Se connecter / S'enregistrer
Votre question

pop-up adserver5.com [résolu]

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
3 Octobre 2007 14:45:40

bonjour
ma presence n'est pas bonne nouvelle :sarcastic:  , toutefois rien de très grave.

exposition du probleme:
j'utilise mozilla pour naviguer sur internet, je n'utilise jamais IE, pourtant quand je surf, des pop-up s'ouvre sous IE alors que je suis sur mozilla. si sa peut aider, les pop-up viennent tous de "www.adserver5.com".

que faire?

Autres pages sur : pop adserver5 com resolu

4 Octobre 2007 19:17:33


Bonsoir :) 

Désinfecté depuis pas longtemps ...


Télécharge Lop S&D <- ici
clique sur Extraire tous les fichiers , dezippe le sur ton Bureau

Ouvre le Dossier Lop S&D et double clique sur Scan.bat ( le .bat peut ne pas apparaitre )
Au menu , tape R ( Rechercher ) et valide
N'éxecute pas l'option S sans notre avis !!

Poste le rapport généré
( il se trouve aussi dans le dossier Lop S&D et se nomme Rapport-Lop.txt )

( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer et valide )
Contenus similaires
a b 8 Sécurité
4 Octobre 2007 19:19:18

On vient à peine de te désinfecter et tu recommences ?!
6 Octobre 2007 12:43:09

:(  oui je suis désolé... mais pourtant je fais attention à ne rien lancer, accepter et je fais des scan regulierement (j'ai virer un worm, un trojan et un downloader d'ailleurs!)... je n'est que AVG, ce n'est peut-être pas suffisant. vous n'auriez pas et bon antivirus a me conseillé ou un truc comme ça?

en attendant voici le rapport:


-------------------------------[ Lop S&D 1.1 ]------------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Romain\Bureau\Lop S&D"

Rapport crée : Le 06/10/2007 à 12:37:47,06 PC : ROMAIN-468FB087

! Faire analyser le rapport par un Helper avant intervention !

---------------------[ Listing des dossiers dans Applications Data ]--------------------

C:\Documents and Settings\Administrateur\Application Data\Identities
C:\Documents and Settings\Administrateur\Application Data\Microsoft
C:\Documents and Settings\Administrateur\Application Data\Mozilla
C:\Documents and Settings\Administrateur\Application Data\Macromedia
C:\Documents and Settings\Administrateur\Application Data\desktop.ini

C:\Documents and Settings\All Users\Application Data\Google Updater
C:\Documents and Settings\All Users\Application Data\Software rule flag owns
C:\Documents and Settings\All Users\Application Data\hpzinstall.log
C:\Documents and Settings\All Users\Application Data\Lavasoft
C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\All Users\Application Data\addr_file.html
C:\Documents and Settings\All Users\Application Data\Grisoft
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Adobe
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Apple
C:\Documents and Settings\All Users\Application Data\Mozilla
C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
C:\Documents and Settings\All Users\Application Data\TEMP
C:\Documents and Settings\All Users\Application Data\DVD Shrink
C:\Documents and Settings\All Users\Application Data\MAGIX
C:\Documents and Settings\All Users\Application Data\nView_Profiles
C:\Documents and Settings\All Users\Application Data\NVIDIA
C:\Documents and Settings\All Users\Application Data\Ulead Systems
C:\Documents and Settings\All Users\Application Data\InstallShield
C:\Documents and Settings\All Users\Application Data\Bluetooth
C:\Documents and Settings\All Users\Application Data\HP
C:\Documents and Settings\All Users\Application Data\desktop.ini

C:\Documents and Settings\Damien\Application Data\Google Updater
C:\Documents and Settings\Damien\Application Data\Software rule flag owns
C:\Documents and Settings\Damien\Application Data\hpzinstall.log
C:\Documents and Settings\Damien\Application Data\Lavasoft
C:\Documents and Settings\Damien\Application Data\Microsoft
C:\Documents and Settings\Damien\Application Data\Google
C:\Documents and Settings\Damien\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\Damien\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\Damien\Application Data\addr_file.html
C:\Documents and Settings\Damien\Application Data\Grisoft
C:\Documents and Settings\Damien\Application Data\Messenger Plus!
C:\Documents and Settings\Damien\Application Data\Adobe
C:\Documents and Settings\Damien\Application Data\Apple Computer
C:\Documents and Settings\Damien\Application Data\Apple
C:\Documents and Settings\Damien\Application Data\Mozilla
C:\Documents and Settings\Damien\Application Data\QTSBandwidthCache
C:\Documents and Settings\Damien\Application Data\TEMP
C:\Documents and Settings\Damien\Application Data\DVD Shrink
C:\Documents and Settings\Damien\Application Data\MAGIX
C:\Documents and Settings\Damien\Application Data\nView_Profiles
C:\Documents and Settings\Damien\Application Data\NVIDIA
C:\Documents and Settings\Damien\Application Data\Ulead Systems
C:\Documents and Settings\Damien\Application Data\InstallShield
C:\Documents and Settings\Damien\Application Data\Bluetooth
C:\Documents and Settings\Damien\Application Data\HP
C:\Documents and Settings\Damien\Application Data\desktop.ini

C:\Documents and Settings\Default User\Application Data\desktop.ini
C:\Documents and Settings\Default User\Application Data\Microsoft

C:\Documents and Settings\Famille\Application Data\Real
C:\Documents and Settings\Famille\Application Data\SecondLife
C:\Documents and Settings\Famille\Application Data\Google
C:\Documents and Settings\Famille\Application Data\Adobe
C:\Documents and Settings\Famille\Application Data\Lavasoft
C:\Documents and Settings\Famille\Application Data\vlc
C:\Documents and Settings\Famille\Application Data\Microsoft
C:\Documents and Settings\Famille\Application Data\Sun
C:\Documents and Settings\Famille\Application Data\Grisoft
C:\Documents and Settings\Famille\Application Data\AdobeUM
C:\Documents and Settings\Famille\Application Data\Macromedia
C:\Documents and Settings\Famille\Application Data\Mozilla
C:\Documents and Settings\Famille\Application Data\Ulead Systems
C:\Documents and Settings\Famille\Application Data\Identities
C:\Documents and Settings\Famille\Application Data\desktop.ini

C:\Documents and Settings\Fr‚d‚rique\Application Data\Real
C:\Documents and Settings\Fr‚d‚rique\Application Data\SecondLife
C:\Documents and Settings\Fr‚d‚rique\Application Data\Google
C:\Documents and Settings\Fr‚d‚rique\Application Data\Adobe
C:\Documents and Settings\Fr‚d‚rique\Application Data\Lavasoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\vlc
C:\Documents and Settings\Fr‚d‚rique\Application Data\Microsoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\Sun
C:\Documents and Settings\Fr‚d‚rique\Application Data\Grisoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\AdobeUM
C:\Documents and Settings\Fr‚d‚rique\Application Data\Macromedia
C:\Documents and Settings\Fr‚d‚rique\Application Data\Mozilla
C:\Documents and Settings\Fr‚d‚rique\Application Data\Ulead Systems
C:\Documents and Settings\Fr‚d‚rique\Application Data\Identities
C:\Documents and Settings\Fr‚d‚rique\Application Data\desktop.ini

C:\Documents and Settings\LocalService\Application Data\Microsoft

C:\Documents and Settings\NetworkService\Application Data\Microsoft

C:\Documents and Settings\Romain\Application Data\surftickbuild
C:\Documents and Settings\Romain\Application Data\LimeWire
C:\Documents and Settings\Romain\Application Data\Real
C:\Documents and Settings\Romain\Application Data\Lavasoft
C:\Documents and Settings\Romain\Application Data\MSNInstaller
C:\Documents and Settings\Romain\Application Data\Microsoft
C:\Documents and Settings\Romain\Application Data\Grisoft
C:\Documents and Settings\Romain\Application Data\vlc
C:\Documents and Settings\Romain\Application Data\Adobe
C:\Documents and Settings\Romain\Application Data\EoRezo
C:\Documents and Settings\Romain\Application Data\SecondLife
C:\Documents and Settings\Romain\Application Data\Mozilla
C:\Documents and Settings\Romain\Application Data\Google
C:\Documents and Settings\Romain\Application Data\Apple Computer
C:\Documents and Settings\Romain\Application Data\Sun
C:\Documents and Settings\Romain\Application Data\AdobeUM
C:\Documents and Settings\Romain\Application Data\dvdcss
C:\Documents and Settings\Romain\Application Data\MAGIX
C:\Documents and Settings\Romain\Application Data\Image Zone Express
C:\Documents and Settings\Romain\Application Data\HP
C:\Documents and Settings\Romain\Application Data\Help
C:\Documents and Settings\Romain\Application Data\Macromedia
C:\Documents and Settings\Romain\Application Data\Ulead Systems
C:\Documents and Settings\Romain\Application Data\Creative
C:\Documents and Settings\Romain\Application Data\desktop.ini
C:\Documents and Settings\Romain\Application Data\Identities

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\A0972E779188A58F.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

--------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Ahead
C:\Program Files\Alwil Software
C:\Program Files\Apple Computer
C:\Program Files\Apple Software Update
C:\Program Files\Bonjour
C:\Program Files\CCleaner
C:\Program Files\CDBurnerXP Pro 3
C:\Program Files\ComPlus Applications
C:\Program Files\crap
C:\Program Files\Creative
C:\Program Files\DVD Audio Extractor
C:\Program Files\DVD Shrink
C:\Program Files\eMule
C:\Program Files\Fichiers communs
C:\Program Files\FlashGet
C:\Program Files\Foreignword
C:\Program Files\Free
C:\Program Files\Free Easy Burner
C:\Program Files\Google
C:\Program Files\Grisoft
C:\Program Files\HP
C:\Program Files\IDoser v4
C:\Program Files\Internet Explorer
C:\Program Files\IVT Corporation
C:\Program Files\Java
C:\Program Files\Lavasoft
C:\Program Files\Ligos
C:\Program Files\LimeWire
C:\Program Files\McAfee
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! Live
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft.NET
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSN Messenger
C:\Program Files\Navilog1
C:\Program Files\NetMeeting
C:\Program Files\Online Services
C:\Program Files\Outlook Express
C:\Program Files\Pando Networks
C:\Program Files\Photofiltre
C:\Program Files\QuickTime
C:\Program Files\RayV
C:\Program Files\Real
C:\Program Files\Realtek
C:\Program Files\Safari
C:\Program Files\Services en ligne
C:\Program Files\SlySoft
C:\Program Files\SmartSound Software
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\surftickbuild
C:\Program Files\Trend Micro
C:\Program Files\Ulead System
C:\Program Files\Ulead Systems
C:\Program Files\Unlocker
C:\Program Files\VideoLAN
C:\Program Files\WinAble
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Media Components
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\Words
C:\Program Files\xerox

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]-----

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\DESIGNER
C:\Program Files\Fichiers communs\HP
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\MAGIX Shared
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Ulead Systems
C:\Program Files\Fichiers communs\Wise Installation Wizard
C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\chin hold.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"DOWNLOAD TRANS"="C:\\DOCUME~1\\Romain\\APPLIC~1\\SURFTI~1\\Optionroam.exe"

-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

C:\Documents and settings\All Users\Application Data\Software rule flag owns
C:\Documents and settings\Romain\Application Data\SURFTI~1
C:\Program Files\SURFTI~1
C:\WINDOWS\Prefetch\CHIN HOLD.EXE-38D456D3.pf
C:\WINDOWS\Prefetch\OPTIONROAM.EXE-25BED776.pf
C:\WINDOWS\tasks\A0972E779188A58F.job

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : MODIFIE

127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

--------------------[ Recherche d'autres infections ]---------------------


--------------------[ Fin du rapport à 12:37:54,39 ]----------------------
6 Octobre 2007 18:32:42



Ouvre le Dossier Lop S&D et double clique sur Scan.bat ( le .bat peut ne pas apparaitre )

Au menu , tape S ( Suppression ) et valide
Ne ferme pas la fenêtre lors de la suppression

Poste le rapport généré
( il se trouve aussi dans le dossier Lop S&D et se nomme Rapport-Lop.txt )

( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer et valide )
7 Octobre 2007 15:16:34

internet explorer devient de plus en plus dingue! des fenetre s'ouvrent dans tout les sens... :heink: 

le rapport:


-------------------------------[ Lop S&D 1.1 ]------------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Romain\Bureau\Lop S&D"

Rapport crée : Le 07/10/2007 à 15:14:53,65 PC : ROMAIN-468FB087

! Faire analyser le rapport par un Helper avant intervention !

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////////

Supprimé - C:\WINDOWS\Prefetch\TONS LOG.EXE-29A1C329.pf
Supprimé - C:\WINDOWS\Prefetch\OPTIONROAM.EXE-25BED776.pf
Supprimé - C:\Documents and settings\All Users\Application Data\Software rule flag owns
Supprimé - C:\Documents and settings\Romain\Application Data\SURFTI~1
Supprimé - C:\Program Files\SURFTI~1
Supprimé - C:\WINDOWS\tasks\A0972E779188A58F.job
Supprimé - C:\WINDOWS\tasks\A0C3C9E9918440E5.job
Restauré - Fichier Hosts

\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Copié ! - [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
Copié ! - [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

---------------------[ Listing des dossiers dans Applications Data ]--------------------

C:\Documents and Settings\Administrateur\Application Data\Identities
C:\Documents and Settings\Administrateur\Application Data\Microsoft
C:\Documents and Settings\Administrateur\Application Data\Mozilla
C:\Documents and Settings\Administrateur\Application Data\Macromedia
C:\Documents and Settings\Administrateur\Application Data\desktop.ini

C:\Documents and Settings\All Users\Application Data\Google Updater
C:\Documents and Settings\All Users\Application Data\hpzinstall.log
C:\Documents and Settings\All Users\Application Data\Lavasoft
C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\All Users\Application Data\addr_file.html
C:\Documents and Settings\All Users\Application Data\Grisoft
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Adobe
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Apple
C:\Documents and Settings\All Users\Application Data\Mozilla
C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
C:\Documents and Settings\All Users\Application Data\TEMP
C:\Documents and Settings\All Users\Application Data\DVD Shrink
C:\Documents and Settings\All Users\Application Data\MAGIX
C:\Documents and Settings\All Users\Application Data\nView_Profiles
C:\Documents and Settings\All Users\Application Data\NVIDIA
C:\Documents and Settings\All Users\Application Data\Ulead Systems
C:\Documents and Settings\All Users\Application Data\InstallShield
C:\Documents and Settings\All Users\Application Data\Bluetooth
C:\Documents and Settings\All Users\Application Data\HP
C:\Documents and Settings\All Users\Application Data\desktop.ini

C:\Documents and Settings\Damien\Application Data\Google Updater
C:\Documents and Settings\Damien\Application Data\hpzinstall.log
C:\Documents and Settings\Damien\Application Data\Lavasoft
C:\Documents and Settings\Damien\Application Data\Microsoft
C:\Documents and Settings\Damien\Application Data\Google
C:\Documents and Settings\Damien\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\Damien\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\Damien\Application Data\addr_file.html
C:\Documents and Settings\Damien\Application Data\Grisoft
C:\Documents and Settings\Damien\Application Data\Messenger Plus!
C:\Documents and Settings\Damien\Application Data\Adobe
C:\Documents and Settings\Damien\Application Data\Apple Computer
C:\Documents and Settings\Damien\Application Data\Apple
C:\Documents and Settings\Damien\Application Data\Mozilla
C:\Documents and Settings\Damien\Application Data\QTSBandwidthCache
C:\Documents and Settings\Damien\Application Data\TEMP
C:\Documents and Settings\Damien\Application Data\DVD Shrink
C:\Documents and Settings\Damien\Application Data\MAGIX
C:\Documents and Settings\Damien\Application Data\nView_Profiles
C:\Documents and Settings\Damien\Application Data\NVIDIA
C:\Documents and Settings\Damien\Application Data\Ulead Systems
C:\Documents and Settings\Damien\Application Data\InstallShield
C:\Documents and Settings\Damien\Application Data\Bluetooth
C:\Documents and Settings\Damien\Application Data\HP
C:\Documents and Settings\Damien\Application Data\desktop.ini

C:\Documents and Settings\Default User\Application Data\desktop.ini
C:\Documents and Settings\Default User\Application Data\Microsoft

C:\Documents and Settings\Famille\Application Data\Real
C:\Documents and Settings\Famille\Application Data\SecondLife
C:\Documents and Settings\Famille\Application Data\Google
C:\Documents and Settings\Famille\Application Data\Adobe
C:\Documents and Settings\Famille\Application Data\Lavasoft
C:\Documents and Settings\Famille\Application Data\vlc
C:\Documents and Settings\Famille\Application Data\Microsoft
C:\Documents and Settings\Famille\Application Data\Sun
C:\Documents and Settings\Famille\Application Data\Grisoft
C:\Documents and Settings\Famille\Application Data\AdobeUM
C:\Documents and Settings\Famille\Application Data\Macromedia
C:\Documents and Settings\Famille\Application Data\Mozilla
C:\Documents and Settings\Famille\Application Data\Ulead Systems
C:\Documents and Settings\Famille\Application Data\Identities
C:\Documents and Settings\Famille\Application Data\desktop.ini

C:\Documents and Settings\Fr‚d‚rique\Application Data\Real
C:\Documents and Settings\Fr‚d‚rique\Application Data\SecondLife
C:\Documents and Settings\Fr‚d‚rique\Application Data\Google
C:\Documents and Settings\Fr‚d‚rique\Application Data\Adobe
C:\Documents and Settings\Fr‚d‚rique\Application Data\Lavasoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\vlc
C:\Documents and Settings\Fr‚d‚rique\Application Data\Microsoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\Sun
C:\Documents and Settings\Fr‚d‚rique\Application Data\Grisoft
C:\Documents and Settings\Fr‚d‚rique\Application Data\AdobeUM
C:\Documents and Settings\Fr‚d‚rique\Application Data\Macromedia
C:\Documents and Settings\Fr‚d‚rique\Application Data\Mozilla
C:\Documents and Settings\Fr‚d‚rique\Application Data\Ulead Systems
C:\Documents and Settings\Fr‚d‚rique\Application Data\Identities
C:\Documents and Settings\Fr‚d‚rique\Application Data\desktop.ini

C:\Documents and Settings\LocalService\Application Data\Microsoft

C:\Documents and Settings\NetworkService\Application Data\Microsoft

C:\Documents and Settings\Romain\Application Data\LimeWire
C:\Documents and Settings\Romain\Application Data\Real
C:\Documents and Settings\Romain\Application Data\Lavasoft
C:\Documents and Settings\Romain\Application Data\MSNInstaller
C:\Documents and Settings\Romain\Application Data\Microsoft
C:\Documents and Settings\Romain\Application Data\Grisoft
C:\Documents and Settings\Romain\Application Data\vlc
C:\Documents and Settings\Romain\Application Data\Adobe
C:\Documents and Settings\Romain\Application Data\EoRezo
C:\Documents and Settings\Romain\Application Data\SecondLife
C:\Documents and Settings\Romain\Application Data\Mozilla
C:\Documents and Settings\Romain\Application Data\Google
C:\Documents and Settings\Romain\Application Data\Apple Computer
C:\Documents and Settings\Romain\Application Data\Sun
C:\Documents and Settings\Romain\Application Data\AdobeUM
C:\Documents and Settings\Romain\Application Data\dvdcss
C:\Documents and Settings\Romain\Application Data\MAGIX
C:\Documents and Settings\Romain\Application Data\Image Zone Express
C:\Documents and Settings\Romain\Application Data\HP
C:\Documents and Settings\Romain\Application Data\Help
C:\Documents and Settings\Romain\Application Data\Macromedia
C:\Documents and Settings\Romain\Application Data\Ulead Systems
C:\Documents and Settings\Romain\Application Data\Creative
C:\Documents and Settings\Romain\Application Data\desktop.ini
C:\Documents and Settings\Romain\Application Data\Identities

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

--------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Ahead
C:\Program Files\Alwil Software
C:\Program Files\Apple Computer
C:\Program Files\Apple Software Update
C:\Program Files\Bonjour
C:\Program Files\CCleaner
C:\Program Files\CDBurnerXP Pro 3
C:\Program Files\ComPlus Applications
C:\Program Files\crap
C:\Program Files\Creative
C:\Program Files\DVD Audio Extractor
C:\Program Files\DVD Shrink
C:\Program Files\eMule
C:\Program Files\Fichiers communs
C:\Program Files\FlashGet
C:\Program Files\Foreignword
C:\Program Files\Free
C:\Program Files\Free Easy Burner
C:\Program Files\Google
C:\Program Files\Grisoft
C:\Program Files\HP
C:\Program Files\IDoser v4
C:\Program Files\Internet Explorer
C:\Program Files\IVT Corporation
C:\Program Files\Java
C:\Program Files\Lavasoft
C:\Program Files\Ligos
C:\Program Files\LimeWire
C:\Program Files\McAfee
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! Live
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft.NET
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSN Messenger
C:\Program Files\Navilog1
C:\Program Files\NetMeeting
C:\Program Files\Online Services
C:\Program Files\Outlook Express
C:\Program Files\Pando Networks
C:\Program Files\Photofiltre
C:\Program Files\QuickTime
C:\Program Files\RayV
C:\Program Files\Real
C:\Program Files\Realtek
C:\Program Files\Safari
C:\Program Files\Services en ligne
C:\Program Files\SlySoft
C:\Program Files\SmartSound Software
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\Trend Micro
C:\Program Files\Ulead System
C:\Program Files\Ulead Systems
C:\Program Files\Unlocker
C:\Program Files\VideoLAN
C:\Program Files\WinAble
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Media Components
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\Words
C:\Program Files\xerox

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]-----

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\DESIGNER
C:\Program Files\Fichiers communs\HP
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\MAGIX Shared
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Ulead Systems
C:\Program Files\Fichiers communs\Wise Installation Wizard
C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\TONS LOG.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\TONS LOG.exe"
"DOWNLOAD TRANS"="C:\\DOCUME~1\\Romain\\APPLIC~1\\SURFTI~1\\Optionroam.exe"

-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

Aucun dossier Lop trouvé !

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : Propre

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvé !

--------------------[ Fin du rapport à 15:15:00,78 ]----------------------
7 Octobre 2007 19:42:53


C'est mieux ?

Tea Timer ( de Spybot ) est activé ?
10 Octobre 2007 14:29:27

c'est revenu...

j'ai refais la manip, il yavai les même fichier host alors j'ai fais l'option supprimer.
puis le rapport:


-------------------------------[ Lop S&D 1.1 ]------------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Romain\Bureau\Lop S&D"

Rapport crée : Le 10/10/2007 à 14:36:32,75 PC : ROMAIN-468FB087

! Faire analyser le rapport par un Helper avant intervention !

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////////

Supprimé - C:\WINDOWS\Prefetch\PEAK SUPPORT.EXE-2B80F6C9.pf
Supprimé - C:\Documents and settings\All Users\Application Data\Software rule flag owns
Supprimé - C:\Program Files\SURFTI~1
Supprimé - C:\WINDOWS\tasks\AC17178791848C9B.job
Restauré - Fichier Hosts

\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Copié ! - [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
Copié ! - [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]
Supprimé - HKLM\Software\Microsoft\Windows\CurrentVersion\Run | Flag Owns Live Grim
Supprimé - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | DOWNLOAD TRANS

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

---------------------[ Listing des dossiers dans Applications Data ]--------------------

C:\Documents and Settings\Administrateur\Application Data\Identities
C:\Documents and Settings\Administrateur\Application Data\Microsoft
C:\Documents and Settings\Administrateur\Application Data\Mozilla
C:\Documents and Settings\Administrateur\Application Data\Macromedia
C:\Documents and Settings\Administrateur\Application Data\desktop.ini

C:\Documents and Settings\All Users\Application Data\Google Updater
C:\Documents and Settings\All Users\Application Data\hpzinstall.log
C:\Documents and Settings\All Users\Application Data\Lavasoft
C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\All Users\Application Data\addr_file.html
C:\Documents and Settings\All Users\Application Data\Grisoft
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Adobe
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Apple
C:\Documents and Settings\All Users\Application Data\Mozilla
C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
C:\Documents and Settings\All Users\Application Data\TEMP
C:\Documents and Settings\All Users\Application Data\DVD Shrink
C:\Documents and Settings\All Users\Application Data\MAGIX
C:\Documents and Settings\All Users\Application Data\nView_Profiles
C:\Documents and Settings\All Users\Application Data\NVIDIA
C:\Documents and Settings\All Users\Application Data\Ulead Systems
C:\Documents and Settings\All Users\Application Data\InstallShield
C:\Documents and Settings\All Users\Application Data\Bluetooth
C:\Documents and Settings\All Users\Application Data\HP
C:\Documents and Settings\All Users\Application Data\desktop.ini

C:\Documents and Settings\Damien\Application Data\Google Updater
C:\Documents and Settings\Damien\Application Data\hpzinstall.log
C:\Documents and Settings\Damien\Application Data\Lavasoft
C:\Documents and Settings\Damien\Application Data\Microsoft
C:\Documents and Settings\Damien\Application Data\Google
C:\Documents and Settings\Damien\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\Damien\Application Data\AntiVir PersonalEdition Classic
C:\Documents and Settings\Damien\Application Data\addr_file.html
C:\Documents and Settings\Damien\Application Data\Grisoft
C:\Documents and Settings\Damien\Application Data\Messenger Plus!
C:\Documents and Settings\Damien\Application Data\Adobe
C:\Documents and Settings\Damien\Application Data\Apple Computer
C:\Documents and Settings\Damien\Application Data\Apple
C:\Documents and Settings\Damien\Application Data\Mozilla
C:\Documents and Settings\Damien\Application Data\QTSBandwidthCache
C:\Documents and Settings\Damien\Application Data\TEMP
C:\Documents and Settings\Damien\Application Data\DVD Shrink
C:\Documents and Settings\Damien\Application Data\MAGIX
C:\Documents and Settings\Damien\Application Data\nView_Profiles
C:\Documents and Settings\Damien\Application Data\NVIDIA
C:\Documents and Settings\Damien\Application Data\Ulead Systems
C:\Documents and Settings\Damien\Application Data\InstallShield
C:\Documents and Settings\Damien\Application Data\Bluetooth
C:\Documents and Settings\Damien\Application Data\HP
C:\Documents and Settings\Damien\Application Data\desktop.ini

C:\Documents and Settings\Default User\Application Data\Macromedia
C:\Documents and Settings\Default User\Application Data\desktop.ini
C:\Documents and Settings\Default User\Application Data\Microsoft

C:\Documents and Settings\Famille\Application Data\Real
C:\Documents and Settings\Famille\Application Data\SecondLife
C:\Documents and Settings\Famille\Application Data\Google
C:\Documents and Settings\Famille\Application Data\Adobe
C:\Documents and Settings\Famille\Application Data\Lavasoft
C:\Documents and Settings\Famille\Application Data\vlc
C:\Documents and Settings\Famille\Application Data\Microsoft
C:\Documents and Settings\Famille\Application Data\Sun
C:\Documents and Settings\Famille\Application Data\Grisoft
C:\Documents and Settings\Famille\Application Data\AdobeUM
C:\Documents and Settings\Famille\Application Data\Macromedia
C:\Documents and Settings\Famille\Application Data\Mozilla
C:\Documents and Settings\Famille\Application Data\Ulead Systems
C:\Documents and Settings\Famille\Application Data\Identities
C:\Documents and Settings\Famille\Application Data\desktop.ini

C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Real
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\SecondLife
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Google
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Adobe
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Lavasoft
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\vlc
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Microsoft
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Sun
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Grisoft
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\AdobeUM
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Macromedia
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Mozilla
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Ulead Systems
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\Identities
C:\Documents and Settings\Fr%u201Ad%u201Arique\Application Data\desktop.ini

C:\Documents and Settings\LocalService\Application Data\Microsoft

C:\Documents and Settings\NetworkService\Application Data\Microsoft

C:\Documents and Settings\Romain\Application Data\LimeWire
C:\Documents and Settings\Romain\Application Data\DivX
C:\Documents and Settings\Romain\Application Data\Real
C:\Documents and Settings\Romain\Application Data\Lavasoft
C:\Documents and Settings\Romain\Application Data\MSNInstaller
C:\Documents and Settings\Romain\Application Data\Microsoft
C:\Documents and Settings\Romain\Application Data\Grisoft
C:\Documents and Settings\Romain\Application Data\vlc
C:\Documents and Settings\Romain\Application Data\Adobe
C:\Documents and Settings\Romain\Application Data\EoRezo
C:\Documents and Settings\Romain\Application Data\SecondLife
C:\Documents and Settings\Romain\Application Data\Mozilla
C:\Documents and Settings\Romain\Application Data\Google
C:\Documents and Settings\Romain\Application Data\Apple Computer
C:\Documents and Settings\Romain\Application Data\Sun
C:\Documents and Settings\Romain\Application Data\AdobeUM
C:\Documents and Settings\Romain\Application Data\dvdcss
C:\Documents and Settings\Romain\Application Data\MAGIX
C:\Documents and Settings\Romain\Application Data\Image Zone Express
C:\Documents and Settings\Romain\Application Data\HP
C:\Documents and Settings\Romain\Application Data\Help
C:\Documents and Settings\Romain\Application Data\Macromedia
C:\Documents and Settings\Romain\Application Data\Ulead Systems
C:\Documents and Settings\Romain\Application Data\Creative
C:\Documents and Settings\Romain\Application Data\desktop.ini
C:\Documents and Settings\Romain\Application Data\Identities

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

--------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Ahead
C:\Program Files\Alwil Software
C:\Program Files\Apple Computer
C:\Program Files\Apple Software Update
C:\Program Files\Bonjour
C:\Program Files\CCleaner
C:\Program Files\CDBurnerXP Pro 3
C:\Program Files\ComPlus Applications
C:\Program Files\crap
C:\Program Files\Creative
C:\Program Files\DivX
C:\Program Files\DVD Audio Extractor
C:\Program Files\DVD Shrink
C:\Program Files\eMule
C:\Program Files\Fichiers communs
C:\Program Files\FlashGet
C:\Program Files\Foreignword
C:\Program Files\Free
C:\Program Files\Free Easy Burner
C:\Program Files\Google
C:\Program Files\Grisoft
C:\Program Files\HP
C:\Program Files\IDoser v4
C:\Program Files\Internet Explorer
C:\Program Files\IVT Corporation
C:\Program Files\Java
C:\Program Files\Lavasoft
C:\Program Files\Ligos
C:\Program Files\LimeWire
C:\Program Files\McAfee
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! Live
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft.NET
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSN Messenger
C:\Program Files\Navilog1
C:\Program Files\NetMeeting
C:\Program Files\Online Services
C:\Program Files\Outlook Express
C:\Program Files\Pando Networks
C:\Program Files\Photofiltre
C:\Program Files\QuickTime
C:\Program Files\RayV
C:\Program Files\Real
C:\Program Files\Realtek
C:\Program Files\Safari
C:\Program Files\Services en ligne
C:\Program Files\SlySoft
C:\Program Files\SmartSound Software
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\Trend Micro
C:\Program Files\Ulead System
C:\Program Files\Ulead Systems
C:\Program Files\Unlocker
C:\Program Files\VideoLAN
C:\Program Files\WinAble
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Media Components
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\Words
C:\Program Files\xerox

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]-----

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\DESIGNER
C:\Program Files\Fichiers communs\HP
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\MAGIX Shared
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Ulead Systems
C:\Program Files\Fichiers communs\Wise Installation Wizard
C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]


-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

Aucun dossier Lop trouvé !

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : Propre

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvé !

--------------------[ Fin du rapport à 14:36:39,15 ]----------------------
10 Octobre 2007 20:56:37


Tu as retéléchargé quelque chose ?
11 Octobre 2007 22:45:23

euh oui, plusieur même.

mais la il n'y a plus de pop up.
13 Octobre 2007 17:22:09


C'est bon alors :) 

Une dernière chose :

Clique, dans ton premier message, sur le bouton "Editer"
Ajoute [Résolu] au titre
Clique ensuite sur "Valider votre message"

Bonne continuation ;) 
13 Novembre 2007 11:04:28

j'ai le même probleme:


------------------------------[ Lop S&D 1.5 ]----------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Propri‚taire\Bureau\LopSD\Lop S&D"

Rapport créé Le mar. 13/11/2007 à 10:33:17,71 PC : CHARLEMAGNE2

! Faire analyser le rapport par un Helper avant intervention !

-------------[ Listing des Dossiers dans Application Data ]-------------

C:\Documents and settings\All Users\Application Data\GridBrowseDriveGlobal
C:\Documents and settings\All Users\Application Data\flag ace stupid data
C:\Documents and settings\All Users\Application Data\Apple Computer
C:\Documents and settings\All Users\Application Data\Apple
C:\Documents and settings\All Users\Application Data\Two Idol Wave Flag
C:\Documents and settings\All Users\Application Data\Microsoft
C:\Documents and settings\All Users\Application Data\IMSI
C:\Documents and settings\All Users\Application Data\Adobe
C:\Documents and settings\All Users\Application Data\Windows Live Toolbar
C:\Documents and settings\All Users\Application Data\Google
C:\Documents and settings\All Users\Application Data\Windows Genuine Advantage
C:\Documents and settings\All Users\Application Data\DVD Shrink
C:\Documents and settings\All Users\Application Data\Messenger Plus!
C:\Documents and settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and settings\All Users\Application Data\MSN Messenger 7.0.0604
C:\Documents and settings\All Users\Application Data\hpzinstall.log
C:\Documents and settings\All Users\Application Data\QuickTime
C:\Documents and settings\All Users\Application Data\Symantec
C:\Documents and settings\All Users\Application Data\MSN6
C:\Documents and settings\All Users\Application Data\Support.com
C:\Documents and settings\All Users\Application Data\SBSI
C:\Documents and settings\All Users\Application Data\Hewlett-Packard
C:\Documents and settings\All Users\Application Data\InterVideo
C:\Documents and settings\All Users\Application Data\desktop.ini

C:\Documents and settings\Default User\Application Data\Sonic
C:\Documents and settings\Default User\Application Data\Symantec
C:\Documents and settings\Default User\Application Data\Microsoft
C:\Documents and settings\Default User\Application Data\SampleView
C:\Documents and settings\Default User\Application Data\InterTrust
C:\Documents and settings\Default User\Application Data\Identities
C:\Documents and settings\Default User\Application Data\Adobe
C:\Documents and settings\Default User\Application Data\desktop.ini

C:\Documents and settings\LocalService\Application Data\Microsoft

C:\Documents and settings\NetworkService\Application Data\Symantec
C:\Documents and settings\NetworkService\Application Data\Microsoft

C:\Documents and settings\PropriǸtaire\Application Data\Macromedia

C:\Documents and settings\Propri‚taire\Application Data\BaseGrimSite
C:\Documents and settings\Propri‚taire\Application Data\Apple Computer
C:\Documents and settings\Propri‚taire\Application Data\GetRightToGo
C:\Documents and settings\Propri‚taire\Application Data\Microsoft
C:\Documents and settings\Propri‚taire\Application Data\IMSI
C:\Documents and settings\Propri‚taire\Application Data\AdobeUM
C:\Documents and settings\Propri‚taire\Application Data\Google
C:\Documents and settings\Propri‚taire\Application Data\Adobe
C:\Documents and settings\Propri‚taire\Application Data\GDIPFONTCACHEV1.DAT
C:\Documents and settings\Propri‚taire\Application Data\Microsoft Games
C:\Documents and settings\Propri‚taire\Application Data\Identities
C:\Documents and settings\Propri‚taire\Application Data\Dossier de t‚l‚chargement Share-to-Web
C:\Documents and settings\Propri‚taire\Application Data\Hewlett-Packard
C:\Documents and settings\Propri‚taire\Application Data\Leadertech
C:\Documents and settings\Propri‚taire\Application Data\Logitech
C:\Documents and settings\Propri‚taire\Application Data\Yahoo! Messenger
C:\Documents and settings\Propri‚taire\Application Data\Help
C:\Documents and settings\Propri‚taire\Application Data\MSN6
C:\Documents and settings\Propri‚taire\Application Data\Macromedia
C:\Documents and settings\Propri‚taire\Application Data\ArcSoft
C:\Documents and settings\Propri‚taire\Application Data\InterVideo
C:\Documents and settings\Propri‚taire\Application Data\Common Files
C:\Documents and settings\Propri‚taire\Application Data\HP
C:\Documents and settings\Propri‚taire\Application Data\Dossier de t‚l‚chargement Share-to-Web
C:\Documents and settings\Propri‚taire\Application Data\Sonic
C:\Documents and settings\Propri‚taire\Application Data\Symantec
C:\Documents and settings\Propri‚taire\Application Data\SampleView
C:\Documents and settings\Propri‚taire\Application Data\InterTrust
C:\Documents and settings\Propri‚taire\Application Data\desktop.ini


----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\B9920E889C09888C.job
C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Propri‚taire.job
C:\WINDOWS\tasks\Symantec NetDetect.job
C:\WINDOWS\tasks\desktop.ini
C:\WINDOWS\tasks\SA.DAT

---------------[ Listing des dossiers dans Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Adverts
C:\Program Files\Alcatel
C:\Program Files\ArcSoft
C:\Program Files\ATI Technologies
C:\Program Files\BaseGrimSite
C:\Program Files\Bethesda Softworks
C:\Program Files\Black Isle
C:\Program Files\BlackIsle
C:\Program Files\Common Files
C:\Program Files\Cyanide
C:\Program Files\directx
C:\Program Files\DivX
C:\Program Files\Download Express
C:\Program Files\DVD Shrink
C:\Program Files\Easy Internet signup
C:\Program Files\Eidos
C:\Program Files\Eidos Interactive
C:\Program Files\eMule
C:\Program Files\Fichiers communs
C:\Program Files\Fourmis
C:\Program Files\GameSpy Arcade
C:\Program Files\G‚n‚aTiqueMX
C:\Program Files\Google
C:\Program Files\GUILD WARS
C:\Program Files\Hewlett-Packard
C:\Program Files\HighMAT CD Writing Wizard
C:\Program Files\HP
C:\Program Files\hp deskjet 840c series
C:\Program Files\IMSI
C:\Program Files\IncrediMail
C:\Program Files\ING
C:\Program Files\InterActual
C:\Program Files\Internet Explorer
C:\Program Files\InterVideo
C:\Program Files\iPod
C:\Program Files\IrfanView
C:\Program Files\iTunes
C:\Program Files\Java
C:\Program Files\Java Web Start
C:\Program Files\Logitech
C:\Program Files\Masta
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! 3
C:\Program Files\Micro Application
C:\Program Files\Microsoft CAPICOM 2.1.0.2
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Software Inventory Analyzer
C:\Program Files\Microsoft Visual Studio
C:\Program Files\Microsoft Works
C:\Program Files\Mindscape
C:\Program Files\Movie Maker
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSN Messenger
C:\Program Files\MSXML 4.0
C:\Program Files\mtp-target
C:\Program Files\Multimedia Card Reader
C:\Program Files\MUSICMATCH
C:\Program Files\NetMeeting
C:\Program Files\Norton AntiVirus
C:\Program Files\Outlook Express
C:\Program Files\QuickTime
C:\Program Files\Real
C:\Program Files\RecordNow!
C:\Program Files\RedLightCenter
C:\Program Files\RngInterstitial.dll
C:\Program Files\Rockstar Games
C:\Program Files\Services en ligne
C:\Program Files\Sony Corporation
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\support.com
C:\Program Files\Symantec
C:\Program Files\SymNetDrv
C:\Program Files\TurboCAD Standard v12.5 Setup
C:\Program Files\Uninstall Information
C:\Program Files\Universal Interactive
C:\Program Files\Winamp
C:\Program Files\Windows Live Favorites
C:\Program Files\Windows Live Toolbar
C:\Program Files\Windows Media Components
C:\Program Files\Windows Media Connect 2
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\xerox
C:\Program Files\XviD
C:\Program Files\Yahoo!

------[ Listing des dossiers dans Program Files\Fichiers Communs ]------

C:\program files\fichiers communs\Adobe
C:\program files\fichiers communs\Apple
C:\program files\fichiers communs\Designer
C:\program files\fichiers communs\Hewlett-Packard
C:\program files\fichiers communs\HP
C:\program files\fichiers communs\InstallShield
C:\program files\fichiers communs\Logitech
C:\program files\fichiers communs\Microsoft Shared
C:\program files\fichiers communs\MSSoap
C:\program files\fichiers communs\muvee Technologies
C:\program files\fichiers communs\ODBC
C:\program files\fichiers communs\PocketSoft
C:\program files\fichiers communs\Real
C:\program files\fichiers communs\Services
C:\program files\fichiers communs\Sonic
C:\program files\fichiers communs\SpeechEngines
C:\program files\fichiers communs\Symantec Shared
C:\program files\fichiers communs\System
C:\program files\fichiers communs\SystemRequirementsLab

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"Stupid Data Dart Wave"="C:\\Documents and Settings\\All Users\\Application Data\\flag ace stupid data\\Window thunk.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"MATH01"="C:\\DOCUME~1\\PROPRI~1\\APPLIC~1\\BASEGR~1\\Borewipeplatform.exe"

-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

C:\Documents and settings\All Users\Application Data\flag ace stupid data
C:\Documents and settings\Propri‚taire\Application Data\BASEGR~1
C:\Program Files\BASEGR~1
C:\WINDOWS\Prefetch\WINDOW THUNK.EXE-1E8A9117.pf
C:\Program Files\Adverts
C:\Documents and settings\Propri‚taire\Cookies\propri‚taire@advertstream[2].txt
C:\WINDOWS\tasks\B9920E889C09888C.job

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : MODIFIE

127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

--------------[ Recherche de fichiers cachés avec Catchme ]---------------

catchme 0.3.1066 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-13 10:33:48
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden services & system hive ...
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

D:\Autorun.inf

F:\Autorun.inf


--------------------[ Fin du rapport à 10:36:23,46 ]----------------------
13 Novembre 2007 20:32:31


simoulacre , merci de créer ton propre sujet

( c'est bien une infection Lop )
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS