CID Je vais péter un cable

  Bonsoir, voire bonne nuit  

Tu as utilisé une mauvaise version d'hijackthis. Désinstalle-la.

Télécharge et installe la celle que je t'ai donnée dans mon lien ( à lire ! ).
Hijackthis
Une fois cela fait, poste-moi un nouveau rapport fait avec la version que je t'ai donnée.

***

Télécharge Lop S&D.exe (d’ Eric 71 & Angeldark) sur ton bureau.

Double-clique dessus pour lancer l'installation

Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)

Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)

Patiente jusqu'à la fin du scan

Poste le rapport généré (C:\lopR.txt)

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

 

Décidément tu dors jamais!!! bon je t'envoi le rapport !!! et merci encor de t'interessé a mon probleme je croi ke j'allais finir par bazarder mon PC !!!Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:53:06, on 26/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [LaunchAp] "C:\Program Files\Launch Manager\LaunchAp.exe"
O4 - HKLM\..\Run: [LManager] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\BITTOR~1\BitP.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /QS
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [drv acid] "C:\ProgramData\EncCopyCopy.cbwyg8s"
O4 - HKCU\..\Run: [SHIM LINK FREE BALL] "C:\ProgramData\Sect bows army.wjprl4"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O13 - Gopher Prefix:
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/VistaMSNPUpld...
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0....
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: eNetHook.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe

--
End of file - 13109 bytes

bon ca y est j'ai le rapport Lop S&d je te le poste!.!.!. par expliques bien le smanipes après merci d'avant a très vite jspr...



-----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : xav' ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 26/06/2008 | 1:02:59,09 ] [ PC : PC-DE-XAV ]
[ MAJ : 24-06-2008 | 11:00 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Roaming ]------------

[28/02/2008|02:03] C:\Users\xav'\AppData\Roaming\Adobe\Linguistics
[14/02/2008|18:43] C:\Users\xav'\AppData\Roaming\Adobe\Flash Player
[21/07/2007|13:21] C:\Users\xav'\AppData\Roaming\Adobe\Acrobat


[08/05/2008|15:48] C:\Users\xav'\AppData\Roaming\Apple Computer\iTunes

[15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\PowerProducer
[15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\PowerDVD
[15/10/2007|12:07] C:\Users\xav'\AppData\Roaming\CyberLink\MediaCache
[20/07/2007|22:00] C:\Users\xav'\AppData\Roaming\CyberLink\PowerCinema

[24/07/2007|01:00] C:\Users\xav'\AppData\Roaming\DivX\DivX Player
[22/07/2007|23:54] C:\Users\xav'\AppData\Roaming\DivX\DivX Codec

[11/03/2008|20:59] C:\Users\xav'\AppData\Roaming\erreurchasseur\Logs


[23/05/2008|18:56] C:\Users\xav'\AppData\Roaming\Google\GoogleEarth
[16/05/2008|19:25] C:\Users\xav'\AppData\Roaming\Google\Local Search History

[25/06/2008|23:19] C:\Users\xav'\AppData\Roaming\HP\CRMLogs
[26/07/2007|00:37] C:\Users\xav'\AppData\Roaming\HP\Digital Imaging
[26/07/2007|00:36] C:\Users\xav'\AppData\Roaming\HP\ScLogs

[21/07/2007|19:16] C:\Users\xav'\AppData\Roaming\Identities\{AC01ECDF-AE09-4213-8F02-4B03BD0F7B58}


[01/03/2008|01:38] C:\Users\xav'\AppData\Roaming\LimeWire\xml
[01/03/2008|01:25] C:\Users\xav'\AppData\Roaming\LimeWire\.AppSpecialShare
[01/03/2008|01:25] C:\Users\xav'\AppData\Roaming\LimeWire\themes

[21/07/2007|19:57] C:\Users\xav'\AppData\Roaming\Macromedia\Flash Player


[25/06/2008|23:11] C:\Users\xav'\AppData\Roaming\Microsoft\Excel
[24/06/2008|20:06] C:\Users\xav'\AppData\Roaming\Microsoft\preuve
[17/06/2008|11:24] C:\Users\xav'\AppData\Roaming\Microsoft\Word
[26/05/2008|13:33] C:\Users\xav'\AppData\Roaming\Microsoft\Clip Organizer
[22/05/2008|10:20] C:\Users\xav'\AppData\Roaming\Microsoft\Office
[18/05/2008|00:25] C:\Users\xav'\AppData\Roaming\Microsoft\Windows Photo Gallery
[16/04/2008|18:50] C:\Users\xav'\AppData\Roaming\Microsoft\Outlook
[10/04/2008|23:28] C:\Users\xav'\AppData\Roaming\Microsoft\IdentityCRL
[16/03/2008|20:37] C:\Users\xav'\AppData\Roaming\Microsoft\MSN Messenger
[01/03/2008|03:20] C:\Users\xav'\AppData\Roaming\Microsoft\Access
[22/01/2008|18:07] C:\Users\xav'\AppData\Roaming\Microsoft\ModŠles
[24/12/2007|19:51] C:\Users\xav'\AppData\Roaming\Microsoft\PowerPoint
[02/12/2007|18:39] C:\Users\xav'\AppData\Roaming\Microsoft\CLR Security Config
[16/10/2007|07:48] C:\Users\xav'\AppData\Roaming\Microsoft\HTML Help
[09/10/2007|17:27] C:\Users\xav'\AppData\Roaming\Microsoft\IMJP10
[19/09/2007|23:22] C:\Users\xav'\AppData\Roaming\Microsoft\Forms
[09/08/2007|23:48] C:\Users\xav'\AppData\Roaming\Microsoft\Internet Explorer
[02/08/2007|22:08] C:\Users\xav'\AppData\Roaming\Microsoft\Crypto
[25/07/2007|23:15] C:\Users\xav'\AppData\Roaming\Microsoft\Installer
[23/07/2007|00:59] C:\Users\xav'\AppData\Roaming\Microsoft\eHome
[22/07/2007|14:32] C:\Users\xav'\AppData\Roaming\Microsoft\FrontPage
[22/07/2007|12:44] C:\Users\xav'\AppData\Roaming\Microsoft\Speech
[21/07/2007|19:16] C:\Users\xav'\AppData\Roaming\Microsoft\SystemCertificates
[21/07/2007|19:15] C:\Users\xav'\AppData\Roaming\Microsoft\Protect
[21/07/2007|19:15] C:\Users\xav'\AppData\Roaming\Microsoft\Credentials
[20/07/2007|22:42] C:\Users\xav'\AppData\Roaming\Microsoft\Macros compl‚mentaires
[20/07/2007|22:20] C:\Users\xav'\AppData\Roaming\Microsoft\MMC
[20/07/2007|22:16] C:\Users\xav'\AppData\Roaming\Microsoft\Windows



[28/04/2008|18:24] C:\Users\xav'\AppData\Roaming\OpenOffice.org2\user


[21/06/2008|16:36] C:\Users\xav'\AppData\Roaming\Planit International\Fusion


[24/06/2008|23:55] C:\Users\xav'\AppData\Roaming\Real\RealPlayer
[16/06/2008|15:20] C:\Users\xav'\AppData\Roaming\Real\Msg
[30/09/2007|22:38] C:\Users\xav'\AppData\Roaming\Real\RealMediaSDK
[28/09/2007|17:56] C:\Users\xav'\AppData\Roaming\Real\rnadmin


[10/06/2008|17:39] C:\Users\xav'\AppData\Roaming\Shareaza\Data
[10/06/2008|17:38] C:\Users\xav'\AppData\Roaming\Shareaza\Collections
[22/01/2008|18:15] C:\Users\xav'\AppData\Roaming\Shareaza\Torrents

[26/12/2007|20:16] C:\Users\xav'\AppData\Roaming\Skype\xavilou69
[24/10/2007|22:06] C:\Users\xav'\AppData\Roaming\Skype\xavilou

[20/07/2007|22:47] C:\Users\xav'\AppData\Roaming\Sun\Java


[21/07/2007|20:05] C:\Users\xav'\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[25/06/2008 03:29][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{18BA6263-5F55-4A79-8C97-9C10951C1D8F}.job
[20/06/2008 20:13][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - xav'.job
[26/06/2008 01:02][--ah-----] C:\Windows\tasks\SA.DAT
[26/06/2008 01:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[10/12/2006|12:26] C:\ProgramData\Adobe
[02/04/2008|13:30] C:\ProgramData\Apple
[14/04/2008|23:01] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[24/06/2008|11:30] C:\ProgramData\BOONTY
[21/07/2007|19:14] C:\ProgramData\Bureau
[22/01/2008|17:32] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[13/06/2008|02:44] C:\ProgramData\EncCopyCopy.8no5t
[05/05/2008|16:58] C:\ProgramData\EncCopyCopy.afy4s
[13/06/2008|03:05] C:\ProgramData\EncCopyCopy.cbwyg8s
[05/05/2008|16:58] C:\ProgramData\EncCopyCopy.u2lxw8
[10/02/2008|23:10] C:\ProgramData\eSellerate
[21/07/2007|19:14] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[22/07/2007|00:18] C:\ProgramData\Google
[25/06/2008|03:46] C:\ProgramData\Google Updater
[05/05/2008|16:59] C:\ProgramData\hide cool shim link
[26/07/2007|00:36] C:\ProgramData\HP
[26/07/2007|00:22] C:\ProgramData\HPSSUPPLY
[16/06/2008|07:43] C:\ProgramData\hpzinstall.log
[21/07/2007|19:16] C:\ProgramData\InstallShield
[21/07/2007|19:14] C:\ProgramData\Menu D‚marrer
[20/07/2007|22:33] C:\ProgramData\Microsoft
[21/07/2007|19:14] C:\ProgramData\ModŠles
[05/05/2008|16:59] C:\ProgramData\oncereal
[21/06/2008|16:36] C:\ProgramData\Planit Fusion Live But
[05/05/2008|16:59] C:\ProgramData\Sect bows army.wjprl4
[24/10/2007|22:01] C:\ProgramData\Skype
[02/11/2006|15:02] C:\ProgramData\Start Menu
[25/03/2008|02:38] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[26/07/2007|00:23] C:\ProgramData\WEBREG
[10/04/2008|23:31] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[10/12/2006|12:33] C:\Program Files\Acer Arcade Deluxe
[21/07/2007|19:15] C:\Program Files\Acer Inc
[10/12/2006|12:26] C:\Program Files\Adobe
[08/06/2008|22:16] C:\Program Files\Alwil Software
[02/04/2008|13:34] C:\Program Files\Apple Software Update
[05/05/2008|16:58] C:\Program Files\BitTorrent Fastest Tool
[02/04/2008|13:38] C:\Program Files\Bonjour
[24/06/2008|11:29] C:\Program Files\Common Files
[10/12/2006|12:35] C:\Program Files\CyberLink
[01/09/2007|00:45] C:\Program Files\desktop.ini
[23/04/2008|20:00] C:\Program Files\DivX
[01/03/2008|02:09] C:\Program Files\DomPlayer
[08/11/2007|20:46] C:\Program Files\EPSON
[21/07/2007|19:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|09:34] C:\Program Files\Google
[26/07/2007|00:18] C:\Program Files\Hewlett-Packard
[26/07/2007|00:22] C:\Program Files\Hp
[23/06/2008|23:15] C:\Program Files\InstallShield Installation Information
[02/12/2006|20:41] C:\Program Files\Intel
[13/06/2008|03:10] C:\Program Files\Internet Explorer
[14/04/2008|23:01] C:\Program Files\iPod
[14/04/2008|23:01] C:\Program Files\iTunes
[05/05/2008|18:01] C:\Program Files\Java
[09/04/2007|13:45] C:\Program Files\Launch Manager
[05/05/2008|21:29] C:\Program Files\Messenger
[24/09/2007|16:59] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[20/07/2007|22:35] C:\Program Files\Microsoft Office
[14/11/2007|23:04] C:\Program Files\Microsoft SQL Server Compact Edition
[10/12/2006|22:06] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[10/02/2008|23:37] C:\Program Files\MSN
[21/07/2007|20:07] C:\Program Files\MSXML 4.0
[10/12/2006|12:34] C:\Program Files\NewTech Infosystems
[29/11/2007|21:10] C:\Program Files\Norton Internet Security
[23/06/2008|22:30] C:\Program Files\OpenOffice.org 2.4
[13/04/2008|13:02] C:\Program Files\Picasa2
[14/04/2008|23:00] C:\Program Files\QuickTime
[28/09/2007|17:56] C:\Program Files\Real
[02/12/2006|20:50] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[06/06/2008|23:35] C:\Program Files\Registry Mechanic
[22/07/2007|23:55] C:\Program Files\RM-X Player V5.0
[22/07/2007|23:45] C:\Program Files\RM-X© Joog
[22/01/2008|18:15] C:\Program Files\Shareaza
[17/01/2008|11:21] C:\Program Files\Shareaza Applications
[24/10/2007|22:01] C:\Program Files\Skype
[10/02/2008|23:52] C:\Program Files\StuffPlug3
[03/10/2007|21:47] C:\Program Files\Symantec
[02/12/2006|20:58] C:\Program Files\Synaptics
[13/03/2008|17:05] C:\Program Files\SystemRequirementsLab
[24/06/2008|11:31] C:\Program Files\T‚l‚chargeur de Appartement 3D - Edition 2007
[26/06/2008|00:52] C:\Program Files\Trend Micro
[21/08/2007|19:24] C:\Program Files\TRIBOFILM Industries
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/07/2007|20:03] C:\Program Files\VideoLAN
[29/08/2007|18:43] C:\Program Files\Windows Calendar
[10/12/2006|22:06] C:\Program Files\Windows Collaboration
[21/07/2007|20:17] C:\Program Files\Windows Defender
[10/12/2006|22:06] C:\Program Files\Windows Journal
[25/06/2008|23:34] C:\Program Files\Windows Live
[13/06/2008|03:10] C:\Program Files\Windows Mail
[11/10/2007|15:35] C:\Program Files\Windows Media Player
[21/07/2007|19:14] C:\Program Files\Windows NT
[10/12/2006|22:06] C:\Program Files\Windows Photo Gallery
[09/01/2008|04:04] C:\Program Files\Windows Sidebar
[22/07/2007|00:21] C:\Program Files\WinRAR
[05/05/2008|17:57] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[10/12/2006|12:26] C:\Program Files\Common Files\Adobe
[02/04/2008|13:30] C:\Program Files\Common Files\Apple
[24/06/2008|11:29] C:\Program Files\Common Files\BOONTY Shared
[20/07/2007|22:36] C:\Program Files\Common Files\Designer
[11/03/2008|20:54] C:\Program Files\Common Files\ErreurChasseur
[26/07/2007|00:18] C:\Program Files\Common Files\Hewlett-Packard
[26/07/2007|00:21] C:\Program Files\Common Files\HP
[21/07/2007|19:15] C:\Program Files\Common Files\InstallShield
[20/07/2007|22:47] C:\Program Files\Common Files\Java
[10/12/2006|12:34] C:\Program Files\Common Files\LightScribe
[14/11/2007|22:17] C:\Program Files\Common Files\microsoft shared
[10/12/2006|12:34] C:\Program Files\Common Files\muvee Technologies
[10/12/2006|12:34] C:\Program Files\Common Files\NewTech Infosystems
[12/08/2007|20:46] C:\Program Files\Common Files\PX Storage Engine
[16/06/2008|15:16] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[24/10/2007|22:01] C:\Program Files\Common Files\Skype
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/07/2007|20:19] C:\Program Files\Common Files\Symantec Shared
[20/07/2007|22:35] C:\Program Files\Common Files\System
[14/11/2007|22:17] C:\Program Files\Common Files\WindowsLiveInstaller
[23/06/2008|02:01] C:\Program Files\Common Files\Wise Installation Wizard
[16/06/2008|15:16] C:\Program Files\Common Files\xing shared

---------------------------[ Process ]--------------------------

... 91

iexplore.exe ~ [3324]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\Sect bows army.wjprl4
C:\Users\xav'\AppData\Local\Temp\bis76C.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\hide cool shim link
C:\ProgramData\hide cool shim link\Title dead.exe
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\Program Files\DomPlayer
C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@www.adserver5[1].txt
C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@adopt.euroclick[1].txt
C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@2xmoinscher[2].txt
C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies\xav'@www.2xmoinscher[2].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SHIM LINK FREE BALL"="\"C:\\ProgramData\\Sect bows army.wjprl4\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-26 01:05:49
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Users\xav'\Desktop\Emulateur + jeux\Emulat g\ROMS SNES\mario kart super nintendo v1.4.7.3 cracked.zip


[F:5041][D:278]-> C:\Users\xav'\AppData\Local\Temp
[F:654][D:1]-> C:\Users\xav'\AppData\Roaming\MICROS~1\Windows\Cookies
[F:5128][D:9]-> C:\Users\xav'\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:20][D:3]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 1:11:53,58 ]----------------------

J'ai déjà eu affaire à toi ?

Je viens de finir ma prépa, je suis enfin en vacances, alors j'en profite   Je suis plutôt un couche tard moi    

***

Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier



Relance Lop S&D

Choisis cette fois ci l'Option 4 (LopScript)

Une page blanche va s'ouvrir , clique droit dessus et choisis Coller

Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré (C:\lopR.txt)

Que contient le dossier Planit Fusion Live But, dans C:\ProgramData\ ?

 

salut !

moi j'avais le même problème de pubs intempestives qui s'ouvraient n'importe quand..

Panneau de configuration
Ajouter Supprimer programme
Tu cherches Messenger live plus
===> et tu vérras déjà que dans le nom il y a " ( CID) "
tu désinstallles tout ( ou que le sponsor si t'as le choix)
et tu réinstalles...

ca fait une heure que je l'ai fait et aucun CID en vue ...
mais il y a toujours ce problème dans le gestionnaire des tâches ...
http://www.infos-du-net.com/forum/280667-11-help-plusie...

Re,

Oui cette astuce peut marcher, mais en général elle ne marche pas  

Gemma11, merci de ne pas interférer dans une désinfection en cours.

je comprend pas la question sur le rapport C:\Programme data ??? je sais po ce que tu attends en tout cas j'avais déja supprimer windows live mail et depuis je n'ai plus de CID je vai comme même faire ce que tu m'as dis de faire histoire d'etre sur car je vais certainement télécharger windows live mail parce ke c bien pratique kan on a plusieurs boites en tout cas merci de me consacré un peu de ton tps

@+++

Re,

Tu fais la manip' demandée ci-dessus.