publicité ennuyeuse

prefix · Message par **prefix** » 25 juil. 2009, 22:12

il y a depuis quelque jours des pubs qui s'ouvre sur mon bureau

comment leur interdire l'acces?

bernard53 · Message par **bernard53** » 25 juil. 2009, 22:57

Bonsoir

Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau:

Double clique sur RSIT.exe qui se trouve sur ton bureau pour le lancer:
Pour VISTA :
Clic-droit et choisis "Exécuter en tant qu'administrateur".

Ensuite :
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Le rapport va se créer. Pour le mettre sur le forum.

Tout sélectionner : CRTL+ A
Tout copier : CRTL+ C
Tout coller : CRTL+ V

Vous pouvez, une fois posté, le fermer. Ce rapport s’appelle.log.txt

Le rapport est sauvegardé à la racine du disque: C:\rsit\info.txt et C:\rsit\log.txt

prefix · Message par **prefix** » 25 juil. 2009, 23:18

voila le rapport:

Logfile of random's system information tool 1.06 (written by random/random)
Run by maxicard at 2009-07-25 19:29:19
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 124 GB (81%) free of 153 GB
Total RAM: 3310 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:29:23, on 25/07/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Windows\V0400Mon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\3D-Relax\3D Water Effects Trial\trioService.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Beautyscreens\Beautyscreens.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\WinRoll\winroll.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Shock Utility\Shock4Way3D\Shock4Way3D.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Stardock\CursorFX\CursorFX.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\maxicard\Desktop\Desktop\RSIT.exe
C:\Program Files\trend micro\maxicard.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourceid=nav ... r&ie=UTF-8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - (no file)
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
O4 - HKLM\..\Run: [V0400Mon.exe] C:\Windows\V0400Mon.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Desktop Service] C:\Program Files\Free-Soft\Virtual Desktop\DesktopLoader.exe
O4 - HKLM\..\Run: [trioService] "C:\Program Files\3D-Relax\3D Water Effects Trial\trioService.exe"
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [GDesktops] C:\PROGRA~1\Goffi\GDESKT~1\GDesktops.exe
O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [WinRoll] "C:\Program Files\WinRoll\winroll.exe
O4 - HKCU\..\Run: [CubeDesktop] C:\Program Files\CubeDesktop\CubeDesktop.exe
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\StartRegistryBooster.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\SideBar.exe /autoRun
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [360desktop] "C:\Program Files\360desktop\360desktop.exe"
O4 - HKCU\..\Run: [Shock4Way3D] C:\Program Files\Shock Utility\Shock4Way3D\Shock4Way3D.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Beautyscreens1934258099.lnk = C:\Program Files\Beautyscreens\Beautyscreens.exe
O4 - Startup: ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Startup: sectorW5.lnk = C:\Windows\System32\shutdown.exe
O4 - Startup: Winamp.lnk = C:\Program Files\Winamp\winamp.exe
O4 - Startup: Winroll.lnk = C:\Program Files\WinRoll\winroll.exe
O9 - Extra button: IE Theme Search Bar - {323AF0A7-690A-47D9-819B-348831CC7DC5} - C:\Program Files\IECustomizer.com\IEButtons\SearchIECThemes.htm
O9 - Extra 'Tools' menuitem: Free Themes for Internet Explorer - {323AF0A7-690A-47D9-819B-348831CC7DC5} - C:\Program Files\IECustomizer.com\IEButtons\SearchIECThemes.htm
O9 - Extra button: (no name) - {472A296E-D7C1-4A70-8511-5039B09EBDDB} - javascript:document.location='http://www.iecustomizer.com/iethemes' (file missing)
O9 - Extra 'Tools' menuitem: Online Themes Gallery - {472A296E-D7C1-4A70-8511-5039B09EBDDB} - javascript:document.location='http://www.iecustomizer.com/iethemes' (file missing)
O9 - Extra button: Themes - {B9844E33-6201-47AA-B30A-BCA3363C2BFA} - C:\Program Files\IECustomizer.com\Tools\IETheme.exe
O9 - Extra 'Tools' menuitem: Themes - {B9844E33-6201-47AA-B30A-BCA3363C2BFA} - C:\Program Files\IECustomizer.com\Tools\IETheme.exe
O13 - Gopher Prefix:
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O22 - SharedTaskScheduler: Ave's FolderBg - {73526E5A-FD53-4BE7-B5E2-D3C89D7413DC} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Desktop (Service_Desktop) - Unknown owner - C:\Program Files\Free-Soft\Virtual Desktop\Desktop.exe (file missing)

--
End of file - 9765 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\User_Feed_Synchronization-{AD0AE779-DBBF-484E-9AC8-7C20D0812D16}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll [2009-04-09 688128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-07-24 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-07-24 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-07-24 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-09 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - C:\Program Files\Search Settings\kb128\SearchSettings.dll [2009-04-09 1091584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{66886C4D-B307-4ECA-A228-52CA9B9851A4}
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll [2009-04-09 688128]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-07-24 256112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
"Google Quick Search Box"=C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [2009-06-03 68592]
"V0400Mon.exe"=C:\Windows\V0400Mon.exe [2007-06-03 32768]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2009-07-01 37888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-23 7514656]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-05-23 1833504]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-04-12 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-04-12 8429568]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-04-12 81920]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-06-09 148888]
"Desktop Service"=C:\Program Files\Free-Soft\Virtual Desktop\DesktopLoader.exe []
"trioService"=C:\Program Files\3D-Relax\3D Water Effects Trial\trioService.exe [2006-07-20 69632]
"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2009-04-09 970240]
"GDesktops"=C:\PROGRA~1\Goffi\GDESKT~1\GDesktops.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Creative Live! Cam Manager"=C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe [2007-06-07 155648]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-06-24 1830128]
"WinRoll"=C:\Program Files\WinRoll\winroll.exe [2004-04-06 15360]
"CubeDesktop"=C:\Program Files\CubeDesktop\CubeDesktop.exe []
"Uniblue RegistryBooster 2009"=c:\program files\uniblue\registrybooster\StartRegistryBooster.exe []
"Sidebar"=C:\Program Files\Windows Sidebar\SideBar.exe [2009-04-11 1233920]
"CursorFX"=C:\Program Files\Stardock\CursorFX\CursorFX.exe [2008-07-07 416768]
"360desktop"=C:\Program Files\360desktop\360desktop.exe []
"Shock4Way3D"=C:\Program Files\Shock Utility\Shock4Way3D\Shock4Way3D.exe [2008-06-08 1222144]

C:\Users\maxicard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Beautyscreens1934258099.lnk - C:\Program Files\Beautyscreens\Beautyscreens.exe
ObjectDock.lnk - C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
sectorW5.lnk - C:\Windows\System32\shutdown.exe
Winamp.lnk - C:\Program Files\Winamp\winamp.exe
Winroll.lnk - C:\Program Files\WinRoll\winroll.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2008-03-18 233888]
Ave's FolderBg - {73526E5A-FD53-4BE7-B5E2-D3C89D7413DC}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2f42c213-6064-11de-85de-00196661ad4c}]
shell\AutoRun\command - F:\setupSNK.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-07-25 19:29:19 ----D---- C:\rsit
2009-07-25 17:16:03 ----D---- C:\Program Files\Shock Utility
2009-07-25 17:15:56 ----A---- C:\Windows\IFinst27.exe
2009-07-25 08:21:47 ----SHD---- C:\Config.Msi
2009-07-25 07:10:46 ----A---- C:\Windows\unin040c.exe
2009-07-25 06:28:20 ----D---- C:\Program Files\IECustomizer.com
2009-07-25 04:41:40 ----HDC---- C:\ProgramData\{DE032019-B933-4DF4-9174-48C52613DA13}
2009-07-25 04:38:26 ----D---- C:\Program Files\CursorXP
2009-07-24 23:02:29 ----D---- C:\Temp
2009-07-24 03:38:59 ----D---- C:\Program Files\Search Settings
2009-07-24 03:38:43 ----D---- C:\Program Files\Dealio Toolbar
2009-07-24 03:38:28 ----A---- C:\Windows\system32\decdll.dll
2009-07-24 03:38:27 ----D---- C:\Program Files\Free Video Converter
2009-07-24 03:19:35 ----D---- C:\Users\maxicard\AppData\Roaming\STOIK
2009-07-24 02:45:10 ----A---- C:\Windows\system32\i420vfw.dll
2009-07-24 02:45:10 ----A---- C:\Windows\system32\devil.dll
2009-07-24 02:45:10 ----A---- C:\Windows\system32\AVSredirect.dll
2009-07-24 02:45:10 ----A---- C:\Windows\system32\avisynth.dll
2009-07-24 02:45:09 ----D---- C:\Program Files\AviSynth 2.5
2009-07-24 02:44:44 ----D---- C:\Program Files\eRightSoft
2009-07-23 21:59:25 ----D---- C:\Users\maxicard\AppData\Roaming\AVS4YOU
2009-07-23 21:59:23 ----D---- C:\ProgramData\AVS4YOU
2009-07-23 21:58:50 ----D---- C:\Program Files\Common Files\AVSMedia
2009-07-23 21:58:35 ----D---- C:\Program Files\AVS4YOU
2009-07-23 21:58:35 ----A---- C:\Windows\system32\msvcr70.dll
2009-07-23 21:58:35 ----A---- C:\Windows\system32\msvcp70.dll
2009-07-23 21:58:35 ----A---- C:\Windows\system32\mfc70.dll
2009-07-23 21:58:35 ----A---- C:\Windows\system32\GdiPlus.dll
2009-07-23 04:21:17 ----D---- C:\Program Files\ATI Multimedia
2009-07-23 04:20:24 ----D---- C:\ProgramData\SnapStream
2009-07-23 04:15:37 ----D---- C:\Program Files\SnapStream Media
2009-07-23 02:20:18 ----D---- C:\Program Files\FireStorm screensaver
2009-07-23 02:12:25 ----D---- C:\Program Files\I-SIS
2009-07-23 01:57:16 ----D---- C:\Program Files\Beautyscreens
2009-07-22 17:16:17 ----D---- C:\Program Files\CubeDesktop
2009-07-22 16:51:47 ----D---- C:\Users\maxicard\AppData\Roaming\Dexpot
2009-07-22 14:51:22 ----D---- C:\Program Files\CamStudio
2009-07-22 14:22:28 ----D---- C:\Program Files\DebugMode
2009-07-21 07:07:16 ----D---- C:\Program Files\ScreenSaver.com
2009-07-21 06:51:18 ----D---- C:\Program Files\3D-Relax
2009-07-21 06:32:37 ----D---- C:\Program Files\Planestate
2009-07-21 06:11:26 ----D---- C:\Program Files\Burning Words Screensaver
2009-07-21 06:08:44 ----D---- C:\Program Files\Isotope244 Graphics
2009-07-19 21:35:35 ----D---- C:\Program Files\GameTop.com
2009-07-19 19:33:56 ----D---- C:\Program Files\Squeaky Clean
2009-07-19 19:30:16 ----D---- C:\Program Files\DesktopEyes
2009-07-19 18:45:56 ----A---- C:\Windows\system32\imageres.dll
2009-07-19 17:52:18 ----D---- C:\Users\maxicard\AppData\Roaming\AniTuner
2009-07-19 15:22:21 ----D---- C:\Users\maxicard\AppData\Roaming\RealWorld
2009-07-19 15:22:03 ----D---- C:\Program Files\RealWorld Cursor Editor
2009-07-19 03:27:45 ----D---- C:\Users\maxicard\AppData\Roaming\Media Player Classic
2009-07-17 20:57:38 ----D---- C:\Users\maxicard\AppData\Roaming\CornerBowl
2009-07-17 19:31:17 ----D---- C:\Users\maxicard\AppData\Roaming\DeskSpace
2009-07-17 19:16:19 ----D---- C:\Program Files\DeskSpace
2009-07-17 19:05:21 ----D---- C:\Program Files\360desktop
2009-07-17 02:57:32 ----D---- C:\Program Files\Mortal Kombat
2009-07-17 02:45:23 ----D---- C:\Program Files\Microsoft Games
2009-07-16 18:33:45 ----D---- C:\Program Files\Eidos Interactive
2009-07-16 15:00:45 ----A---- C:\Windows\system32\shell32.dll
2009-07-16 02:15:03 ----D---- C:\Users\maxicard\AppData\Roaming\GrassGames
2009-07-16 02:06:43 ----D---- C:\Users\maxicard\AppData\Roaming\Zonora Technologies
2009-07-16 02:05:35 ----N---- C:\Windows\Setup1.exe
2009-07-16 02:05:34 ----A---- C:\Windows\ST6UNST.EXE
2009-07-15 20:31:21 ----D---- C:\Program Files\trend micro
2009-07-15 14:03:03 ----A---- C:\Windows\system32\browseui.dll
2009-07-15 06:20:02 ----A---- C:\Windows\system32\t2embed.dll
2009-07-15 06:20:02 ----A---- C:\Windows\system32\lpk.dll
2009-07-15 06:20:02 ----A---- C:\Windows\system32\fontsub.dll
2009-07-15 06:20:02 ----A---- C:\Windows\system32\dciman32.dll
2009-07-15 06:20:02 ----A---- C:\Windows\system32\atmfd.dll
2009-07-13 15:58:56 ----D---- C:\Users\maxicard\AppData\Roaming\360desktop
2009-07-10 22:45:21 ----D---- C:\Users\maxicard\AppData\Roaming\Python-Eggs
2009-07-10 20:08:29 ----D---- C:\Users\maxicard\AppData\Roaming\IconTweaker
2009-07-10 20:08:29 ----D---- C:\ProgramData\IconTweaker
2009-07-09 22:15:17 ----A---- C:\Windows\system32\zlib.dll
2009-07-09 22:15:17 ----A---- C:\Windows\system32\lttmb14N.dll
2009-07-09 22:15:17 ----A---- C:\Windows\system32\ltlst14N.dll
2009-07-09 22:15:17 ----A---- C:\Windows\system32\LTKRN14n.DLL
2009-07-09 22:15:17 ----A---- C:\Windows\system32\LTIMG14n.DLL
2009-07-09 22:15:17 ----A---- C:\Windows\system32\LTFIL14n.DLL
2009-07-09 22:15:17 ----A---- C:\Windows\system32\LTEFX14n.DLL
2009-07-09 22:15:17 ----A---- C:\Windows\system32\LTDIS14n.DLL
2009-07-09 22:15:17 ----A---- C:\Windows\system32\lfbmp14N.dll
2009-07-09 21:56:24 ----D---- C:\Program Files\Axialis
2009-07-07 02:32:22 ----D---- C:\Program Files\Yodm3D
2009-07-05 16:08:12 ----D---- C:\Users\maxicard\AppData\Roaming\Auslogics
2009-07-05 16:08:10 ----D---- C:\Program Files\Auslogics

======List of files/folders modified in the last 1 months======

2009-07-25 19:29:23 ----D---- C:\Windows\Prefetch
2009-07-25 19:29:13 ----D---- C:\Windows\Temp
2009-07-25 17:16:03 ----D---- C:\Program Files
2009-07-25 17:15:56 ----D---- C:\Windows
2009-07-25 17:06:07 ----D---- C:\Windows\Tasks
2009-07-25 08:22:05 ----D---- C:\Windows\system32\catroot2
2009-07-25 08:21:56 ----SHD---- C:\Windows\Installer
2009-07-25 08:21:53 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-07-25 08:21:33 ----SHD---- C:\System Volume Information
2009-07-25 07:13:32 ----D---- C:\Windows\System32
2009-07-25 06:28:46 ----D---- C:\Program Files\Mozilla Firefox
2009-07-25 04:42:53 ----D---- C:\ProgramData
2009-07-25 04:33:43 ----D---- C:\Windows\Cursors
2009-07-25 04:27:00 ----D---- C:\Program Files\Stardock
2009-07-24 16:06:01 ----D---- C:\ProgramData\Google
2009-07-24 16:06:01 ----D---- C:\Program Files\Google
2009-07-24 03:38:51 ----D---- C:\Windows\winsxs
2009-07-24 03:25:37 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-24 03:25:37 ----D---- C:\Program Files\Common Files
2009-07-24 02:45:08 ----RSD---- C:\Windows\Fonts
2009-07-23 18:22:20 ----D---- C:\Windows\system32\drivers
2009-07-23 04:39:06 ----RSD---- C:\Windows\assembly
2009-07-23 04:15:46 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-07-22 18:13:07 ----D---- C:\Windows\Microsoft.NET
2009-07-22 16:54:48 ----D---- C:\Windows\system32\Tasks
2009-07-22 15:53:41 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-22 15:51:44 ----D---- C:\Program Files\Internet Explorer
2009-07-22 12:58:38 ----D---- C:\Windows\system32\catroot
2009-07-19 17:39:08 ----D---- C:\Windows\inf
2009-07-18 08:29:11 ----D---- C:\Users\maxicard\AppData\Roaming\DivX
2009-07-17 03:42:37 ----D---- C:\Windows\rescache
2009-07-17 01:11:17 ----D---- C:\Program Files\DivX
2009-07-16 20:14:04 ----D---- C:\Program Files\Extra Clock 1.1
2009-07-16 20:12:33 ----D---- C:\Program Files\GIMP-2.0
2009-07-16 20:12:18 ----D---- C:\Program Files\VideoLAN
2009-07-16 20:10:42 ----D---- C:\Program Files\UBISOFT
2009-07-16 20:09:51 ----D---- C:\Program Files\Lords of EverQuest
2009-07-16 14:58:15 ----A---- C:\Windows\ntbtlog.txt
2009-07-15 21:09:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-07-15 20:44:37 ----D---- C:\Program Files\Free-Soft
2009-07-15 14:32:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-15 14:22:18 ----D---- C:\Users\maxicard\AppData\Roaming\Winamp
2009-07-15 14:12:43 ----D---- C:\Program Files\Winamp
2009-07-15 14:04:48 ----D---- C:\Program Files\Windows Mail
2009-07-12 00:09:14 ----D---- C:\Windows\system32\NDF
2009-07-10 20:32:48 ----D---- C:\Program Files\Common Files\Stardock
2009-07-07 17:10:56 ----A---- C:\Windows\system32\mrt.exe
2009-07-05 02:41:01 ----D---- C:\Windows\Minidump

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2009-04-11 351744]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2009-05-26 9968]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2009-05-26 72944]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R3 HCWBT8xx;Hauppauge WinTV 848/9 WDM Video Driver; C:\Windows\system32\drivers\HCWBT8XX.sys [2006-01-25 472644]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
R3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-04-12 7476640]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2009-05-26 7408]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
R3 VF0400Afx;VF0400 Audio FX; C:\Windows\system32\Drivers\V0400Afx.sys [2007-06-10 142656]
R3 VF0400Vfx;VF0400 Video FX; C:\Windows\system32\DRIVERS\V0400VFx.sys [2007-03-05 7424]
R3 VF0400Vid;Live! Cam Notebook Pro (VF0400); C:\Windows\system32\DRIVERS\V0400Vid.sys [2007-06-06 166720]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-03 183280]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-19 523776]
S3 Service_Desktop;Desktop; C:\Program Files\Free-Soft\Virtual Desktop\Desktop.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-04-11 918528]

-----------------EOF-----------------

prefix · Message par **prefix** » 26 juil. 2009, 15:24

up....

prefix · Message par **prefix** » 26 juil. 2009, 19:08

quelqu'un? he,moi je veux pas avoir de pub toute les cinq minutes...hein...personnal computer...pas de pubs!!!!

c'est un vrai troyen ces pubs!!!

SYNTAX-ERROR · Message par **SYNTAX-ERROR** » 26 juil. 2009, 19:59

Bonjour

Si tu navigues avec Firefox installes le module Adblock
Et dans les options de IE et FF a l'onglet contenu vérifies que
l'option "bloquer les fenêtres pop-up" soit cochée.

@+

prefix · Message par **prefix** » 26 juil. 2009, 20:22

dans firefox j'avais un site autorisé,je l'ai enlever.

j'ai installé adblock...

quand a internet explorer,dans securité,inprivate,j'ai mis sur bloqué automatiquement

je verais bien ce que ca donne,je vous tiens au courant...

bernard53 · Message par **bernard53** » 26 juil. 2009, 21:46

Bonsoir prefix

Désolé mais parti en famille.

fait ceci s.t.p

Télécharge >>OTM<< (de Old_Timer) sur ton Bureau.

>> Pour VISTA : Clic-droit et choisis "Exécuter en tant qu'administrateur".

>> AVAST reconnait ce logiciel comme un intrus, donc le désactiver le temps des manipulations.

Double-clique sur OTM pour le lancer.

Copie la liste qui se trouve en citation ci-dessous:

:Processes

:Services

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]
"{E312764E-7706-43F1-8DAB-FCDD2B1E416D}"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SearchSettings"=-
:Files
c:\program files\search settings
c:\windows\ifinst27.exe
:Commands
[purity]
[emptytemp]
[Reboot]

et colle-la dans le cadre de gauche de OTM sous ceci:

Clique sur

pour lancer la suppression.
attendre la fin du travail de l'outil puis fermer OTM

Le résultat apparaitra dans le cadre Results.
Clique sur Exit pour fermer.
Poste le rapport situé dans C:\_OTM\MovedFiles\06092009_130526.log "Exemple"

NB: Il te sera peut-être demandé de redémarrer le pc pour achever la suppression.
si c'est le cas accepte par Oui/Yes.

Ensuite ceci.

Télécharger LopS&D.exe sur ton Bureau
Tuto
• Double-clique dessus pour lancer l'installation
• Puis double-clique sur le raccourci Lop S&D présent sur ton bureau

• Sélectionne la langue souhaitée, puis choisis l'Option 1 (Recherche)
• Patiente jusqu'à la fin du scan
• Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

prefix · Message par **prefix** » 26 juil. 2009, 22:44

All processes killed
========== PROCESSES ==========
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SearchSettings deleted successfully.
========== FILES ==========
c:\program files\Search Settings\kb128\temp moved successfully.
c:\program files\Search Settings\kb128\res moved successfully.
c:\program files\Search Settings\kb128 moved successfully.
c:\program files\Search Settings moved successfully.
c:\windows\IFinst27.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: maxicard
->Temp folder emptied: 51889614 bytes
File delete failed. C:\Users\maxicard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 53703397 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 73506531 bytes
->Google Chrome cache emptied: 189 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
File delete failed. C:\Windows\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
Windows Temp folder emptied: 8991375 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 179,38 mb

OTM by OldTimer - Version 3.0.0.5 log created on 07262009_205120

Files moved on Reboot...
File move failed. C:\Windows\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

le deuxieme truc a poster:

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Professionnel ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 6000+ )
BIOS : Default System BIOS
USER : maxicard ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090607-0] 4.8.1335 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:119 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 26/07/2009|20:58 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Application Data
[22/07/2009|16:38] C:\Users\maxicard\AppData\Local\Apps
[09/07/2009|21:59] C:\Users\maxicard\AppData\Local\Axialis
[01/06/2009|18:34] C:\Users\maxicard\AppData\Local\d3d8caps.dat
[24/07/2009|03:42] C:\Users\maxicard\AppData\Local\d3d9caps.dat
[24/07/2009|05:03] C:\Users\maxicard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[22/07/2009|16:41] C:\Users\maxicard\AppData\Local\Deployment
[22/07/2009|15:55] C:\Users\maxicard\AppData\Local\GDIPFONTCACHEV1.DAT
[25/07/2009|06:01] C:\Users\maxicard\AppData\Local\Google
[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Historique
[26/07/2009|15:38] C:\Users\maxicard\AppData\Local\IconCache.db
[17/06/2009|01:58] C:\Users\maxicard\AppData\Local\Microsoft
[23/07/2009|00:39] C:\Users\maxicard\AppData\Local\Microsoft Games
[01/06/2009|21:08] C:\Users\maxicard\AppData\Local\Mozilla
[26/07/2009|16:36] C:\Users\maxicard\AppData\Local\Paint.NET
[17/07/2009|00:30] C:\Users\maxicard\AppData\Local\Screamer Radio
[03/06/2009|07:52] C:\Users\maxicard\AppData\Local\Stardock
[26/07/2009|20:58] C:\Users\maxicard\AppData\Local\Temp
[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Temporary Internet Files
[02/06/2009|17:39] C:\Users\maxicard\AppData\Local\VirtualStore
[12/06/2009|14:50] C:\Users\maxicard\AppData\Local\WindowsUpdate
[23/07/2009|14:19] C:\Users\maxicard\AppData\Local\xgqartk.bat
[18/06/2009|15:43] C:\Users\maxicard\AppData\Local\Z-Systems

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[26/07/2009 20:55][--a------] C:\Windows\tasks\Google Software Updater.job
[26/07/2009 17:46][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{AD0AE779-DBBF-484E-9AC8-7C20D0812D16}.job
[26/07/2009 20:53][--ah-----] C:\Windows\tasks\SA.DAT
[26/07/2009 20:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[25/07/2009|04:41] C:\ProgramData\{DE032019-B933-4DF4-9174-48C52613DA13}
[02/11/2006|15:02] C:\ProgramData\Application Data
[23/07/2009|21:59] C:\ProgramData\AVS4YOU
[01/06/2009|16:08] C:\ProgramData\Bureau
[03/06/2009|12:25] C:\ProgramData\Creative
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[01/06/2009|16:08] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[24/07/2009|16:06] C:\ProgramData\Google
[03/06/2009|09:56] C:\ProgramData\Google Updater
[10/07/2009|20:09] C:\ProgramData\IconTweaker
[05/06/2009|16:28] C:\ProgramData\Malwarebytes
[01/06/2009|16:08] C:\ProgramData\Menu D‚marrer
[12/06/2009|15:11] C:\ProgramData\Microsoft
[01/06/2009|16:08] C:\ProgramData\ModŠles
[03/06/2009|12:17] C:\ProgramData\muvee Technologies
[05/06/2009|16:43] C:\ProgramData\ntuser.pol
[02/06/2009|16:31] C:\ProgramData\PC Drivers HeadQuarters
[23/07/2009|04:39] C:\ProgramData\SnapStream
[03/06/2009|02:17] C:\ProgramData\Stardock
[02/11/2006|15:02] C:\ProgramData\Start Menu
[05/06/2009|12:52] C:\ProgramData\SUPERAntiSpyware.com
[03/06/2009|12:36] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates

--------------------\\ Listing des dossiers dans C:\Program Files

[25/07/2009|08:21] C:\Program Files\360desktop
[21/07/2009|06:51] C:\Program Files\3D-Relax
[02/06/2009|20:55] C:\Program Files\7-Zip
[12/06/2009|21:16] C:\Program Files\AlienGUIse
[02/06/2009|18:57] C:\Program Files\Alwil Software
[12/06/2009|01:53] C:\Program Files\AskBarDis
[23/07/2009|04:21] C:\Program Files\ATI Multimedia
[05/07/2009|16:08] C:\Program Files\Auslogics
[24/07/2009|02:45] C:\Program Files\AviSynth 2.5
[24/07/2009|02:58] C:\Program Files\AVS4YOU
[09/07/2009|22:00] C:\Program Files\Axialis
[23/07/2009|01:57] C:\Program Files\Beautyscreens
[21/07/2009|06:11] C:\Program Files\Burning Words Screensaver
[22/07/2009|14:51] C:\Program Files\CamStudio
[24/06/2009|04:19] C:\Program Files\CAPCOM
[08/06/2009|01:38] C:\Program Files\CodeGazer
[24/07/2009|03:25] C:\Program Files\Common Files
[03/06/2009|12:20] C:\Program Files\Creative
[26/07/2009|17:00] C:\Program Files\CubeDesktop
[25/07/2009|04:40] C:\Program Files\CursorXP
[24/07/2009|03:38] C:\Program Files\Dealio Toolbar
[22/07/2009|14:22] C:\Program Files\DebugMode
[09/06/2009|23:37] C:\Program Files\Deep Silver
[18/07/2009|07:04] C:\Program Files\DeskSpace
[19/07/2009|19:43] C:\Program Files\DesktopEyes
[24/06/2009|04:24] C:\Program Files\directx
[17/07/2009|01:11] C:\Program Files\DivX
[16/07/2009|18:33] C:\Program Files\Eidos Interactive
[24/07/2009|02:44] C:\Program Files\eRightSoft
[16/07/2009|20:14] C:\Program Files\Extra Clock 1.1
[01/06/2009|16:08] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/07/2009|02:20] C:\Program Files\FireStorm screensaver
[24/07/2009|03:38] C:\Program Files\Free Video Converter
[15/07/2009|20:44] C:\Program Files\Free-Soft
[17/06/2009|02:20] C:\Program Files\freestar
[19/07/2009|23:45] C:\Program Files\GameTop.com
[16/07/2009|20:12] C:\Program Files\GIMP-2.0
[24/07/2009|16:06] C:\Program Files\Google
[25/07/2009|06:28] C:\Program Files\IECustomizer.com
[24/07/2009|03:25] C:\Program Files\InstallShield Installation Information
[22/07/2009|15:51] C:\Program Files\Internet Explorer
[23/07/2009|02:16] C:\Program Files\I-SIS
[21/07/2009|06:08] C:\Program Files\Isotope244 Graphics
[11/06/2009|19:45] C:\Program Files\Java
[10/06/2009|23:40] C:\Program Files\K!TV
[02/06/2009|21:34] C:\Program Files\K-Lite Codec Pack
[16/07/2009|20:09] C:\Program Files\Lords of EverQuest
[15/07/2009|21:09] C:\Program Files\Malwarebytes' Anti-Malware
[12/06/2009|01:55] C:\Program Files\MeuhMeuhTV Alpha
[12/06/2009|15:11] C:\Program Files\Microsoft
[17/07/2009|02:45] C:\Program Files\Microsoft Games
[22/07/2009|15:53] C:\Program Files\Microsoft Silverlight
[12/06/2009|15:12] C:\Program Files\Microsoft Sync Framework
[17/07/2009|02:57] C:\Program Files\Mortal Kombat
[08/06/2009|01:26] C:\Program Files\Movie Maker
[26/07/2009|15:40] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[03/06/2009|12:18] C:\Program Files\muvee Technologies
[05/06/2009|17:13] C:\Program Files\Paint.NET
[12/06/2009|01:54] C:\Program Files\Participatory Culture Foundation
[21/07/2009|06:33] C:\Program Files\Planestate
[03/06/2009|11:15] C:\Program Files\Rainbow Folders
[05/06/2009|21:18] C:\Program Files\Realtek
[19/07/2009|15:22] C:\Program Files\RealWorld Cursor Editor
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[21/07/2009|07:07] C:\Program Files\ScreenSaver.com
[25/07/2009|17:16] C:\Program Files\Shock Utility
[03/06/2009|12:10] C:\Program Files\SightSpeed
[23/07/2009|04:39] C:\Program Files\SnapStream Media
[19/07/2009|19:33] C:\Program Files\Squeaky Clean
[25/07/2009|04:27] C:\Program Files\Stardock
[24/06/2009|13:38] C:\Program Files\SUPERAntiSpyware
[01/06/2009|18:34] C:\Program Files\SystemRequirementsLab
[05/06/2009|21:19] C:\Program Files\Temp
[25/07/2009|19:29] C:\Program Files\trend micro
[16/07/2009|20:10] C:\Program Files\UBISOFT
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[16/07/2009|20:12] C:\Program Files\VideoLAN
[14/06/2009|02:46] C:\Program Files\VS Revo Group
[15/07/2009|14:12] C:\Program Files\Winamp
[08/06/2009|01:26] C:\Program Files\Windows Calendar
[08/06/2009|01:26] C:\Program Files\Windows Collaboration
[08/06/2009|01:26] C:\Program Files\Windows Defender
[08/06/2009|01:26] C:\Program Files\Windows Journal
[12/06/2009|15:12] C:\Program Files\Windows Live
[12/06/2009|15:11] C:\Program Files\Windows Live SkyDrive
[15/07/2009|14:04] C:\Program Files\Windows Mail
[08/06/2009|01:26] C:\Program Files\Windows Media Player
[01/06/2009|16:08] C:\Program Files\Windows NT
[08/06/2009|01:26] C:\Program Files\Windows Photo Gallery
[08/06/2009|01:26] C:\Program Files\Windows Sidebar
[08/06/2009|02:31] C:\Program Files\WinRoll
[07/07/2009|14:44] C:\Program Files\Yodm3D

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[24/07/2009|02:58] C:\Program Files\Common Files\AVSMedia
[12/06/2009|16:07] C:\Program Files\Common Files\DivX Shared
[14/06/2009|00:42] C:\Program Files\Common Files\GTK
[13/06/2009|14:50] C:\Program Files\Common Files\GTK(103)
[03/06/2009|12:19] C:\Program Files\Common Files\InstallShield
[12/06/2009|15:11] C:\Program Files\Common Files\microsoft shared
[03/06/2009|12:18] C:\Program Files\Common Files\muvee Technologies
[23/07/2009|04:15] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/07/2009|20:32] C:\Program Files\Common Files\Stardock
[09/06/2009|23:14] C:\Program Files\Common Files\SWF Studio
[08/06/2009|01:26] C:\Program Files\Common Files\System
[12/06/2009|14:57] C:\Program Files\Common Files\Windows Live
[25/07/2009|08:21] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 65 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@d2.advertserve[1].txt
C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@advertising[1].txt
C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@bigpoint[2].txt
C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@fr.deepolis.bigpoint[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-26 20:59:00
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:6][D:3]-> C:\Users\maxicard\AppData\Local\Temp
[F:548][D:1]-> C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies
[F:14][D:4]-> C:\Users\maxicard\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:69][D:13]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 26/07/2009|21:00 - Option : [1]

--------------------\\ Fin du rapport a 21:00:14
[ UAC => 1 ]

bernard53 · Message par **bernard53** » 26 juil. 2009, 22:53

relance lopS&D et choisis l'option 2

et poste le rapport qui s'ouvre stp.

Ensuite ceci.

Installe Malewarebytes' Antimalware,
Téléchargement et tuto

*** Met-le à jour puis passe en mode sans échec :
http://www.pcloisirs.eu/mode_sans_echec.htm

Choisi, Exécuter un examen complet (environ 1 à 2 heures)
*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

Poste le rapport final.
*** il est conseillé de désactivé Tea-Timer si tu as Spybot-S&D juste le temps du scan.

Voici comment faire: Lancez Spybot-S&D, passez en Mode avancé via le Menu Mode (en haut) ? cliquez sur Oui ? choisissez Outils dans la barre de navigation sur la gauche ? Résident et là vous pouvez décocher les cases situées devant les deux outils.

Après dis moi si cela va mieux cette fois.

prefix · Message par **prefix** » 26 juil. 2009, 23:03

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Professionnel ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 6000+ )
BIOS : Default System BIOS
USER : maxicard ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090607-0] 4.8.1335 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:119 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 26/07/2009|21:14 )

[ UAC => 1 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@d2.advertserve[1].txt
Supprime! - C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@advertising[1].txt
Supprime! - C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@bigpoint[2].txt
Supprime! - C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies\maxicard@fr.deepolis.bigpoint[2].txt
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans Local

[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Application Data
[22/07/2009|16:38] C:\Users\maxicard\AppData\Local\Apps
[09/07/2009|21:59] C:\Users\maxicard\AppData\Local\Axialis
[01/06/2009|18:34] C:\Users\maxicard\AppData\Local\d3d8caps.dat
[24/07/2009|03:42] C:\Users\maxicard\AppData\Local\d3d9caps.dat
[24/07/2009|05:03] C:\Users\maxicard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[22/07/2009|16:41] C:\Users\maxicard\AppData\Local\Deployment
[22/07/2009|15:55] C:\Users\maxicard\AppData\Local\GDIPFONTCACHEV1.DAT
[25/07/2009|06:01] C:\Users\maxicard\AppData\Local\Google
[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Historique
[26/07/2009|15:38] C:\Users\maxicard\AppData\Local\IconCache.db
[17/06/2009|01:58] C:\Users\maxicard\AppData\Local\Microsoft
[23/07/2009|00:39] C:\Users\maxicard\AppData\Local\Microsoft Games
[01/06/2009|21:08] C:\Users\maxicard\AppData\Local\Mozilla
[26/07/2009|16:36] C:\Users\maxicard\AppData\Local\Paint.NET
[17/07/2009|00:30] C:\Users\maxicard\AppData\Local\Screamer Radio
[03/06/2009|07:52] C:\Users\maxicard\AppData\Local\Stardock
[26/07/2009|21:14] C:\Users\maxicard\AppData\Local\Temp
[01/06/2009|16:10] C:\Users\maxicard\AppData\Local\Temporary Internet Files
[02/06/2009|17:39] C:\Users\maxicard\AppData\Local\VirtualStore
[12/06/2009|14:50] C:\Users\maxicard\AppData\Local\WindowsUpdate
[23/07/2009|14:19] C:\Users\maxicard\AppData\Local\xgqartk.bat
[18/06/2009|15:43] C:\Users\maxicard\AppData\Local\Z-Systems

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[26/07/2009 20:55][--a------] C:\Windows\tasks\Google Software Updater.job
[26/07/2009 17:46][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{AD0AE779-DBBF-484E-9AC8-7C20D0812D16}.job
[26/07/2009 20:53][--ah-----] C:\Windows\tasks\SA.DAT
[26/07/2009 20:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[25/07/2009|04:41] C:\ProgramData\{DE032019-B933-4DF4-9174-48C52613DA13}
[02/11/2006|15:02] C:\ProgramData\Application Data
[23/07/2009|21:59] C:\ProgramData\AVS4YOU
[01/06/2009|16:08] C:\ProgramData\Bureau
[03/06/2009|12:25] C:\ProgramData\Creative
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[01/06/2009|16:08] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[24/07/2009|16:06] C:\ProgramData\Google
[03/06/2009|09:56] C:\ProgramData\Google Updater
[10/07/2009|20:09] C:\ProgramData\IconTweaker
[05/06/2009|16:28] C:\ProgramData\Malwarebytes
[01/06/2009|16:08] C:\ProgramData\Menu D‚marrer
[12/06/2009|15:11] C:\ProgramData\Microsoft
[01/06/2009|16:08] C:\ProgramData\ModŠles
[03/06/2009|12:17] C:\ProgramData\muvee Technologies
[05/06/2009|16:43] C:\ProgramData\ntuser.pol
[02/06/2009|16:31] C:\ProgramData\PC Drivers HeadQuarters
[23/07/2009|04:39] C:\ProgramData\SnapStream
[03/06/2009|02:17] C:\ProgramData\Stardock
[02/11/2006|15:02] C:\ProgramData\Start Menu
[05/06/2009|12:52] C:\ProgramData\SUPERAntiSpyware.com
[03/06/2009|12:36] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates

--------------------\\ Listing des dossiers dans C:\Program Files

[25/07/2009|08:21] C:\Program Files\360desktop
[21/07/2009|06:51] C:\Program Files\3D-Relax
[02/06/2009|20:55] C:\Program Files\7-Zip
[12/06/2009|21:16] C:\Program Files\AlienGUIse
[02/06/2009|18:57] C:\Program Files\Alwil Software
[12/06/2009|01:53] C:\Program Files\AskBarDis
[23/07/2009|04:21] C:\Program Files\ATI Multimedia
[05/07/2009|16:08] C:\Program Files\Auslogics
[24/07/2009|02:45] C:\Program Files\AviSynth 2.5
[24/07/2009|02:58] C:\Program Files\AVS4YOU
[09/07/2009|22:00] C:\Program Files\Axialis
[23/07/2009|01:57] C:\Program Files\Beautyscreens
[21/07/2009|06:11] C:\Program Files\Burning Words Screensaver
[22/07/2009|14:51] C:\Program Files\CamStudio
[24/06/2009|04:19] C:\Program Files\CAPCOM
[08/06/2009|01:38] C:\Program Files\CodeGazer
[24/07/2009|03:25] C:\Program Files\Common Files
[03/06/2009|12:20] C:\Program Files\Creative
[26/07/2009|17:00] C:\Program Files\CubeDesktop
[25/07/2009|04:40] C:\Program Files\CursorXP
[24/07/2009|03:38] C:\Program Files\Dealio Toolbar
[22/07/2009|14:22] C:\Program Files\DebugMode
[09/06/2009|23:37] C:\Program Files\Deep Silver
[18/07/2009|07:04] C:\Program Files\DeskSpace
[19/07/2009|19:43] C:\Program Files\DesktopEyes
[24/06/2009|04:24] C:\Program Files\directx
[17/07/2009|01:11] C:\Program Files\DivX
[16/07/2009|18:33] C:\Program Files\Eidos Interactive
[24/07/2009|02:44] C:\Program Files\eRightSoft
[16/07/2009|20:14] C:\Program Files\Extra Clock 1.1
[01/06/2009|16:08] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/07/2009|02:20] C:\Program Files\FireStorm screensaver
[24/07/2009|03:38] C:\Program Files\Free Video Converter
[15/07/2009|20:44] C:\Program Files\Free-Soft
[17/06/2009|02:20] C:\Program Files\freestar
[19/07/2009|23:45] C:\Program Files\GameTop.com
[16/07/2009|20:12] C:\Program Files\GIMP-2.0
[24/07/2009|16:06] C:\Program Files\Google
[25/07/2009|06:28] C:\Program Files\IECustomizer.com
[24/07/2009|03:25] C:\Program Files\InstallShield Installation Information
[22/07/2009|15:51] C:\Program Files\Internet Explorer
[23/07/2009|02:16] C:\Program Files\I-SIS
[21/07/2009|06:08] C:\Program Files\Isotope244 Graphics
[11/06/2009|19:45] C:\Program Files\Java
[10/06/2009|23:40] C:\Program Files\K!TV
[02/06/2009|21:34] C:\Program Files\K-Lite Codec Pack
[16/07/2009|20:09] C:\Program Files\Lords of EverQuest
[15/07/2009|21:09] C:\Program Files\Malwarebytes' Anti-Malware
[12/06/2009|01:55] C:\Program Files\MeuhMeuhTV Alpha
[12/06/2009|15:11] C:\Program Files\Microsoft
[17/07/2009|02:45] C:\Program Files\Microsoft Games
[22/07/2009|15:53] C:\Program Files\Microsoft Silverlight
[12/06/2009|15:12] C:\Program Files\Microsoft Sync Framework
[17/07/2009|02:57] C:\Program Files\Mortal Kombat
[08/06/2009|01:26] C:\Program Files\Movie Maker
[26/07/2009|15:40] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[03/06/2009|12:18] C:\Program Files\muvee Technologies
[05/06/2009|17:13] C:\Program Files\Paint.NET
[12/06/2009|01:54] C:\Program Files\Participatory Culture Foundation
[21/07/2009|06:33] C:\Program Files\Planestate
[03/06/2009|11:15] C:\Program Files\Rainbow Folders
[05/06/2009|21:18] C:\Program Files\Realtek
[19/07/2009|15:22] C:\Program Files\RealWorld Cursor Editor
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[21/07/2009|07:07] C:\Program Files\ScreenSaver.com
[25/07/2009|17:16] C:\Program Files\Shock Utility
[03/06/2009|12:10] C:\Program Files\SightSpeed
[23/07/2009|04:39] C:\Program Files\SnapStream Media
[19/07/2009|19:33] C:\Program Files\Squeaky Clean
[25/07/2009|04:27] C:\Program Files\Stardock
[24/06/2009|13:38] C:\Program Files\SUPERAntiSpyware
[01/06/2009|18:34] C:\Program Files\SystemRequirementsLab
[05/06/2009|21:19] C:\Program Files\Temp
[25/07/2009|19:29] C:\Program Files\trend micro
[16/07/2009|20:10] C:\Program Files\UBISOFT
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[16/07/2009|20:12] C:\Program Files\VideoLAN
[14/06/2009|02:46] C:\Program Files\VS Revo Group
[15/07/2009|14:12] C:\Program Files\Winamp
[08/06/2009|01:26] C:\Program Files\Windows Calendar
[08/06/2009|01:26] C:\Program Files\Windows Collaboration
[08/06/2009|01:26] C:\Program Files\Windows Defender
[08/06/2009|01:26] C:\Program Files\Windows Journal
[12/06/2009|15:12] C:\Program Files\Windows Live
[12/06/2009|15:11] C:\Program Files\Windows Live SkyDrive
[15/07/2009|14:04] C:\Program Files\Windows Mail
[08/06/2009|01:26] C:\Program Files\Windows Media Player
[01/06/2009|16:08] C:\Program Files\Windows NT
[08/06/2009|01:26] C:\Program Files\Windows Photo Gallery
[08/06/2009|01:26] C:\Program Files\Windows Sidebar
[08/06/2009|02:31] C:\Program Files\WinRoll
[07/07/2009|14:44] C:\Program Files\Yodm3D

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[24/07/2009|02:58] C:\Program Files\Common Files\AVSMedia
[12/06/2009|16:07] C:\Program Files\Common Files\DivX Shared
[14/06/2009|00:42] C:\Program Files\Common Files\GTK
[13/06/2009|14:50] C:\Program Files\Common Files\GTK(103)
[03/06/2009|12:19] C:\Program Files\Common Files\InstallShield
[12/06/2009|15:11] C:\Program Files\Common Files\microsoft shared
[03/06/2009|12:18] C:\Program Files\Common Files\muvee Technologies
[23/07/2009|04:15] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/07/2009|20:32] C:\Program Files\Common Files\Stardock
[09/06/2009|23:14] C:\Program Files\Common Files\SWF Studio
[08/06/2009|01:26] C:\Program Files\Common Files\System
[12/06/2009|14:57] C:\Program Files\Common Files\Windows Live
[25/07/2009|08:21] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 65 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-26 21:15:01
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:6][D:3]-> C:\Users\maxicard\AppData\Local\Temp
[F:544][D:1]-> C:\Users\maxicard\AppData\Roaming\MICROS~1\Windows\Cookies
[F:14][D:4]-> C:\Users\maxicard\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:74][D:13]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 26/07/2009|21:00 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 26/07/2009|21:16 - Option : [2]

--------------------\\ Fin du rapport a 21:16:07
[ UAC => 1 ]

le post de malaware

Malwarebytes' Anti-Malware 1.39
Version de la base de données: 2421
Windows 6.0.6002 Service Pack 2

26/07/2009 21:52:21
mbam-log-2009-07-26 (21-52-21).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 195679
Temps écoulé: 31 minute(s), 17 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

prefix · Message par **prefix** » 26 juil. 2009, 23:52

je viens de reavoir une pub....pffff....qu'ils me lachent!!!!!....ou je coupe internet....

Ycor · Message par **Ycor** » 27 juil. 2009, 00:08

Bonsoir
Sun Zu a dit : "Celui qui n'a pas d'objectifs ne risque pas de les atteindre."

Tu as certaienement ramassé une sal@$#rie en surfant, c'est ce(s) maleware(s) qui t'ouvre(nt) ces pubs à tout bout de champ. Laisse à bernard53 le temps de t'aider et suis bien ses conseils, il est très bon pour ce genre de nettoyage.

prefix · Message par **prefix** » 27 juil. 2009, 00:13

...ok....

bernard53 · Message par **bernard53** » 27 juil. 2009, 14:38

Ok il reste un intrus.

relance OTM

Double-clique sur OTM pour le lancer.

Copie la liste qui se trouve en citation ci-dessous:

:Reg

:Files
C:\Program Files\AskBarDis

:Commands
[purity]
[emptytemp]

[Reboot]

et colle-la dans le cadre de gauche de OTM sous ceci:

Clique sur

pour lancer la suppression.
attendre la fin du travail de l'outil puis fermer OTM

Le résultat apparaitra dans le cadre Results.
Clique sur Exit pour fermer.
Poste le rapport situé dans C:\_OTM\MovedFiles\06092009_130526.log "Exemple"

NB: Il te sera peut-être demandé de redémarrer le pc pour achever la suppression.
si c'est le cas accepte par Oui/Yes.

Ensuite un scan en ligne pour confirmer que le pc est clean.

Désactive ton anti Virus avant le scan .

Fait un scan ici : http://www.eset-nod32.fr/scanner.html

Merci de poster le rapport Nod32 (coche toutes les cases à chaque fois)
A la fin, colle le rapport : C:\Program Files\EsetOnlineScanner\log.txt

Forum-vista : Entraide et dépannage Windows Vista et Windows Seven

publicité ennuyeuse

publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse

Re: publicité ennuyeuse