Se connecter / S'enregistrer
Votre question

Mon ordi n s'éteint plus

Tags :
  • Acer
  • Sécurité
Dernière réponse : dans Sécurité et virus
18 Mars 2008 22:01:07

J'ai depuis peut un probléme avec mon ordinateur.

En effet depuis hier il ne s'éteint plus, quand je lance l'arrêt de mon ordi, il me dis "arret en cour" et c'est tout.
il reste comme sa, je doit l'éteindre en appyant longemps sur le bouton de la tour sinon rien ne fait.
(j'ai windows vista)

Aidez moi svp

Autres pages sur : ordi eteint

a b 8 Sécurité
18 Mars 2008 23:07:16

Bonjour,

Le rapport avec les virus ?

Télécharge puis installe Hijackthis (Trend Micro).
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2
19 Mars 2008 13:22:52

le vois-ci


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:19:24, on 19/03/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16609)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\SysMonitor.exe
C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\3M\PDNotes\PDNotes.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SYSTEM32\taskeng.exe
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {A6984C00-C6EB-11D4-B4A4-080000180323} - C:\PROGRA~1\Rapidown\rapi310.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Windows\system32\SysMonitor.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [PCMService] "C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [?????????] ??????????????e
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [RegPowerClean] "C:\Program Files\Winferno\RegistryPowerCleaner\RegPowerClean.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKCU\..\Run: [Firefox Installer] "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: Post-it® Digital Notes.lnk = C:\Program Files\3M\PDNotes\PDNotes.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
O9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
O9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
O13 - Gopher Prefix:
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/cert...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

--
End of file - 10671 bytes
Contenus similaires
a b 8 Sécurité
19 Mars 2008 16:32:43

Re,

Télécharge Lop S&D.exe sur ton Bureau.
  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
  • Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    19 Mars 2008 18:47:59

    Voici ce que donne le scan :



    -----------------------[ Lop S&D 4.0.8 XP/Vista ]----------------------

    [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
    [ USER : Sabine et Arnaud ] [ "C:\Lop SD" ]
    [ 19/03/2008 | 18:27:09,13 ] [ PC : SABINETARNAUD ]
    [ MAJ : 17-03-2008 | 21:50 ]
    [ UAC => 0 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [19/03/2008|17:53] C:\Users\SABINE~1\AppData\Roaming\3M\PDNotes
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\..
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\.

    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\Online Services
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\..
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\.
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Linguistics
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Acrobat
    [22/02/2008|19:32] C:\Users\SABINE~1\AppData\Roaming\Adobe\Photoshop Album
    [14/02/2008|00:28] C:\Users\SABINE~1\AppData\Roaming\Adobe\Flash Player
    [30/08/2007|19:18] C:\Users\SABINE~1\AppData\Roaming\Adobe\ESD

    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\..
    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\.

    [03/08/2007|21:50] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroHistory.log
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroVision
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroShowTime.bmk
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\..
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\.
    [01/08/2007|21:33] C:\Users\SABINE~1\AppData\Roaming\Ahead\Nero Burning ROM

    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\iTunes
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\..
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\.

    [13/03/2008|01:33] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\Desktop
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\..
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\.

    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\..
    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\.
    [25/01/2008|14:51] C:\Users\SABINE~1\AppData\Roaming\Canon\MP460
    [27/06/2007|19:52] C:\Users\SABINE~1\AppData\Roaming\Canon\MP Navigator V30

    [28/06/2007|07:52] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerCinema
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\MediaCache
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\..
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\.
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerProducer
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerDVD

    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\..
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Codec
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\.
    [16/09/2007|09:22] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Player

    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\..
    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\.
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.data
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.d000

    [28/01/2008|17:28] C:\Users\SABINE~1\AppData\Roaming\Google\Local Search History
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\..
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\.

    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\..
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\{AD3DF52F-3792-4EEF-89F8-CA76C2D96C01}
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\.

    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\PowerRegister
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\..
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\.

    [28/06/2007|21:03] C:\Users\SABINE~1\AppData\Roaming\Macromedia\Flash Player
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\..
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\.

    [03/09/2007|17:24] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\Userdata
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\..
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\.

    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLR Security Config
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\..
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\.
    [13/03/2008|04:01] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Internet Explorer
    [18/02/2008|01:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSN Messenger
    [14/02/2008|16:44] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Credentials
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Live Call
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\IdentityCRL
    [23/01/2008|22:48] C:\Users\SABINE~1\AppData\Roaming\Microsoft\HTML Help
    [08/01/2008|20:54] C:\Users\SABINE~1\AppData\Roaming\Microsoft\SystemCertificates
    [06/12/2007|14:40] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Photo Gallery
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSNLiveFav
    [09/10/2007|17:49] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Crypto
    [28/09/2007|13:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Office
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\UProof
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Proof
    [28/09/2007|13:24] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLView
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Document Building Blocks
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Word
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\AddIns
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Templates
    [28/09/2007|12:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\ModŠles
    [28/07/2007|11:38] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MMC
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Microsoft\preuve
    [10/07/2007|12:30] C:\Users\SABINE~1\AppData\Roaming\Microsoft\LastFlashConfig.WFC
    [10/07/2007|12:10] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Network
    [27/06/2007|11:36] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Protect

    [20/10/2007|12:07] C:\Users\SABINE~1\AppData\Roaming\Roxio\PlasmaLog.txt
    [04/10/2007|21:10] C:\Users\SABINE~1\AppData\Roaming\Roxio\MediaManager9
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\..
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\.
    [04/10/2007|18:39] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral33

    [11/03/2008|01:44] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Data
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\..
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\.
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Collections
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Torrents

    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\Cleanup
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\..
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\.
    [15/02/2008|00:50] C:\Users\SABINE~1\AppData\Roaming\Symantec\Layouts

    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\MozillaOrg
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\..
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\.

    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\..
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\.
    [03/08/2000|18:36] C:\Users\SABINE~1\AppData\Roaming\Template\Normal.wpt

    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\TuneUp Utilities
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\..
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\.

    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\..
    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\.

    ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

    [14/03/2008 17:15][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [30/09/2007 08:00][--a------] C:\Windows\tasks\rpc.job
    [19/03/2008 18:22][--ah-----] C:\Windows\tasks\SA.DAT
    [19/03/2008 18:16][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    ------[ Listing des dossiers dans C:\ProgramData ]------

    [13/03/2008|03:53] C:\ProgramData\.
    [13/03/2008|03:53] C:\ProgramData\..
    [17/02/2008|23:29] C:\ProgramData\01 DVD DVD.08y3cn7
    [17/02/2008|23:29] C:\ProgramData\01 DVD DVD.vxpg3y
    [09/03/2008|19:34] C:\ProgramData\118300.34
    [06/12/2007|14:03] C:\ProgramData\addr_file.html
    [28/02/2008|16:36] C:\ProgramData\Adobe
    [27/10/2007|15:22] C:\ProgramData\Ahead
    [17/09/2007|21:14] C:\ProgramData\Apple Computer
    [02/11/2006|13:59] C:\ProgramData\Application Data
    [14/01/2008|15:58] C:\ProgramData\Avira
    [17/02/2008|23:30] C:\ProgramData\Bike slow option.fp785
    [12/03/2008|02:16] C:\ProgramData\BitDefender
    [27/06/2007|10:47] C:\ProgramData\Bureau
    [27/06/2007|11:25] C:\ProgramData\CanonBJ
    [27/06/2007|13:12] C:\ProgramData\CyberLink
    [02/11/2006|13:59] C:\ProgramData\Desktop
    [02/11/2006|13:59] C:\ProgramData\Documents
    [12/08/2007|18:29] C:\ProgramData\eMule
    [27/06/2007|10:47] C:\ProgramData\Favoris
    [02/11/2006|13:59] C:\ProgramData\Favorites
    [18/01/2008|18:02] C:\ProgramData\Google
    [27/06/2007|10:59] C:\ProgramData\InstallShield
    [17/02/2008|23:30] C:\ProgramData\Live List Setup
    [12/03/2008|02:16] C:\ProgramData\LUUnInstall.LiveUpdate
    [27/06/2007|10:47] C:\ProgramData\Menu D‚marrer
    [28/09/2007|13:09] C:\ProgramData\Microsoft
    [30/09/2007|18:47] C:\ProgramData\Microsoft Help
    [27/06/2007|10:47] C:\ProgramData\ModŠles
    [02/07/2007|19:33] C:\ProgramData\Motive
    [17/02/2008|23:30] C:\ProgramData\Once Dog Dupe Amok
    [20/10/2007|15:50] C:\ProgramData\Roxio
    [17/09/2007|21:20] C:\ProgramData\ScanSoft
    [15/02/2008|02:53] C:\ProgramData\sentinel
    [02/11/2006|13:59] C:\ProgramData\Start Menu
    [12/03/2008|18:44] C:\ProgramData\Symantec
    [02/11/2006|13:59] C:\ProgramData\Templates
    [19/10/2007|10:57] C:\ProgramData\Trymedia
    [15/02/2008|21:06] C:\ProgramData\WLInstaller

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [19/03/2008|13:18] C:\Program Files\.
    [19/03/2008|13:18] C:\Program Files\..
    [13/03/2008|00:02] C:\Program Files\3M
    [27/06/2007|10:59] C:\Program Files\Acer Inc
    [10/03/2008|00:00] C:\Program Files\Adobe
    [28/10/2007|11:27] C:\Program Files\Ahead
    [13/08/2007|17:32] C:\Program Files\AskTBar
    [14/01/2008|15:51] C:\Program Files\AviSynth 2.5
    [27/06/2007|11:34] C:\Program Files\Canon
    [27/06/2007|11:21] C:\Program Files\CanonBJ
    [02/07/2007|19:33] C:\Program Files\Club-Internet
    [12/03/2008|02:12] C:\Program Files\Common Files
    [23/09/2007|17:29] C:\Program Files\CyberLink
    [12/09/2007|12:24] C:\Program Files\desktop.ini
    [12/08/2007|18:28] C:\Program Files\eMule
    [27/06/2007|10:47] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [18/01/2008|18:02] C:\Program Files\Google
    [13/03/2008|00:02] C:\Program Files\InstallShield Installation Information
    [15/02/2008|14:41] C:\Program Files\Internet Explorer
    [31/01/2008|16:59] C:\Program Files\IVCsoft
    [13/03/2008|03:26] C:\Program Files\Java
    [08/12/2007|21:49] C:\Program Files\Mediafour
    [08/08/2007|11:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [02/11/2006|13:35] C:\Program Files\Microsoft Games
    [02/11/2006|13:40] C:\Program Files\Movie Maker
    [02/11/2006|13:35] C:\Program Files\MSBuild
    [02/11/2006|13:35] C:\Program Files\MSN
    [19/02/2008|21:05] C:\Program Files\MSN Messenger
    [18/10/2007|09:36] C:\Program Files\MSXML 4.0
    [15/12/2006|16:16] C:\Program Files\NewTech Infosystems
    [15/02/2008|02:49] C:\Program Files\Panda Security
    [10/03/2008|00:07] C:\Program Files\QuickTime
    [24/01/2008|20:25] C:\Program Files\Rapidown
    [10/07/2007|20:04] C:\Program Files\Real
    [02/11/2006|13:35] C:\Program Files\Reference Assemblies
    [27/07/2007|18:31] C:\Program Files\Shareaza
    [12/03/2008|02:15] C:\Program Files\Softwin
    [19/03/2008|13:18] C:\Program Files\Trend Micro
    [02/11/2006|13:58] C:\Program Files\Uninstall Information
    [31/01/2008|18:50] C:\Program Files\WinAVI MP4 Converter
    [10/09/2007|12:35] C:\Program Files\Windows Calendar
    [02/11/2006|13:40] C:\Program Files\Windows Collaboration
    [09/08/2007|12:02] C:\Program Files\Windows Defender
    [13/11/2007|13:46] C:\Program Files\Windows Live Toolbar
    [15/03/2008|21:31] C:\Program Files\Windows Mail
    [16/10/2007|02:12] C:\Program Files\Windows Media Player
    [27/06/2007|10:47] C:\Program Files\Windows NT
    [02/11/2006|13:40] C:\Program Files\Windows Photo Gallery
    [11/01/2008|13:44] C:\Program Files\Windows Sidebar

    ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

    [12/03/2008|02:12] C:\Program Files\Common Files\.
    [12/03/2008|02:12] C:\Program Files\Common Files\..
    [28/02/2008|16:37] C:\Program Files\Common Files\Adobe
    [27/10/2007|15:29] C:\Program Files\Common Files\Ahead
    [14/01/2008|15:50] C:\Program Files\Common Files\AVSMedia
    [13/02/2008|18:58] C:\Program Files\Common Files\BitDefender
    [27/06/2007|10:59] C:\Program Files\Common Files\InstallShield
    [28/07/2007|12:52] C:\Program Files\Common Files\Java
    [15/12/2006|16:15] C:\Program Files\Common Files\LightScribe
    [10/07/2007|20:04] C:\Program Files\Common Files\Logitech
    [05/03/2008|17:14] C:\Program Files\Common Files\microsoft shared
    [15/12/2006|16:16] C:\Program Files\Common Files\NewTech Infosystems
    [10/03/2008|00:01] C:\Program Files\Common Files\PX Storage Engine
    [10/07/2007|20:04] C:\Program Files\Common Files\Real
    [20/10/2007|15:50] C:\Program Files\Common Files\Roxio Shared
    [02/11/2006|12:18] C:\Program Files\Common Files\Services
    [12/03/2008|02:16] C:\Program Files\Common Files\Softwin
    [02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
    [12/03/2008|18:44] C:\Program Files\Common Files\Symantec Shared
    [30/09/2007|18:44] C:\Program Files\Common Files\System
    [13/11/2007|12:01] C:\Program Files\Common Files\WindowsLiveInstaller

    ----------------------[ Recherche avec S_Lop ]---------------------

    C:\ProgramData\01 DVD DVD.08y3cn7
    C:\ProgramData\01 DVD DVD.vxpg3y
    C:\ProgramData\Bike slow option.fp785
    C:\ProgramData\01 DVD DVD.08y3cn7
    C:\ProgramData\Bike slow option.fp785

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-03-19 18:35:34
    Windows 6.0.6000 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:107][Doss:30] C:\Users\SABINE~1\AppData\Local\Temp
    /!\ [Fich:282][Doss:1] C:\Users\SABINE~1\AppData\Roaming\MICROS~1\Windows\Cookies
    /!\ [Fich:1220][Doss:6] C:\Users\SABINE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5

    [ UAC => 1 ]

    --------------------[ Fin du rapport a 18:45:07,57 ]----------------------
    a b 8 Sécurité
    19 Mars 2008 18:53:53

    Re,

    Relance Lop S&D

  • Choisis cette fois ci l'Option 2 (Suppression)
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
    19 Mars 2008 19:20:36

    voici le rapport avec l'option supression:



    -----------------------[ Lop S&D 4.0.8 XP/Vista ]----------------------

    [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
    [ USER : Sabine et Arnaud ] [ "C:\Lop SD" ]
    [ 19/03/2008 | 19:09:26,58 ] [ PC : SABINETARNAUD ]
    [ MAJ : 17-03-2008 | 21:50 ]
    [ UAC => 0 ]

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprimé! - C:\ProgramData\01 DVD DVD.08y3cn7
    Supprimé! - C:\ProgramData\01 DVD DVD.vxpg3y
    Supprimé! - C:\ProgramData\Bike slow option.fp785
    Restauré! - Fichier Hosts

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    -------------[ Listing des dossiers dans Application Data ]------------

    [19/03/2008|17:53] C:\Users\SABINE~1\AppData\Roaming\3M\PDNotes
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\..
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\.

    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\Online Services
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\..
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\.
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Linguistics
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Acrobat
    [22/02/2008|19:32] C:\Users\SABINE~1\AppData\Roaming\Adobe\Photoshop Album
    [14/02/2008|00:28] C:\Users\SABINE~1\AppData\Roaming\Adobe\Flash Player
    [30/08/2007|19:18] C:\Users\SABINE~1\AppData\Roaming\Adobe\ESD

    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\..
    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\.

    [03/08/2007|21:50] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroHistory.log
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroVision
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroShowTime.bmk
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\..
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\.
    [01/08/2007|21:33] C:\Users\SABINE~1\AppData\Roaming\Ahead\Nero Burning ROM

    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\iTunes
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\..
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\.

    [13/03/2008|01:33] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\Desktop
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\..
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\.

    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\..
    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\.
    [25/01/2008|14:51] C:\Users\SABINE~1\AppData\Roaming\Canon\MP460
    [27/06/2007|19:52] C:\Users\SABINE~1\AppData\Roaming\Canon\MP Navigator V30

    [28/06/2007|07:52] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerCinema
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\MediaCache
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\..
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\.
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerProducer
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerDVD

    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\..
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Codec
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\.
    [16/09/2007|09:22] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Player

    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\..
    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\.
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.data
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.d000

    [28/01/2008|17:28] C:\Users\SABINE~1\AppData\Roaming\Google\Local Search History
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\..
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\.

    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\..
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\{AD3DF52F-3792-4EEF-89F8-CA76C2D96C01}
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\.

    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\PowerRegister
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\..
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\.

    [28/06/2007|21:03] C:\Users\SABINE~1\AppData\Roaming\Macromedia\Flash Player
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\..
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\.

    [03/09/2007|17:24] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\Userdata
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\..
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\.

    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLR Security Config
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\..
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\.
    [13/03/2008|04:01] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Internet Explorer
    [18/02/2008|01:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSN Messenger
    [14/02/2008|16:44] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Credentials
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Live Call
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\IdentityCRL
    [23/01/2008|22:48] C:\Users\SABINE~1\AppData\Roaming\Microsoft\HTML Help
    [08/01/2008|20:54] C:\Users\SABINE~1\AppData\Roaming\Microsoft\SystemCertificates
    [06/12/2007|14:40] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Photo Gallery
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSNLiveFav
    [09/10/2007|17:49] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Crypto
    [28/09/2007|13:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Office
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\UProof
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Proof
    [28/09/2007|13:24] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLView
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Document Building Blocks
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Word
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\AddIns
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Templates
    [28/09/2007|12:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\ModŠles
    [28/07/2007|11:38] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MMC
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Microsoft\preuve
    [10/07/2007|12:30] C:\Users\SABINE~1\AppData\Roaming\Microsoft\LastFlashConfig.WFC
    [10/07/2007|12:10] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Network
    [27/06/2007|11:36] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Protect

    [20/10/2007|12:07] C:\Users\SABINE~1\AppData\Roaming\Roxio\PlasmaLog.txt
    [04/10/2007|21:10] C:\Users\SABINE~1\AppData\Roaming\Roxio\MediaManager9
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\..
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\.
    [04/10/2007|18:39] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral33

    [11/03/2008|01:44] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Data
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\..
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\.
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Collections
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Torrents

    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\Cleanup
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\..
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\.
    [15/02/2008|00:50] C:\Users\SABINE~1\AppData\Roaming\Symantec\Layouts

    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\MozillaOrg
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\..
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\.

    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\..
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\.
    [03/08/2000|18:36] C:\Users\SABINE~1\AppData\Roaming\Template\Normal.wpt

    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\TuneUp Utilities
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\..
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\.

    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\..
    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\.

    ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

    [14/03/2008 17:15][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [30/09/2007 08:00][--a------] C:\Windows\tasks\rpc.job
    [19/03/2008 19:07][--ah-----] C:\Windows\tasks\SA.DAT
    [19/03/2008 19:05][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    ------[ Listing des dossiers dans C:\ProgramData ]------

    [19/03/2008|19:10] C:\ProgramData\.
    [19/03/2008|19:10] C:\ProgramData\..
    [09/03/2008|19:34] C:\ProgramData\118300.34
    [06/12/2007|14:03] C:\ProgramData\addr_file.html
    [28/02/2008|16:36] C:\ProgramData\Adobe
    [27/10/2007|15:22] C:\ProgramData\Ahead
    [17/09/2007|21:14] C:\ProgramData\Apple Computer
    [02/11/2006|13:59] C:\ProgramData\Application Data
    [14/01/2008|15:58] C:\ProgramData\Avira
    [12/03/2008|02:16] C:\ProgramData\BitDefender
    [27/06/2007|10:47] C:\ProgramData\Bureau
    [27/06/2007|11:25] C:\ProgramData\CanonBJ
    [27/06/2007|13:12] C:\ProgramData\CyberLink
    [02/11/2006|13:59] C:\ProgramData\Desktop
    [02/11/2006|13:59] C:\ProgramData\Documents
    [12/08/2007|18:29] C:\ProgramData\eMule
    [27/06/2007|10:47] C:\ProgramData\Favoris
    [02/11/2006|13:59] C:\ProgramData\Favorites
    [18/01/2008|18:02] C:\ProgramData\Google
    [27/06/2007|10:59] C:\ProgramData\InstallShield
    [17/02/2008|23:30] C:\ProgramData\Live List Setup
    [12/03/2008|02:16] C:\ProgramData\LUUnInstall.LiveUpdate
    [27/06/2007|10:47] C:\ProgramData\Menu D‚marrer
    [28/09/2007|13:09] C:\ProgramData\Microsoft
    [30/09/2007|18:47] C:\ProgramData\Microsoft Help
    [27/06/2007|10:47] C:\ProgramData\ModŠles
    [02/07/2007|19:33] C:\ProgramData\Motive
    [17/02/2008|23:30] C:\ProgramData\Once Dog Dupe Amok
    [20/10/2007|15:50] C:\ProgramData\Roxio
    [17/09/2007|21:20] C:\ProgramData\ScanSoft
    [15/02/2008|02:53] C:\ProgramData\sentinel
    [02/11/2006|13:59] C:\ProgramData\Start Menu
    [12/03/2008|18:44] C:\ProgramData\Symantec
    [02/11/2006|13:59] C:\ProgramData\Templates
    [19/10/2007|10:57] C:\ProgramData\Trymedia
    [15/02/2008|21:06] C:\ProgramData\WLInstaller

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [19/03/2008|13:18] C:\Program Files\.
    [19/03/2008|13:18] C:\Program Files\..
    [13/03/2008|00:02] C:\Program Files\3M
    [27/06/2007|10:59] C:\Program Files\Acer Inc
    [10/03/2008|00:00] C:\Program Files\Adobe
    [28/10/2007|11:27] C:\Program Files\Ahead
    [13/08/2007|17:32] C:\Program Files\AskTBar
    [14/01/2008|15:51] C:\Program Files\AviSynth 2.5
    [27/06/2007|11:34] C:\Program Files\Canon
    [27/06/2007|11:21] C:\Program Files\CanonBJ
    [02/07/2007|19:33] C:\Program Files\Club-Internet
    [12/03/2008|02:12] C:\Program Files\Common Files
    [23/09/2007|17:29] C:\Program Files\CyberLink
    [12/09/2007|12:24] C:\Program Files\desktop.ini
    [12/08/2007|18:28] C:\Program Files\eMule
    [27/06/2007|10:47] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [18/01/2008|18:02] C:\Program Files\Google
    [13/03/2008|00:02] C:\Program Files\InstallShield Installation Information
    [15/02/2008|14:41] C:\Program Files\Internet Explorer
    [31/01/2008|16:59] C:\Program Files\IVCsoft
    [13/03/2008|03:26] C:\Program Files\Java
    [08/12/2007|21:49] C:\Program Files\Mediafour
    [08/08/2007|11:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [02/11/2006|13:35] C:\Program Files\Microsoft Games
    [02/11/2006|13:40] C:\Program Files\Movie Maker
    [02/11/2006|13:35] C:\Program Files\MSBuild
    [02/11/2006|13:35] C:\Program Files\MSN
    [19/02/2008|21:05] C:\Program Files\MSN Messenger
    [18/10/2007|09:36] C:\Program Files\MSXML 4.0
    [15/12/2006|16:16] C:\Program Files\NewTech Infosystems
    [15/02/2008|02:49] C:\Program Files\Panda Security
    [10/03/2008|00:07] C:\Program Files\QuickTime
    [24/01/2008|20:25] C:\Program Files\Rapidown
    [10/07/2007|20:04] C:\Program Files\Real
    [02/11/2006|13:35] C:\Program Files\Reference Assemblies
    [27/07/2007|18:31] C:\Program Files\Shareaza
    [12/03/2008|02:15] C:\Program Files\Softwin
    [19/03/2008|13:18] C:\Program Files\Trend Micro
    [02/11/2006|13:58] C:\Program Files\Uninstall Information
    [31/01/2008|18:50] C:\Program Files\WinAVI MP4 Converter
    [10/09/2007|12:35] C:\Program Files\Windows Calendar
    [02/11/2006|13:40] C:\Program Files\Windows Collaboration
    [09/08/2007|12:02] C:\Program Files\Windows Defender
    [13/11/2007|13:46] C:\Program Files\Windows Live Toolbar
    [15/03/2008|21:31] C:\Program Files\Windows Mail
    [16/10/2007|02:12] C:\Program Files\Windows Media Player
    [27/06/2007|10:47] C:\Program Files\Windows NT
    [02/11/2006|13:40] C:\Program Files\Windows Photo Gallery
    [11/01/2008|13:44] C:\Program Files\Windows Sidebar

    ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

    [12/03/2008|02:12] C:\Program Files\Common Files\.
    [12/03/2008|02:12] C:\Program Files\Common Files\..
    [28/02/2008|16:37] C:\Program Files\Common Files\Adobe
    [27/10/2007|15:29] C:\Program Files\Common Files\Ahead
    [14/01/2008|15:50] C:\Program Files\Common Files\AVSMedia
    [13/02/2008|18:58] C:\Program Files\Common Files\BitDefender
    [27/06/2007|10:59] C:\Program Files\Common Files\InstallShield
    [28/07/2007|12:52] C:\Program Files\Common Files\Java
    [15/12/2006|16:15] C:\Program Files\Common Files\LightScribe
    [10/07/2007|20:04] C:\Program Files\Common Files\Logitech
    [05/03/2008|17:14] C:\Program Files\Common Files\microsoft shared
    [15/12/2006|16:16] C:\Program Files\Common Files\NewTech Infosystems
    [10/03/2008|00:01] C:\Program Files\Common Files\PX Storage Engine
    [10/07/2007|20:04] C:\Program Files\Common Files\Real
    [20/10/2007|15:50] C:\Program Files\Common Files\Roxio Shared
    [02/11/2006|12:18] C:\Program Files\Common Files\Services
    [12/03/2008|02:16] C:\Program Files\Common Files\Softwin
    [02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
    [12/03/2008|18:44] C:\Program Files\Common Files\Symantec Shared
    [30/09/2007|18:44] C:\Program Files\Common Files\System
    [13/11/2007|12:01] C:\Program Files\Common Files\WindowsLiveInstaller

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-03-19 19:12:40
    Windows 6.0.6000 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:108][Doss:30] C:\Users\SABINE~1\AppData\Local\Temp
    /!\ [Fich:302][Doss:1] C:\Users\SABINE~1\AppData\Roaming\MICROS~1\Windows\Cookies
    /!\ [Fich:1801][Doss:6] C:\Users\SABINE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5

    [ UAC => 1 ]

    --------------------[ Fin du rapport a 19:16:27,01 ]----------------------
    a b 8 Sécurité
    19 Mars 2008 19:42:03

    Reposte un rapport Hijackthis.
    19 Mars 2008 19:55:19

    le voilà :



    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:54:29, on 19/03/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16609)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\System32\SysMonitor.exe
    C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    C:\Program Files\Softwin\BitDefender10\bdmcon.exe
    C:\Program Files\Softwin\BitDefender10\bdagent.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Shareaza\Shareaza.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Program Files\3M\PDNotes\PDNotes.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\SYSTEM32\taskeng.exe
    C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\explorer.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {A6984C00-C6EB-11D4-B4A4-080000180323} - C:\PROGRA~1\Rapidown\rapi310.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Windows\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe"
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKCU\..\Run: [?????????] ??????????????e
    O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
    O4 - HKCU\..\Run: [RegPowerClean] "C:\Program Files\Winferno\RegistryPowerCleaner\RegPowerClean.exe"
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
    O4 - HKCU\..\Run: [Firefox Installer] "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
    O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Empowering Technology Launcher.lnk = ?
    O4 - Global Startup: Post-it® Digital Notes.lnk = C:\Program Files\3M\PDNotes\PDNotes.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
    O13 - Gopher Prefix:
    O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/cert...
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLSched.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 10648 bytes
    a b 8 Sécurité
    19 Mars 2008 20:39:54

    Re,

    Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES

    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
    O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
    20 Mars 2008 00:54:00

    c'est fait.
    je l'es arrêter, puis redémarrer. il s'éteint.
    mais qu'ais-je fait en réalité? (avec toutes les choses que vous me disait de faire )
    a b 8 Sécurité
    20 Mars 2008 15:45:12

    On n'a pas terminé. Refais un scan LopS&D option 1.
    20 Mars 2008 22:11:05

    ok, le voit-ci :

    -----------------------[ Lop S&D 4.0.8 XP/Vista ]----------------------

    [ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
    [ USER : Sabine et Arnaud ] [ "C:\Lop SD" ]
    [ 20/03/2008 | 21:54:18,80 ] [ PC : SABINETARNAUD ]
    [ MAJ : 17-03-2008 | 21:50 ]
    [ UAC => 0 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [20/03/2008|20:57] C:\Users\SABINE~1\AppData\Roaming\3M\PDNotes
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\..
    [13/03/2008|00:03] C:\Users\SABINE~1\AppData\Roaming\3M\.

    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\Online Services
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\..
    [09/03/2008|23:52] C:\Users\SABINE~1\AppData\Roaming\Adobe\.
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Linguistics
    [22/02/2008|19:44] C:\Users\SABINE~1\AppData\Roaming\Adobe\Acrobat
    [22/02/2008|19:32] C:\Users\SABINE~1\AppData\Roaming\Adobe\Photoshop Album
    [14/02/2008|00:28] C:\Users\SABINE~1\AppData\Roaming\Adobe\Flash Player
    [30/08/2007|19:18] C:\Users\SABINE~1\AppData\Roaming\Adobe\ESD

    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\..
    [31/07/2007|22:27] C:\Users\SABINE~1\AppData\Roaming\AdobeUM\.

    [03/08/2007|21:50] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroHistory.log
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroVision
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\NeroShowTime.bmk
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\..
    [03/08/2007|20:03] C:\Users\SABINE~1\AppData\Roaming\Ahead\.
    [01/08/2007|21:33] C:\Users\SABINE~1\AppData\Roaming\Ahead\Nero Burning ROM

    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\iTunes
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\..
    [15/09/2007|19:08] C:\Users\SABINE~1\AppData\Roaming\Apple Computer\.

    [13/03/2008|01:33] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\Desktop
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\..
    [12/03/2008|02:36] C:\Users\SABINE~1\AppData\Roaming\Bitdefender\.

    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\..
    [25/01/2008|14:52] C:\Users\SABINE~1\AppData\Roaming\Canon\.
    [25/01/2008|14:51] C:\Users\SABINE~1\AppData\Roaming\Canon\MP460
    [27/06/2007|19:52] C:\Users\SABINE~1\AppData\Roaming\Canon\MP Navigator V30

    [28/06/2007|07:52] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerCinema
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\MediaCache
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\..
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\.
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerProducer
    [27/06/2007|13:12] C:\Users\SABINE~1\AppData\Roaming\CyberLink\PowerDVD

    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\..
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Codec
    [16/09/2007|09:25] C:\Users\SABINE~1\AppData\Roaming\DivX\.
    [16/09/2007|09:22] C:\Users\SABINE~1\AppData\Roaming\DivX\DivX Player

    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\..
    [13/03/2008|03:31] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\.
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.data
    [13/03/2008|00:01] C:\Users\SABINE~1\AppData\Roaming\GetRightToGo\Download_PDNInstall49_now.d000

    [28/01/2008|17:28] C:\Users\SABINE~1\AppData\Roaming\Google\Local Search History
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\..
    [03/09/2007|18:17] C:\Users\SABINE~1\AppData\Roaming\Google\.

    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\..
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\{AD3DF52F-3792-4EEF-89F8-CA76C2D96C01}
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Identities\.

    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\PowerRegister
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\..
    [09/03/2008|23:59] C:\Users\SABINE~1\AppData\Roaming\Leadertech\.

    [28/06/2007|21:03] C:\Users\SABINE~1\AppData\Roaming\Macromedia\Flash Player
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\..
    [27/06/2007|11:04] C:\Users\SABINE~1\AppData\Roaming\Macromedia\.

    [03/09/2007|17:24] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\Userdata
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\..
    [23/08/2007|20:40] C:\Users\SABINE~1\AppData\Roaming\MessengerSkinner\.

    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLR Security Config
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\..
    [14/03/2008|18:02] C:\Users\SABINE~1\AppData\Roaming\Microsoft\.
    [13/03/2008|04:01] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Internet Explorer
    [18/02/2008|01:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSN Messenger
    [14/02/2008|16:44] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Credentials
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Live Call
    [28/01/2008|14:57] C:\Users\SABINE~1\AppData\Roaming\Microsoft\IdentityCRL
    [23/01/2008|22:48] C:\Users\SABINE~1\AppData\Roaming\Microsoft\HTML Help
    [08/01/2008|20:54] C:\Users\SABINE~1\AppData\Roaming\Microsoft\SystemCertificates
    [06/12/2007|14:40] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows Photo Gallery
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
    [13/11/2007|13:17] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MSNLiveFav
    [09/10/2007|17:49] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Crypto
    [28/09/2007|13:27] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Office
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\UProof
    [28/09/2007|13:26] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Proof
    [28/09/2007|13:24] C:\Users\SABINE~1\AppData\Roaming\Microsoft\CLView
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Document Building Blocks
    [28/09/2007|13:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Word
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\AddIns
    [28/09/2007|13:15] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Templates
    [28/09/2007|12:16] C:\Users\SABINE~1\AppData\Roaming\Microsoft\ModŠles
    [28/07/2007|11:38] C:\Users\SABINE~1\AppData\Roaming\Microsoft\MMC
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Microsoft\preuve
    [10/07/2007|12:30] C:\Users\SABINE~1\AppData\Roaming\Microsoft\LastFlashConfig.WFC
    [10/07/2007|12:10] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Network
    [27/06/2007|11:36] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Windows
    [27/06/2007|10:52] C:\Users\SABINE~1\AppData\Roaming\Microsoft\Protect

    [20/10/2007|12:07] C:\Users\SABINE~1\AppData\Roaming\Roxio\PlasmaLog.txt
    [04/10/2007|21:10] C:\Users\SABINE~1\AppData\Roaming\Roxio\MediaManager9
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\..
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral
    [04/10/2007|18:41] C:\Users\SABINE~1\AppData\Roaming\Roxio\.
    [04/10/2007|18:39] C:\Users\SABINE~1\AppData\Roaming\Roxio\RoxioCentral33

    [19/03/2008|20:29] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Data
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\..
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\.
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Collections
    [27/07/2007|18:31] C:\Users\SABINE~1\AppData\Roaming\Shareaza\Torrents

    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\Cleanup
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\..
    [25/02/2008|13:13] C:\Users\SABINE~1\AppData\Roaming\Symantec\.
    [15/02/2008|00:50] C:\Users\SABINE~1\AppData\Roaming\Symantec\Layouts

    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\MozillaOrg
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\..
    [16/09/2007|09:18] C:\Users\SABINE~1\AppData\Roaming\Talkback\.

    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\..
    [10/07/2007|20:21] C:\Users\SABINE~1\AppData\Roaming\Template\.
    [03/08/2000|18:36] C:\Users\SABINE~1\AppData\Roaming\Template\Normal.wpt

    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\TuneUp Utilities
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\..
    [24/01/2008|20:19] C:\Users\SABINE~1\AppData\Roaming\TuneUp Software\.

    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\..
    [23/01/2008|16:32] C:\Users\SABINE~1\AppData\Roaming\WinRAR\.

    ----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

    [14/03/2008 17:15][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [30/09/2007 08:00][--a------] C:\Windows\tasks\rpc.job
    [20/03/2008 21:54][--ah-----] C:\Windows\tasks\SA.DAT
    [20/03/2008 21:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    ------[ Listing des dossiers dans C:\ProgramData ]------

    [19/03/2008|19:10] C:\ProgramData\.
    [19/03/2008|19:10] C:\ProgramData\..
    [09/03/2008|19:34] C:\ProgramData\118300.34
    [06/12/2007|14:03] C:\ProgramData\addr_file.html
    [28/02/2008|16:36] C:\ProgramData\Adobe
    [27/10/2007|15:22] C:\ProgramData\Ahead
    [17/09/2007|21:14] C:\ProgramData\Apple Computer
    [02/11/2006|13:59] C:\ProgramData\Application Data
    [14/01/2008|15:58] C:\ProgramData\Avira
    [12/03/2008|02:16] C:\ProgramData\BitDefender
    [27/06/2007|10:47] C:\ProgramData\Bureau
    [27/06/2007|11:25] C:\ProgramData\CanonBJ
    [27/06/2007|13:12] C:\ProgramData\CyberLink
    [02/11/2006|13:59] C:\ProgramData\Desktop
    [02/11/2006|13:59] C:\ProgramData\Documents
    [12/08/2007|18:29] C:\ProgramData\eMule
    [27/06/2007|10:47] C:\ProgramData\Favoris
    [02/11/2006|13:59] C:\ProgramData\Favorites
    [18/01/2008|18:02] C:\ProgramData\Google
    [27/06/2007|10:59] C:\ProgramData\InstallShield
    [17/02/2008|23:30] C:\ProgramData\Live List Setup
    [12/03/2008|02:16] C:\ProgramData\LUUnInstall.LiveUpdate
    [27/06/2007|10:47] C:\ProgramData\Menu D‚marrer
    [28/09/2007|13:09] C:\ProgramData\Microsoft
    [30/09/2007|18:47] C:\ProgramData\Microsoft Help
    [27/06/2007|10:47] C:\ProgramData\ModŠles
    [02/07/2007|19:33] C:\ProgramData\Motive
    [17/02/2008|23:30] C:\ProgramData\Once Dog Dupe Amok
    [20/10/2007|15:50] C:\ProgramData\Roxio
    [17/09/2007|21:20] C:\ProgramData\ScanSoft
    [15/02/2008|02:53] C:\ProgramData\sentinel
    [02/11/2006|13:59] C:\ProgramData\Start Menu
    [12/03/2008|18:44] C:\ProgramData\Symantec
    [02/11/2006|13:59] C:\ProgramData\Templates
    [19/10/2007|10:57] C:\ProgramData\Trymedia
    [15/02/2008|21:06] C:\ProgramData\WLInstaller

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [19/03/2008|13:18] C:\Program Files\.
    [19/03/2008|13:18] C:\Program Files\..
    [13/03/2008|00:02] C:\Program Files\3M
    [27/06/2007|10:59] C:\Program Files\Acer Inc
    [10/03/2008|00:00] C:\Program Files\Adobe
    [28/10/2007|11:27] C:\Program Files\Ahead
    [13/08/2007|17:32] C:\Program Files\AskTBar
    [14/01/2008|15:51] C:\Program Files\AviSynth 2.5
    [27/06/2007|11:34] C:\Program Files\Canon
    [27/06/2007|11:21] C:\Program Files\CanonBJ
    [02/07/2007|19:33] C:\Program Files\Club-Internet
    [12/03/2008|02:12] C:\Program Files\Common Files
    [23/09/2007|17:29] C:\Program Files\CyberLink
    [12/09/2007|12:24] C:\Program Files\desktop.ini
    [12/08/2007|18:28] C:\Program Files\eMule
    [27/06/2007|10:47] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
    [18/01/2008|18:02] C:\Program Files\Google
    [13/03/2008|00:02] C:\Program Files\InstallShield Installation Information
    [15/02/2008|14:41] C:\Program Files\Internet Explorer
    [31/01/2008|16:59] C:\Program Files\IVCsoft
    [13/03/2008|03:26] C:\Program Files\Java
    [08/12/2007|21:49] C:\Program Files\Mediafour
    [08/08/2007|11:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [02/11/2006|13:35] C:\Program Files\Microsoft Games
    [02/11/2006|13:40] C:\Program Files\Movie Maker
    [02/11/2006|13:35] C:\Program Files\MSBuild
    [02/11/2006|13:35] C:\Program Files\MSN
    [19/02/2008|21:05] C:\Program Files\MSN Messenger
    [18/10/2007|09:36] C:\Program Files\MSXML 4.0
    [15/12/2006|16:16] C:\Program Files\NewTech Infosystems
    [15/02/2008|02:49] C:\Program Files\Panda Security
    [10/03/2008|00:07] C:\Program Files\QuickTime
    [24/01/2008|20:25] C:\Program Files\Rapidown
    [10/07/2007|20:04] C:\Program Files\Real
    [02/11/2006|13:35] C:\Program Files\Reference Assemblies
    [27/07/2007|18:31] C:\Program Files\Shareaza
    [12/03/2008|02:15] C:\Program Files\Softwin
    [19/03/2008|13:18] C:\Program Files\Trend Micro
    [02/11/2006|13:58] C:\Program Files\Uninstall Information
    [31/01/2008|18:50] C:\Program Files\WinAVI MP4 Converter
    [10/09/2007|12:35] C:\Program Files\Windows Calendar
    [02/11/2006|13:40] C:\Program Files\Windows Collaboration
    [09/08/2007|12:02] C:\Program Files\Windows Defender
    [13/11/2007|13:46] C:\Program Files\Windows Live Toolbar
    [15/03/2008|21:31] C:\Program Files\Windows Mail
    [16/10/2007|02:12] C:\Program Files\Windows Media Player
    [27/06/2007|10:47] C:\Program Files\Windows NT
    [02/11/2006|13:40] C:\Program Files\Windows Photo Gallery
    [11/01/2008|13:44] C:\Program Files\Windows Sidebar

    ------[ Listing des dossiers dans C:\Program Files\Common Files ]------

    [12/03/2008|02:12] C:\Program Files\Common Files\.
    [12/03/2008|02:12] C:\Program Files\Common Files\..
    [28/02/2008|16:37] C:\Program Files\Common Files\Adobe
    [27/10/2007|15:29] C:\Program Files\Common Files\Ahead
    [14/01/2008|15:50] C:\Program Files\Common Files\AVSMedia
    [13/02/2008|18:58] C:\Program Files\Common Files\BitDefender
    [27/06/2007|10:59] C:\Program Files\Common Files\InstallShield
    [28/07/2007|12:52] C:\Program Files\Common Files\Java
    [15/12/2006|16:15] C:\Program Files\Common Files\LightScribe
    [10/07/2007|20:04] C:\Program Files\Common Files\Logitech
    [05/03/2008|17:14] C:\Program Files\Common Files\microsoft shared
    [15/12/2006|16:16] C:\Program Files\Common Files\NewTech Infosystems
    [10/03/2008|00:01] C:\Program Files\Common Files\PX Storage Engine
    [10/07/2007|20:04] C:\Program Files\Common Files\Real
    [20/10/2007|15:50] C:\Program Files\Common Files\Roxio Shared
    [02/11/2006|12:18] C:\Program Files\Common Files\Services
    [12/03/2008|02:16] C:\Program Files\Common Files\Softwin
    [02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
    [12/03/2008|18:44] C:\Program Files\Common Files\Symantec Shared
    [30/09/2007|18:44] C:\Program Files\Common Files\System
    [13/11/2007|12:01] C:\Program Files\Common Files\WindowsLiveInstaller

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-03-20 22:00:38
    Windows 6.0.6000 NTFS
    scanning hidden files ...
    scan completed successfully
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    Aucune autre infection trouvée !

    /!\ [Fich:118][Doss:30] C:\Users\SABINE~1\AppData\Local\Temp
    /!\ [Fich:120][Doss:1] C:\Users\SABINE~1\AppData\Roaming\MICROS~1\Windows\Cookies
    /!\ [Fich:2957][Doss:6] C:\Users\SABINE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5

    [ UAC => 1 ]

    --------------------[ Fin du rapport a 22:08:31,05 ]----------------------
    a b 8 Sécurité
    21 Mars 2008 17:56:46

    Re,

    Supprime :
    C:\ProgramData\Once Dog Dupe Amok
    21 Mars 2008 19:25:49

    ok, c'est fait.
    je fait quoi maintenant ?
    a b 8 Sécurité
    21 Mars 2008 21:09:14

    Reposte un rapport Hijackthis.
    23 Mars 2008 19:27:50

    le voilà :

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:54:29, on 19/03/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16609)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\System32\SysMonitor.exe
    C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    C:\Program Files\Softwin\BitDefender10\bdmcon.exe
    C:\Program Files\Softwin\BitDefender10\bdagent.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Shareaza\Shareaza.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Program Files\3M\PDNotes\PDNotes.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\SYSTEM32\taskeng.exe
    C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\explorer.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {A6984C00-C6EB-11D4-B4A4-080000180323} - C:\PROGRA~1\Rapidown\rapi310.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Windows\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe"
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKCU\..\Run: [?????????] ??????????????e
    O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
    O4 - HKCU\..\Run: [RegPowerClean] "C:\Program Files\Winferno\RegistryPowerCleaner\RegPowerClean.exe"
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
    O4 - HKCU\..\Run: [Firefox Installer] "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
    O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Empowering Technology Launcher.lnk = ?
    O4 - Global Startup: Post-it® Digital Notes.lnk = C:\Program Files\3M\PDNotes\PDNotes.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
    O13 - Gopher Prefix:
    O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/cert...
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLSched.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 10648 bytes
    a b 8 Sécurité
    24 Mars 2008 16:26:05

    Re,

    Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES

    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O4 - HKCU\..\Run: [?????????] ??????????????e
    O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
    O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
    25 Mars 2008 10:24:10

    bonjour,
    j'ai suivie ce que vous m'avez dit, mais rien n'y fait.

    il y à une fenêtre dans laquelle il est inscrit:
    Pour une raison quelconque, votre système deni d'accès en écriture au fichier hôte. Éventuellement détourné domaines sont dans ce fichier, hijackthis n'est peut-être pas en mesure de résoudre ce problème.
    Si cela se produit, vous devez éditer le fichier vous-même. Pour ce faire, cliquez sur démarrer, exécuter et tapez:
    Notepad c: / windows/system32/etc/host
    Enter.find et appuyez sur la ligne (s) des rapports hijackthis et les supprimer.
    Enregistrer le fichier sous "hosts". (Avec les guillemets), et redémarrez.
    Pour vista; simplement, sortie hijackthis, clic droit sur l'icône kijackthis, choisissez "exécuter en tant qu'administrateur".

    je clik donc sur "ok", et je poursuit.
    rien ne fait.

    je demande donc à ouvrir "hijackthis" en tand qu'administrateur, mais il ne ce lance pas et comme je ne suis pas trés "balaise" en info., je ne parvient pas à suivre ce qu'il ce dit dans le message pour aller dans le "system32" et faire ce qu'il es demander.

    aidez moi svp :-(
    a b 8 Sécurité
    25 Mars 2008 12:31:44

    Reposte un rapport Hijackthis pour voir.
    25 Mars 2008 21:55:04

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:54:29, on 19/03/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16609)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\System32\SysMonitor.exe
    C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    C:\Program Files\Softwin\BitDefender10\bdmcon.exe
    C:\Program Files\Softwin\BitDefender10\bdagent.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Shareaza\Shareaza.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Program Files\3M\PDNotes\PDNotes.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\SYSTEM32\taskeng.exe
    C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\explorer.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {A6984C00-C6EB-11D4-B4A4-080000180323} - C:\PROGRA~1\Rapidown\rapi310.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Windows\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Acer\Empowering Technology\eMode\PCM\PCMService.exe"
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKCU\..\Run: [?????????] ??????????????e
    O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
    O4 - HKCU\..\Run: [RegPowerClean] "C:\Program Files\Winferno\RegistryPowerCleaner\RegPowerClean.exe"
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
    O4 - HKCU\..\Run: [Firefox Installer] "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Internetbore] "C:\ProgramData\01 DVD DVD.vxpg3y"
    O4 - HKCU\..\Run: [dupe amok gram atom] "C:\ProgramData\Bike slow option.fp785"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Empowering Technology Launcher.lnk = ?
    O4 - Global Startup: Post-it® Digital Notes.lnk = C:\Program Files\3M\PDNotes\PDNotes.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\npjpi160_05.dll
    O9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\Rapidown.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
    O13 - Gopher Prefix:
    O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/cert...
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Acer\Empowering Technology\eMode\PCM\Kernel\TV\CLSched.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
    O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 10648 bytes
    a b 8 Sécurité
    25 Mars 2008 21:57:06

    Tu peux essayer de fixer les lignes en sans échec ?
    26 Mars 2008 19:49:27

    en sans échec ?
    sinon j'ai essayer comme je faisait avant (comme il était dit) et rien ne fait , c'est comme je l'es expliquer plus haut ...
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS