007|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [11/03/2007|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [08/04/2008|10:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [18/01/2008|10:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [01/05/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
    [10/02/2008|14:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [05/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [19/01/2008|22:19] C:\DOCUME~1\ANNCLA~1\APPLIC~1\.
    [19/01/2008|22:19] C:\DOCUME~1\ANNCLA~1\APPLIC~1\..
    [29/09/2003|19:16] C:\DOCUME~1\ANNCLA~1\APPLIC~1\desktop.ini
    [29/09/2003|18:25] C:\DOCUME~1\ANNCLA~1\APPLIC~1\Identities
    [23/12/2004|16:53] C:\DOCUME~1\ANNCLA~1\APPLIC~1\Microsoft

    [08/04/2008|10:21] C:\DOCUME~1\CONFOR~1\APPLIC~1\.
    [08/04/2008|10:21] C:\DOCUME~1\CONFOR~1\APPLIC~1\..
    [27/12/2007|19:06] C:\DOCUME~1\CONFOR~1\APPLIC~1\Adobe
    [03/11/2007|19:59] C:\DOCUME~1\CONFOR~1\APPLIC~1\AdobeUM
    [04/12/2007|08:39] C:\DOCUME~1\CONFOR~1\APPLIC~1\Apple Computer
    [26/11/2003|21:16] C:\DOCUME~1\CONFOR~1\APPLIC~1\ArcSoft
    [16/12/2007|15:09] C:\DOCUME~1\CONFOR~1\APPLIC~1\Brother
    [26/10/2007|10:46] C:\DOCUME~1\CONFOR~1\APPLIC~1\CrystalSpace
    [12/01/2004|15:49] C:\DOCUME~1\CONFOR~1\APPLIC~1\CyberLink
    [29/09/2003|19:16] C:\DOCUME~1\CONFOR~1\APPLIC~1\desktop.ini
    [26/11/2003|21:19] C:\DOCUME~1\CONFOR~1\APPLIC~1\EPSON
    [10/11/2007|15:58] C:\DOCUME~1\CONFOR~1\APPLIC~1\Google
    [21/02/2008|05:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\grid keep
    [09/01/2004|11:13] C:\DOCUME~1\CONFOR~1\APPLIC~1\Help
    [05/12/2003|12:22] C:\DOCUME~1\CONFOR~1\APPLIC~1\Identities
    [29/12/2007|20:45] C:\DOCUME~1\CONFOR~1\APPLIC~1\InstallShield
    [22/12/2003|13:46] C:\DOCUME~1\CONFOR~1\APPLIC~1\InterVideo
    [26/02/2007|17:25] C:\DOCUME~1\CONFOR~1\APPLIC~1\Lavasoft
    [07/05/2004|10:58] C:\DOCUME~1\CONFOR~1\APPLIC~1\Leadertech
    [12/11/2007|20:52] C:\DOCUME~1\CONFOR~1\APPLIC~1\ma-config.com
    [11/12/2007|21:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\Macromedia
    [22/03/2008|19:27] C:\DOCUME~1\CONFOR~1\APPLIC~1\Microsoft
    [10/04/2006|12:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\MSN6
    [29/11/2007|18:47] C:\DOCUME~1\CONFOR~1\APPLIC~1\Real
    [22/02/2008|11:00] C:\DOCUME~1\CONFOR~1\APPLIC~1\Samsung
    [29/01/2008|12:20] C:\DOCUME~1\CONFOR~1\APPLIC~1\ScanSoft
    [29/12/2007|21:14] C:\DOCUME~1\CONFOR~1\APPLIC~1\Sony
    [03/05/2004|20:12] C:\DOCUME~1\CONFOR~1\APPLIC~1\Sun
    [16/11/2003|15:19] C:\DOCUME~1\CONFOR~1\APPLIC~1\Template
    [01/05/2006|20:00] C:\DOCUME~1\CONFOR~1\APPLIC~1\Ulead Systems

    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [11/11/2007|11:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [11/11/2007|12:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [29/09/2003|18:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [10/02/2008|14:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\.
    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\..
    [09/04/2006|13:33] C:\DOCUME~1\lydie\APPLIC~1\Adobe
    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\AdobeUM
    [29/09/2003|19:16] C:\DOCUME~1\lydie\APPLIC~1\desktop.ini
    [07/05/2004|09:57] C:\DOCUME~1\lydie\APPLIC~1\EPSON
    [13/06/2004|11:58] C:\DOCUME~1\lydie\APPLIC~1\Help
    [29/09/2003|18:25] C:\DOCUME~1\lydie\APPLIC~1\Identities
    [22/02/2005|13:38] C:\DOCUME~1\lydie\APPLIC~1\ieproxy.bak
    [13/02/2007|10:41] C:\DOCUME~1\lydie\APPLIC~1\Microsoft
    [03/05/2004|11:37] C:\DOCUME~1\lydie\APPLIC~1\Sun
    [03/05/2004|11:46] C:\DOCUME~1\lydie\APPLIC~1\sversion.ini

    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [11/04/2008 12:00][--ah-----] C:\WINDOWS\tasks\AC6E9A8791851027.job
    [04/04/2008 17:52][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [11/04/2008 05:43][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [09/10/2003|15:23] C:\Program Files\%ALLUSERSPROFILE%
    [10/04/2008|19:08] C:\Program Files\.
    [10/04/2008|19:08] C:\Program Files\..
    [29/12/2004|11:52] C:\Program Files\1stbenison
    [03/05/2004|11:50] C:\Program Files\AbiSuite2
    [08/01/2005|13:57] C:\Program Files\Acer MP3 Flash Stick
    [22/03/2008|19:04] C:\Program Files\Adobe
    [10/12/2003|21:13] C:\Program Files\AIPTEK
    [01/03/2004|14:57] C:\Program Files\Alawar
    [13/10/2007|14:43] C:\Program Files\Alwil Software
    [09/03/2007|13:04] C:\Program Files\Andromeda 9 Public Test 2
    [10/11/2007|14:52] C:\Program Files\Apple Software Update
    [26/11/2003|21:09] C:\Program Files\ArcSoft
    [14/02/2007|07:32] C:\Program Files\Ashampoo
    [08/11/2007|09:18] C:\Program Files\ATI Technologies
    [03/05/2004|11:56] C:\Program Files\Audacity
    [13/02/2007|12:21] C:\Program Files\Audio Manager
    [22/03/2008|16:02] C:\Program Files\Avanquest update
    [03/05/2004|11:59] C:\Program Files\Blender Foundation
    [27/04/2007|19:32] C:\Program Files\Booba_Ouest Side
    [20/01/2008|11:40] C:\Program Files\Boonty
    [20/01/2008|11:39] C:\Program Files\BoontyGames
    [01/03/2004|14:56] C:\Program Files\Bouncy Ball Challenge Demo
    [09/12/2007|14:46] C:\Program Files\Brother
    [22/03/2008|16:02] C:\Program Files\Calendar
    [11/12/2003|16:13] C:\Program Files\Calendar Maker
    [22/03/2008|16:02] C:\Program Files\Cam‚ra Caf‚ 2
    [22/03/2008|16:02] C:\Program Files\Caveman
    [16/01/2005|12:30] C:\Program Files\CD-Encyclopedia
    [19/01/2008|02:37] C:\Program Files\Circle Developement
    [11/04/2006|13:52] C:\Program Files\C-Media
    [11/03/2007|15:08] C:\Program Files\Common Files
    [29/09/2003|18:20] C:\Program Files\ComPlus Applications
    [06/12/2007|20:19] C:\Program Files\Conforama_Carte
    [09/12/2007|15:31] C:\Program Files\Core Design
    [10/12/2003|20:18] C:\Program Files\Corel
    [23/12/2003|15:16] C:\Program Files\CyberLink
    [13/02/2004|19:53] C:\Program Files\DATA BECKER
    [03/05/2004|11:48] C:\Program Files\DicOOo
    [03/03/2004|14:17] C:\Program Files\directx
    [01/11/2007|13:20] C:\Program Files\Disney Interactive
    [07/01/2008|14:50] C:\Program Files\DS - Cypher
    [17/12/2004|08:18] C:\Program Files\DVCam 3(PC Camera)
    [19/09/2004|20:48] C:\Program Files\EA GAMES
    [17/11/2007|22:39] C:\Program Files\Easy GIF Animator
    [17/11/2007|22:39] C:\Program Files\Easy Gif Animator Extension
    [17/09/2005|20:33] C:\Program Files\EHMINSTALL
    [13/12/2007|15:41] C:\Program Files\Eidos
    [26/11/2003|21:08] C:\Program Files\EPSON
    [15/05/2004|15:56] C:\Program Files\EZFace
    [02/12/2007|15:54] C:\Program Files\FDSoftware
    [22/03/2008|19:07] C:\Program Files\Fichiers communs
    [03/05/2004|11:48] C:\Program Files\FOOoX
    [03/05/2004|12:17] C:\Program Files\Frozen-Bubble
    [01/03/2004|11:45] C:\Program Files\Full Armor Studios
    [07/05/2004|09:16] C:\Program Files\GIMP
    [09/11/2007|14:17] C:\Program Files\Google
    [21/02/2008|05:51] C:\Program Files\grid keep
    [11/07/2004|12:09] C:\Program Files\Infogrames
    [21/03/2008|13:23] C:\Program Files\InstallShield Installation Information
    [19/06/2004|12:50] C:\Program Files\InterActual
    [22/02/2008|21:06] C:\Program Files\Internet Explorer
    [22/12/2003|13:43] C:\Program Files\InterVideo
    [24/02/2008|19:31] C:\Program Files\iPod
    [24/02/2008|19:32] C:\Program Files\iTunes
    [03/05/2004|11:36] C:\Program Files\Java
    [14/11/2003|13:10] C:\Program Files\JavaSoft
    [26/02/2007|18:02] C:\Program Files\Kaspersky Lab
    [20/08/2004|11:41] C:\Program Files\Kodak
    [17/09/2005|20:42] C:\Program Files\Larousse
    [08/01/2008|08:43] C:\Program Files\Lavalys
    [26/02/2007|17:25] C:\Program Files\Lavasoft
    [26/12/2007|20:26] C:\Program Files\Logitech
    [27/05/2004|20:55] C:\Program Files\LogProtect
    [12/11/2007|20:52] C:\Program Files\ma-config.com
    [15/01/2004|21:41] C:\Program Files\Marshall Cavendish
    [27/12/2003|20:42] C:\Program Files\Maxis
    [04/07/2004|11:54] C:\Program Files\Megacity Challenge
    [20/01/2008|09:43] C:\Program Files\Mes Jeux T‚l‚charg‚s
    [14/11/2003|19:44] C:\Program Files\Messager Wanadoo
    [11/11/2007|11:57] C:\Program Files\Messenger
    [19/01/2008|02:37] C:\Program Files\Messenger Plus! Live
    [21/12/2007|07:49] C:\Program Files\Micro Application
    [22/03/2008|19:11] C:\Program Files\Microsoft Expression
    [29/09/2003|18:23] C:\Program Files\microsoft frontpage
    [17/11/2007|22:36] C:\Program Files\Microsoft GIF Animator
    [10/04/2006|12:14] C:\Program Files\Microsoft R‚f‚rence
    [08/01/2004|10:39] C:\Program Files\Microsoft Works
    [15/11/2003|11:49] C:\Program Files\Monte Cristo
    [11/11/2007|12:01] C:\Program Files\Movie Maker
    [22/03/2008|19:08] C:\Program Files\MSBuild
    [29/09/2003|18:20] C:\Program Files\MSN
    [29/09/2003|18:20] C:\Program Files\MSN Gaming Zone
    [19/01/2008|02:37] C:\Program Files\MSN Messenger
    [06/12/2007|20:17] C:\Program Files\Neoact
    [11/11/2007|12:01] C:\Program Files\NetMeeting
    [26/12/2007|01:05] C:\Program Files\Nobilis
    [03/05/2004|11:48] C:\Program Files\OOoVirgule
    [04/11/2007|09:40] C:\Program Files\OpenOffice.org1.1.0
    [11/11/2007|12:01] C:\Program Files\Outlook Express
    [01/03/2004|14:51] C:\Program Files\PacBomber
    [15/05/2004|08:53] C:\Program Files\PAPA Productions
    [01/12/2006|15:09] C:\Program Files\PC Inspector File Recovery
    [27/12/2007|19:19] C:\Program Files\Pekka Kana 2
    [18/01/2008|09:10] C:\Program Files\PENDULO Studios
    [14/12/2007|23:45] C:\Program Files\Picasa2
    [29/04/2004|10:33] C:\Program Files\PLUS!
    [04/07/2004|11:53] C:\Program Files\Pointsoft
    [03/05/2004|12:00] C:\Program Files\QCad
    [24/02/2008|19:26] C:\Program Files\QuickTime
    [29/11/2007|18:47] C:\Program Files\Real Alternative
    [12/11/2007|21:08] C:\Program Files\Realtek AC97
    [22/03/2008|19:01] C:\Program Files\Reference Assemblies
    [01/03/2004|11:15] C:\Program Files\Revistronic
    [11/12/2003|11:57] C:\Program Files\Rockstar Games
    [05/04/2008|16:48] C:\Program Files\Safari
    [21/03/2008|13:23] C:\Program Files\SAGEM
    [13/10/2007|13:42] C:\Program Files\SAGEM(2)
    [22/02/2008|10:30] C:\Program Files\Samsung
    [09/12/2007|14:42] C:\Program Files\ScanSoft
    [12/01/2008|10:54] C:\Program Files\Scol
    [02/12/2007|15:36] C:\Program Files\Seagrand
    [13/10/2007|12:31] C:\Program Files\Securitoo
    [11/10/2003|16:46] C:\Program Files\Services en ligne
    [27/11/2003|13:36] C:\Program Files\Softwin
    [29/12/2007|20:56] C:\Program Files\Sony Ericsson
    [14/02/2007|07:25] C:\Program Files\SOS Corp
    [22/12/2007|16:06] C:\Program Files\Sqirlz Morph
    [16/11/2007|10:40] C:\Program Files\SystemRequirementsLab
    [19/01/2004|20:22] C:\Program Files\Tap'Touche Garfield
    [04/11/2007|10:14] C:\Program Files\The Adventure Company
    [20/02/2007|11:32] C:\Program Files\THQ
    [13/06/2004|11:55] C:\Program Files\TLC-Edusoft
    [10/04/2008|08:33] C:\Program Files\Trend Micro
    [03/05/2004|12:01] C:\Program Files\Tutoriels
    [03/05/2004|12:31] C:\Program Files\tuxmath
    [10/04/2006|11:35] C:\Program Files\Ubi Soft
    [17/03/2007|20:50] C:\Program Files\Ubisoft
    [30/12/2004|12:25] C:\Program Files\Ulead iPhoto Express
    [01/05/2006|19:51] C:\Program Files\Ulead Systems
    [22/12/2007|15:31] C:\Program Files\UnFREEz
    [19/04/2004|20:52] C:\Program Files\Uninstall Information
    [03/05/2004|11:56] C:\Program Files\VideoLAN
    [11/04/2008|05:43] C:\Program Files\Wanadoo
    [21/03/2008|13:04] C:\Program Files\Wanadoo Messager
    [19/01/2008|02:37] C:\Program Files\Windows Live
    [10/02/2008|14:38] C:\Program Files\Windows Media Connect 2
    [10/02/2008|14:38] C:\Program Files\Windows Media Player
    [11/11/2007|11:57] C:\Program Files\Windows NT
    [26/02/2007|17:23] C:\Program Files\WindowsUpdate
    [29/09/2003|18:23] C:\Program Files\xerox
    [05/01/2004|10:58] C:\Program Files\XnView Digital
    [03/05/2004|11:59] C:\Program Files\YafRay
    [03/05/2004|12:43] C:\Program Files\Zinf

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [22/03/2008|19:07] C:\Program Files\Fichiers communs\.
    [22/03/2008|19:07] C:\Program Files\Fichiers communs\..
    [22/03/2008|19:04] C:\Program Files\Fichiers communs\Adobe
    [10/11/2003|16:50] C:\Program Files\Fichiers communs\AOL
    [11/11/2007|12:30] C:\Program Files\Fichiers communs\Apple
    [18/01/2008|12:18] C:\Program Files\Fichiers communs\BOONTY Shared
    [01/03/2004|14:58] C:\Program Files\Fichiers communs\DirectX
    [03/05/2004|11:52] C:\Program Files\Fichiers communs\GTK
    [11/03/2007|15:06] C:\Program Files\Fichiers communs\InstallShield
    [03/05/2004|11:36] C:\Program Files\Fichiers communs\Java
    [26/12/2007|20:26] C:\Program Files\Fichiers communs\LogiShrd
    [05/04/2008|20:22] C:\Program Files\Fichiers communs\Microsoft Shared
    [29/09/2003|18:21] C:\Program Files\Fichiers communs\MSSoap
    [29/09/2003|19:16] C:\Program Files\Fichiers communs\ODBC
    [26/11/2003|21:09] C:\Program Files\Fichiers communs\Python
    [09/12/2007|14:42] C:\Program Files\Fichiers communs\ScanSoft Shared
    [29/09/2003|18:21] C:\Program Files\Fichiers communs\Services
    [26/02/2007|17:35] C:\Program Files\Fichiers communs\Softwin
    [29/09/2003|19:16] C:\Program Files\Fichiers communs\SpeechEngines
    [11/11/2007|12:01] C:\Program Files\Fichiers communs\System
    [11/03/2007|15:07] C:\Program Files\Fichiers communs\Teleca Shared
    [19/12/2003|11:14] C:\Program Files\Fichiers communs\Ulead Systems
    [22/03/2008|19:07] C:\Program Files\Fichiers communs\Vbox
    [05/04/2008|20:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    ----------------------[ Recherche avec S_Lop ]---------------------

    C:\DOCUME~1\CONFOR~1\LOCALS~1\Temp\bis19F.exe

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\CLOCK CURB.exe
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\Seek itch.exe
    C:\Program Files\Circle Developement
    C:\Program Files\Circle Developement\Uninstall.exe
    C:\WINDOWS\Tasks\AC6E9A8791851027.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "WARN POP TRUST LIES"="C:\\Documents and Settings\\All Users\\Application Data\\Camp Mess Warn Pop\\CLOCK CURB.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 72 ( 70 ## added by CiD )

    /!\ 1 Not 127.0.0.1 !!

    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-04-11 12:29:03
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:1143][Doss:98] C:\DOCUME~1\CONFOR~1\LOCALS~1\Temp
    /!\ [Fich:1929][Doss:0] C:\DOCUME~1\CONFOR~1\Cookies
    /!\ [Fich:45577][Doss:69] C:\DOCUME~1\CONFOR~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 12:34:35,45 ]----------------------
    11 Avril 2008 13:36:53

    bonjour

    1

    Relance Lop S&D

  • Choisis cette fois ci l'Option 2 ( Suppression )
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

    2
    ajoute un nouveau log hijackthis
    11 Avril 2008 14:50:37

    re rapport lo s&d

    -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : conforama ] [ "C:\Lop SD" ]
    [ 11/04/2008 | 14:39:56,23 ] [ PC : LYDIE ]
    [ MAJ : 08-04-2008 | 23:37 ]

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\CLOCK CURB.exe
    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop\Seek itch.exe
    Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
    Supprimé! - C:\WINDOWS\Tasks\AC6E9A8791851027.job
    Supprimé! - C:\DOCUME~1\CONFOR~1\LOCALS~1\Temp\bis19F.exe
    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Camp Mess Warn Pop
    Supprimé! - C:\Program Files\Circle Developement
    Restauré! - Fichier Hosts

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    -------------[ Listing des dossiers dans Application Data ]------------

    [11/04/2008|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
    [11/04/2008|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
    [27/12/2007|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [10/11/2007|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [10/11/2007|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [15/12/2003|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft
    [18/01/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [09/12/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
    [29/12/2007|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
    [11/11/2007|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [09/11/2007|14:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [09/12/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [20/08/2004|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
    [23/02/2008|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
    [26/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd
    [26/12/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [01/03/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [05/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [08/04/2006|14:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [31/12/2007|04:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
    [16/02/2008|05:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
    [29/12/2007|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
    [16/11/2003|18:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [29/11/2007|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
    [29/09/2003|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [09/12/2007|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [29/12/2007|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [11/03/2007|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [08/04/2008|10:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [18/01/2008|10:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [01/05/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
    [10/02/2008|14:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [05/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [19/01/2008|22:19] C:\DOCUME~1\ANNCLA~1\APPLIC~1\.
    [19/01/2008|22:19] C:\DOCUME~1\ANNCLA~1\APPLIC~1\..
    [29/09/2003|19:16] C:\DOCUME~1\ANNCLA~1\APPLIC~1\desktop.ini
    [29/09/2003|18:25] C:\DOCUME~1\ANNCLA~1\APPLIC~1\Identities
    [23/12/2004|16:53] C:\DOCUME~1\ANNCLA~1\APPLIC~1\Microsoft

    [08/04/2008|10:21] C:\DOCUME~1\CONFOR~1\APPLIC~1\.
    [08/04/2008|10:21] C:\DOCUME~1\CONFOR~1\APPLIC~1\..
    [27/12/2007|19:06] C:\DOCUME~1\CONFOR~1\APPLIC~1\Adobe
    [03/11/2007|19:59] C:\DOCUME~1\CONFOR~1\APPLIC~1\AdobeUM
    [04/12/2007|08:39] C:\DOCUME~1\CONFOR~1\APPLIC~1\Apple Computer
    [26/11/2003|21:16] C:\DOCUME~1\CONFOR~1\APPLIC~1\ArcSoft
    [16/12/2007|15:09] C:\DOCUME~1\CONFOR~1\APPLIC~1\Brother
    [26/10/2007|10:46] C:\DOCUME~1\CONFOR~1\APPLIC~1\CrystalSpace
    [12/01/2004|15:49] C:\DOCUME~1\CONFOR~1\APPLIC~1\CyberLink
    [29/09/2003|19:16] C:\DOCUME~1\CONFOR~1\APPLIC~1\desktop.ini
    [26/11/2003|21:19] C:\DOCUME~1\CONFOR~1\APPLIC~1\EPSON
    [10/11/2007|15:58] C:\DOCUME~1\CONFOR~1\APPLIC~1\Google
    [21/02/2008|05:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\grid keep
    [09/01/2004|11:13] C:\DOCUME~1\CONFOR~1\APPLIC~1\Help
    [05/12/2003|12:22] C:\DOCUME~1\CONFOR~1\APPLIC~1\Identities
    [29/12/2007|20:45] C:\DOCUME~1\CONFOR~1\APPLIC~1\InstallShield
    [22/12/2003|13:46] C:\DOCUME~1\CONFOR~1\APPLIC~1\InterVideo
    [26/02/2007|17:25] C:\DOCUME~1\CONFOR~1\APPLIC~1\Lavasoft
    [07/05/2004|10:58] C:\DOCUME~1\CONFOR~1\APPLIC~1\Leadertech
    [12/11/2007|20:52] C:\DOCUME~1\CONFOR~1\APPLIC~1\ma-config.com
    [11/12/2007|21:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\Macromedia
    [22/03/2008|19:27] C:\DOCUME~1\CONFOR~1\APPLIC~1\Microsoft
    [10/04/2006|12:51] C:\DOCUME~1\CONFOR~1\APPLIC~1\MSN6
    [29/11/2007|18:47] C:\DOCUME~1\CONFOR~1\APPLIC~1\Real
    [22/02/2008|11:00] C:\DOCUME~1\CONFOR~1\APPLIC~1\Samsung
    [29/01/2008|12:20] C:\DOCUME~1\CONFOR~1\APPLIC~1\ScanSoft
    [29/12/2007|21:14] C:\DOCUME~1\CONFOR~1\APPLIC~1\Sony
    [03/05/2004|20:12] C:\DOCUME~1\CONFOR~1\APPLIC~1\Sun
    [16/11/2003|15:19] C:\DOCUME~1\CONFOR~1\APPLIC~1\Template
    [01/05/2006|20:00] C:\DOCUME~1\CONFOR~1\APPLIC~1\Ulead Systems

    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
    [11/11/2007|11:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [29/09/2003|18:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [11/11/2007|12:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [29/09/2003|18:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
    [10/02/2008|14:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\.
    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\..
    [09/04/2006|13:33] C:\DOCUME~1\lydie\APPLIC~1\Adobe
    [09/04/2006|13:34] C:\DOCUME~1\lydie\APPLIC~1\AdobeUM
    [29/09/2003|19:16] C:\DOCUME~1\lydie\APPLIC~1\desktop.ini
    [07/05/2004|09:57] C:\DOCUME~1\lydie\APPLIC~1\EPSON
    [13/06/2004|11:58] C:\DOCUME~1\lydie\APPLIC~1\Help
    [29/09/2003|18:25] C:\DOCUME~1\lydie\APPLIC~1\Identities
    [22/02/2005|13:38] C:\DOCUME~1\lydie\APPLIC~1\ieproxy.bak
    [13/02/2007|10:41] C:\DOCUME~1\lydie\APPLIC~1\Microsoft
    [03/05/2004|11:37] C:\DOCUME~1\lydie\APPLIC~1\Sun
    [03/05/2004|11:46] C:\DOCUME~1\lydie\APPLIC~1\sversion.ini

    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
    [29/09/2003|18:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [04/04/2008 17:52][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [11/04/2008 05:43][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [09/10/2003|15:23] C:\Program Files\%ALLUSERSPROFILE%
    [11/04/2008|14:40] C:\Program Files\.
    [11/04/2008|14:40] C:\Program Files\..
    [29/12/2004|11:52] C:\Program Files\1stbenison
    [03/05/2004|11:50] C:\Program Files\AbiSuite2
    [08/01/2005|13:57] C:\Program Files\Acer MP3 Flash Stick
    [22/03/2008|19:04] C:\Program Files\Adobe
    [10/12/2003|21:13] C:\Program Files\AIPTEK
    [01/03/2004|14:57] C:\Program Files\Alawar
    [13/10/2007|14:43] C:\Program Files\Alwil Software
    [09/03/2007|13:04] C:\Program Files\Andromeda 9 Public Test 2
    [10/11/2007|14:52] C:\Program Files\Apple Software Update
    [26/11/2003|21:09] C:\Program Files\ArcSoft
    [14/02/2007|07:32] C:\Program Files\Ashampoo
    [08/11/2007|09:18] C:\Program Files\ATI Technologies
    [03/05/2004|11:56] C:\Program Files\Audacity
    [13/02/2007|12:21] C:\Program Files\Audio Manager
    [22/03/2008|16:02] C:\Program Files\Avanquest update
    [03/05/2004|11:59] C:\Program Files\Blender Foundation
    [27/04/2007|19:32] C:\Program Files\Booba_Ouest Side
    [20/01/2008|11:40] C:\Program Files\Boonty
    [20/01/2008|11:39] C:\Program Files\BoontyGames
    [01/03/2004|14:56] C:\Program Files\Bouncy Ball Challenge Demo
    [09/12/2007|14:46] C:\Program Files\Brother
    [22/03/2008|16:02] C:\Program Files\Calendar
    [11/12/2003|16:13] C:\Program Files\Calendar Maker
    [22/03/2008|16:02] C:\Program Files\Cam‚ra Caf‚ 2
    [22/03/2008|16:02] C:\Program Files\Caveman
    [16/01/2005|12:30] C:\Program Files\CD-Encyclopedia
    [11/04/2006|13:52] C:\Program Files\C-Media
    [11/03/2007|15:08] C:\Program Files\Common Files
    [29/09/2003|18:20] C:\Program Files\ComPlus Applications
    [06/12/2007|20:19] C:\Program Files\Conforama_Carte
    [09/12/2007|15:31] C:\Program Files\Core Design
    [10/12/2003|20:18] C:\Program Files\Corel
    [23/12/2003|15:16] C:\Program Files\CyberLink
    [13/02/2004|19:53] C:\Program Files\DATA BECKER
    [03/05/2004|11:48] C:\Program Files\DicOOo
    [03/03/2004|14:17] C:\Program Files\directx
    [01/11/2007|13:20] C:\Program Files\Disney Interactive
    [07/01/2008|14:50] C:\Program Files\DS - Cypher
    [17/12/2004|08:18] C:\Program Files\DVCam 3(PC Camera)
    [19/09/2004|20:48] C:\Program Files\EA GAMES
    [17/11/2007|22:39] C:\Program Files\Easy GIF Animator
    [17/11/2007|22:39] C:\Program Files\Easy Gif Animator Extension
    [17/09/2005|20:33] C:\Program Files\EHMINSTALL
    [13/12/2007|15:41] C:\Program Files\Eidos
    [26/11/2003|21:08] C:\Program Files\EPSON
    [15/05/2004|15:56] C:\Program Files\EZFace
    [02/12/2007|15:54] C:\Program Files\FDSoftware
    [22/03/2008|19:07] C:\Program Files\Fichiers communs
    [03/05/2004|11:48] C:\Program Files\FOOoX
    [03/05/2004|12:17] C:\Program Files\Frozen-Bubble
    [01/03/2004|11:45] C:\Program Files\Full Armor Studios
    [07/05/2004|09:16] C:\Program Files\GIMP
    [09/11/2007|14:17] C:\Program Files\Google
    [21/02/2008|05:51] C:\Program Files\grid keep
    [11/07/2004|12:09] C:\Program Files\Infogrames
    [21/03/2008|13:23] C:\Program Files\InstallShield Installation Information
    [19/06/2004|12:50] C:\Program Files\InterActual
    [22/02/2008|21:06] C:\Program Files\Internet Explorer
    [22/12/2003|13:43] C:\Program Files\InterVideo
    [24/02/2008|19:31] C:\Program Files\iPod
    [24/02/2008|19:32] C:\Program Files\iTunes
    [03/05/2004|11:36] C:\Program Files\Java
    [14/11/2003|13:10] C:\Program Files\JavaSoft
    [26/02/2007|18:02] C:\Program Files\Kaspersky Lab
    [20/08/2004|11:41] C:\Program Files\Kodak
    [17/09/2005|20:42] C:\Program Files\Larousse
    [08/01/2008|08:43] C:\Program Files\Lavalys
    [26/02/2007|17:25] C:\Program Files\Lavasoft
    [26/12/2007|20:26] C:\Program Files\Logitech
    [27/05/2004|20:55] C:\Program Files\LogProtect
    [12/11/2007|20:52] C:\Program Files\ma-config.com
    [15/01/2004|21:41] C:\Program Files\Marshall Cavendish
    [27/12/2003|20:42] C:\Program Files\Maxis
    [04/07/2004|11:54] C:\Program Files\Megacity Challenge
    [20/01/2008|09:43] C:\Program Files\Mes Jeux T‚l‚charg‚s
    [14/11/2003|19:44] C:\Program Files\Messager Wanadoo
    [11/11/2007|11:57] C:\Program Files\Messenger
    [19/01/2008|02:37] C:\Program Files\Messenger Plus! Live
    [21/12/2007|07:49] C:\Program Files\Micro Application
    [22/03/2008|19:11] C:\Program Files\Microsoft Expression
    [29/09/2003|18:23] C:\Program Files\microsoft frontpage
    [17/11/2007|22:36] C:\Program Files\Microsoft GIF Animator
    [10/04/2006|12:14] C:\Program Files\Microsoft R‚f‚rence
    [08/01/2004|10:39] C:\Program Files\Microsoft Works
    [15/11/2003|11:49] C:\Program Files\Monte Cristo
    [11/11/2007|12:01] C:\Program Files\Movie Maker
    [22/03/2008|19:08] C:\Program Files\MSBuild
    [29/09/2003|18:20] C:\Program Files\MSN
    [29/09/2003|18:20] C:\Program Files\MSN Gaming Zone
    [19/01/2008|02:37] C:\Program Files\MSN Messenger
    [06/12/2007|20:17] C:\Program Files\Neoact
    [11/11/2007|12:01] C:\Program Files\NetMeeting
    [26/12/2007|01:05] C:\Program Files\Nobilis
    [03/05/2004|11:48] C:\Program Files\OOoVirgule
    [04/11/2007|09:40] C:\Program Files\OpenOffice.org1.1.0
    [11/11/2007|12:01] C:\Program Files\Outlook Express
    [01/03/2004|14:51] C:\Program Files\PacBomber
    [15/05/2004|08:53] C:\Program Files\PAPA Productions
    [01/12/2006|15:09] C:\Program Files\PC Inspector File Recovery
    [27/12/2007|19:19] C:\Program Files\Pekka Kana 2
    [18/01/2008|09:10] C:\Program Files\PENDULO Studios
    [14/12/2007|23:45] C:\Program Files\Picasa2
    [29/04/2004|10:33] C:\Program Files\PLUS!
    [04/07/2004|11:53] C:\Program Files\Pointsoft
    [03/05/2004|12:00] C:\Program Files\QCad
    [24/02/2008|19:26] C:\Program Files\QuickTime
    [29/11/2007|18:47] C:\Program Files\Real Alternative
    [12/11/2007|21:08] C:\Program Files\Realtek AC97
    [22/03/2008|19:01] C:\Program Files\Reference Assemblies
    [01/03/2004|11:15] C:\Program Files\Revistronic
    [11/12/2003|11:57] C:\Program Files\Rockstar Games
    [05/04/2008|16:48] C:\Program Files\Safari
    [21/03/2008|13:23] C:\Program Files\SAGEM
    [13/10/2007|13:42] C:\Program Files\SAGEM(2)
    [22/02/2008|10:30] C:\Program Files\Samsung
    [09/12/2007|14:42] C:\Program Files\ScanSoft
    [12/01/2008|10:54] C:\Program Files\Scol
    [02/12/2007|15:36] C:\Program Files\Seagrand
    [13/10/2007|12:31] C:\Program Files\Securitoo
    [11/10/2003|16:46] C:\Program Files\Services en ligne
    [27/11/2003|13:36] C:\Program Files\Softwin
    [29/12/2007|20:56] C:\Program Files\Sony Ericsson
    [14/02/2007|07:25] C:\Program Files\SOS Corp
    [22/12/2007|16:06] C:\Program Files\Sqirlz Morph
    [16/11/2007|10:40] C:\Program Files\SystemRequirementsLab
    [19/01/2004|20:22] C:\Program Files\Tap'Touche Garfield
    [04/11/2007|10:14] C:\Program Files\The Adventure Company
    [20/02/2007|11:32] C:\Program Files\THQ
    [13/06/2004|11:55] C:\Program Files\TLC-Edusoft
    [10/04/2008|08:33] C:\Program Files\Trend Micro
    [03/05/2004|12:01] C:\Program Files\Tutoriels
    [03/05/2004|12:31] C:\Program Files\tuxmath
    [10/04/2006|11:35] C:\Program Files\Ubi Soft
    [17/03/2007|20:50] C:\Program Files\Ubisoft
    [30/12/2004|12:25] C:\Program Files\Ulead iPhoto Express
    [01/05/2006|19:51] C:\Program Files\Ulead Systems
    [22/12/2007|15:31] C:\Program Files\UnFREEz
    [19/04/2004|20:52] C:\Program Files\Uninstall Information
    [03/05/2004|11:56] C:\Program Files\VideoLAN
    [11/04/2008|05:43] C:\Program Files\Wanadoo
    [21/03/2008|13:04] C:\Program Files\Wanadoo Messager
    [19/01/2008|02:37] C:\Program Files\Windows Live
    [10/02/2008|14:38] C:\Program Files\Windows Media Connect 2
    [10/02/2008|14:38] C:\Program Files\Windows Media Player
    [11/11/2007|11:57] C:\Program Files\Windows NT
    [26/02/2007|17:23] C:\Program Files\WindowsUpdate
    [29/09/2003|18:23] C:\Program Files\xerox
    [05/01/2004|10:58] C:\Program Files\XnView Digital
    [03/05/2004|11:59] C:\Program Files\YafRay
    [03/05/2004|12:43] C:\Program Files\Zinf

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [22/03/2008|19:07] C:\Program Files\Fichiers communs\.
    [22/03/2008|19:07] C:\Program Files\Fichiers communs\..
    [22/03/2008|19:04] C:\Program Files\Fichiers communs\Adobe
    [10/11/2003|16:50] C:\Program Files\Fichiers communs\AOL
    [11/11/2007|12:30] C:\Program Files\Fichiers communs\Apple
    [18/01/2008|12:18] C:\Program Files\Fichiers communs\BOONTY Shared
    [01/03/2004|14:58] C:\Program Files\Fichiers communs\DirectX
    [03/05/2004|11:52] C:\Program Files\Fichiers communs\GTK
    [11/03/2007|15:06] C:\Program Files\Fichiers communs\InstallShield
    [03/05/2004|11:36] C:\Program Files\Fichiers communs\Java
    [26/12/2007|20:26] C:\Program Files\Fichiers communs\LogiShrd
    [05/04/2008|20:22] C:\Program Files\Fichiers communs\Microsoft Shared
    [29/09/2003|18:21] C:\Program Files\Fichiers communs\MSSoap
    [29/09/2003|19:16] C:\Program Files\Fichiers communs\ODBC
    [26/11/2003|21:09] C:\Program Files\Fichiers communs\Python
    [09/12/2007|14:42] C:\Program Files\Fichiers communs\ScanSoft Shared
    [29/09/2003|18:21] C:\Program Files\Fichiers communs\Services
    [26/02/2007|17:35] C:\Program Files\Fichiers communs\Softwin
    [29/09/2003|19:16] C:\Program Files\Fichiers communs\SpeechEngines
    [11/11/2007|12:01] C:\Program Files\Fichiers communs\System
    [11/03/2007|15:07] C:\Program Files\Fichiers communs\Teleca Shared
    [19/12/2003|11:14] C:\Program Files\Fichiers communs\Ulead Systems
    [22/03/2008|19:07] C:\Program Files\Fichiers communs\Vbox
    [05/04/2008|20:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-04-11 14:41:15
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:1138][Doss:98] C:\DOCUME~1\CONFOR~1\LOCALS~1\Temp
    /!\ [Fich:1929][Doss:0] C:\DOCUME~1\CONFOR~1\Cookies
    /!\ [Fich:44916][Doss:69] C:\DOCUME~1\CONFOR~1\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 14:46:07,17 ]----------------------
    11 Avril 2008 14:59:51

    2 hijacktis rapport
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:57:51, on 11/04/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0013)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    C:\Program Files\LogProtect\LogProtect.exe
    C:\PROGRA~1\MESSAG~1\Demon.exe
    C:\WINDOWS\Mixer.exe
    C:\WINDOWS\system32\atwtusb.exe
    C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
    C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
    C:\Program Files\Logitech\QuickCam\Quickcam.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Picasa2\PicasaMediaDetector.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
    C:\Program Files\Larousse\KLÉIO 2001\bin\hyperappel.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\PENSOFT\Quick95.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\slserv.exe
    C:\WINDOWS\System32\snmp.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\fxssvc.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.0\EasyGifAnimator_Toolbar.dll
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
    O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
    O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
    O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
    O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
    O4 - HKLM\..\Run: [LogProtect] "C:\Program Files\LogProtect\LogProtect.exe"
    O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
    O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
    O4 - HKLM\..\Run: [BDMCon] c:\progra~1\softwin\bitdef~1\bdmcon.exe
    O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta
    O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe
    O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
    O4 - HKCU\..\Run: [Knoblies] C:\DOCUME~1\CONFOR~1\APPLIC~1\GRIDKE~1\Save Itch About.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [SpyShredder] C:\Program Files\SpyShredder\SpyShredder.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Quick StartUp.lnk = C:\PENSOFT\fquick32.exe
    O4 - Startup: Start.lnk = C:\PENSOFT\Quick95.exe
    O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Booster Wanadoo.lnk = C:\Program Files\Booster Wanadoo\wanadoo_booster.exe
    O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
    O4 - Global Startup: hyperappel.lnk = ?
    O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
    O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
    O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
    O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/Obe...
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameShell/online/fr/hammer...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe

    --
    End of file - 13379 bytes
    11 Avril 2008 21:00:16

    re

    désinstalle SpyShredder via ajout/supression de programme si tu peux.

    ~Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.

    ~Lance Hijackthis “Do a system scan only”.
    Coche les lignes qui suivent si encore présentes et uniquement celles-là.

    O4 - HKCU\..\Run: [SpyShredder] C:\Program Files\SpyShredder\SpyShredder.exe
    O4 - HKCU\..\Run: [Knoblies] C:\DOCUME~1\CONFOR~1\APPLIC~1\GRIDKE~1\Save Itch About.exe

    Clique sur Fix checked (en bas à gauche)


    Sélectionne TOUS les emplacements en gras ci-dessous :

    C:\DOCUME~1\CONFOR~1\APPLIC~1\grid keep
    C:\Program Files\SpyShredder


    ---> Clique-droit puis Copier (ou Ctrl+C)

    Double-clique sur OTMoveIt.exe afin de le lancer.
    Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
    Clique maintenant sur MoveIt![/#f]

    [#ff0e00]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.

    Accepte en cliquant sur YES.

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log



    11 Avril 2008 22:15:40

    re
    pour 1ere partie impossible d'enlever avec ajout/supression de programme
    pour la suite voila le rapport

    C:\DOCUME~1\CONFOR~1\APPLIC~1\grid keep moved successfully.
    File/Folder C:\Program Files\SpyShredder not found.

    OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 04112008_220807


    12 Avril 2008 13:13:51

    bonjour

    Télécharge MalwareByte's Anti-Malware et installe le.

    ~Redémarre l'ordinateur en mode sans échec (F8 au démarrage de l'ordinateur)
    Aide


  • Lance MalwareByte's Anti-Malware et sélectionne "Exécuter un examen complet". Patiente le temps du scan.
  • Une fois le scan terminé,clique sur "Afficher les résultats" et enregistre le rapport sur ton Bureau.
  • Clique enfin sur "Supprimer la sélection".

    Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
    Aide


    13 Avril 2008 15:31:57

    bonjour, rapport MalwareByte's Anti-Malware

    Malwarebytes' Anti-Malware 1.11
    Version de la base de données: 619

    Type de recherche: Examen complet (C:\|)
    Eléments examinés: 237991
    Temps écoulé: 3 hour(s), 31 minute(s), 16 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 8
    Valeur(s) du Registre infectée(s): 5
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 4

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CLASSES_ROOT\Interface\{e4e3e0f8-cd30-4380-8ce9-b96904bdefca} (Adware.PopCap) -> No action taken.
    HKEY_CLASSES_ROOT\Interface\{fe8a736f-4124-4d9c-b4b1-3b12381efabe} (Adware.PopCap) -> No action taken.
    HKEY_CLASSES_ROOT\Typelib\{c9c5deaf-0a1f-4660-8279-9edfad6fefe1} (Adware.PopCap) -> No action taken.
    HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2 (Adware.PopCap) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> No action taken.
    HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2.1 (Adware.PopCap) -> No action taken.
    HKEY_CURRENT_USER\Software\SpyShredder (Rogue.SpyShredder) -> No action taken.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\host-domain-lookup.com (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\mysearchnow.com (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\www.host-domain-lookup.com (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\www.mysearchnow.com (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ADP (Rogue.Multiple) -> No action taken.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\Downloaded Program Files\popcaploader.dll (Adware.PopCap) -> No action taken.
    C:\Documents and Settings\conforama\Favoris\Online Security Test.url (Rogue.Link) -> No action taken.
    C:\Documents and Settings\All Users\Menu Démarrer\Online Security Guide.url (Rogue.Link) -> No action taken.
    C:\Documents and Settings\All Users\Menu Démarrer\Security Troubleshooting.url (Rogue.Link) -> No action taken.
    13 Avril 2008 16:43:39

    re

    tu as mal lu la procédure:
    Citation :
    # Une fois le scan terminé,clique sur "Afficher les résultats" et enregistre le rapport sur ton Bureau.
    # Clique enfin sur "Supprimer la sélection".


    tu ne l'as pas fait:

    Citation :
    HKEY_CLASSES_ROOT\Interface\{e4e3e0f8-cd30-4380-8ce9-b96904bdefca} (Adware.PopCap) -> No action taken.



    recommence stp :) 
    13 Avril 2008 18:33:02

    re,
    impossible de récupérer MalwareByte's Anti-Malware par ton lien, récupérer ailleur, après analyse, rapport sur le bureau, j'ai fait "Supprimer la selection" je vais recommencer, mais es-que je le fait avec le meme programme?


    13 Avril 2008 23:35:23

    oui

    je n'ai pas mis de lien, je t'expliquais ce que tu avais oublié de faire. :) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS