Sujet Précédent Sujet Suivant

Problemes de CID

Résolu
stephanie31 Messages postés 5 Statut Membre -  
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité -
Bonjour,
j ai un probleme des fenetres CID se mette a chaque que je vais sur internet j ai installer avg en plus de ad aware v fr il me trouve des choses que je supprime mais rien a faire ces fenetres s ouvre toujours j a ifait un scan avec hijakthis mais je ne comprend ^pas le rapport donc je le joint a mon message et si quel qun peux m aider ce serai cool car je souhaite heradiquer ces fenetres au plus vite car c est vraiment genant merci d avance .
Scan saved at 09:06:05, on 18/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\program files\valve\steam\steam.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\dcads_sidebar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Tooltipizer - {C004D9F0-A742-4DC7-AFD0-BC29CE3FE04A} - C:\WINDOWS\system32\dcadssuggest.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [axis web cake second] C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web\Iso blue.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://lunaenzotaxcesar.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

8 réponses

Réponse 1 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

++
0
Réponse 2 / 8
stephanie31 Messages postés 5 Statut Membre
 
ok merci a toi je vais installer ce que tu m a dit et je te tiens au courant.
0
Réponse 3 / 8
stephanie31 Messages postés 5 Statut Membre
 
voila le rapport merci de m aider je ne comprend pas grd chose merci;
Exécuté dans : C:\Program Files\Lopxp 


  Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" (992)
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"  (3196)
___________________________________________________________________________

=> Tâches planifiées

Aucune tâche planifiée détecté.

___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\All Users\Application Data

01/09/2007 07:04:38 ... Adobe -----= Adobe
01/09/2007 07:11:45 ... Ahead -----= Ahead
24/10/2007 20:11:16 ... BIGFIS~1 --= BigFishGamesCache
22/12/2007 08:20:13 ... BOOKSL~1 --= Book Slow Axis Web
03/09/2007 16:53:18 ... BOONTY ----= BOONTY
15/12/2007 12:50:01 ... CHRIST~1 --= Christmasville
16/09/2007 20:46:54 ... DVDSHR~1 --= DVD Shrink
19/11/2007 13:28:52 ... Fugazo ----= Fugazo
01/09/2007 07:02:47 ... Google ----= Google
17/01/2008 21:27:45 ... Grisoft ---= Grisoft
26/12/2007 19:57:37 ... HIDDEN~1 --= HiddenSecretsNightmare
17/09/2007 13:44:08 ... JOLLYB~1 --= JollyBear
31/08/2007 22:59:41 ... KASPER~1 --= Kaspersky Lab
30/09/2007 15:25:36 ... KASPER~2 --= Kaspersky Lab Setup Files
01/09/2007 06:49:29 ... Lavasoft --= Lavasoft
17/01/2008 21:57:43 ... MESSEN~1 --= Messenger Plus!
01/09/2007 00:30:11 ... MICROS~1 --= Microsoft
01/11/2007 14:23:26 ... MUMBOJ~1 --= MumboJumbo
31/08/2007 23:05:38 ... NVIEW_~1 --= nView_Profiles
05/10/2007 12:01:04 ... PLAYFI~1 --= PlayFirst
21/09/2007 11:09:13 ... SANDLO~1 --= Sandlot Games
03/09/2007 16:53:32 ... SCREEN~1 --= ScreenSeven
02/01/2008 21:02:54 ... SPINTO~1 --= SpinTop Games
01/09/2007 08:22:50 ... SSSCAN~1 --= SSScanAppDataDir
01/09/2007 08:22:50 ... SSSCAN~2 --= SSScanWizard
01/10/2007 13:06:34 ... TEMP ------= TEMP
02/09/2007 08:42:41 ... WINDOW~1 --= Windows Genuine Advantage
15/11/2007 16:39:27 ... WLINST~1 --= WLInstaller

+- C:\Documents and Settings\steph\Application Data

24/10/2007 20:34:47 ... ABRAAC~1 --= Abra Academy2
01/09/2007 07:05:11 ... Adobe -----= Adobe
08/09/2007 15:41:31 ... Ahead -----= Ahead
15/11/2007 12:54:48 ... ANUMAN~1 --= Anuman Interactive
03/09/2007 12:10:32 ... Azureus ---= Azureus
10/09/2007 08:39:48 ... BIGFIS~1 --= Big Fish Games
03/09/2007 11:15:23 ... Canon -----= Canon
01/09/2007 07:41:04 ... FotoWire --= FotoWire
01/09/2007 07:02:55 ... Google ----= Google
17/01/2008 21:28:05 ... Grisoft ---= Grisoft
31/08/2007 22:46:10 ... IDENTI~1 --= Identities
02/09/2007 14:45:15 ... Lavasoft --= Lavasoft
02/09/2007 10:38:19 ... LimeWire --= LimeWire
31/08/2007 23:07:42 ... MACROM~1 --= Macromedia
21/12/2007 12:21:44 ... MEDIAP~1 --= Media Player Classic
31/08/2007 22:46:05 ... MICROS~1 --= Microsoft
11/10/2007 21:29:37 ... MYSTER~1 --= Mysteryville2
27/12/2007 02:30:25 ... Real ------= Real
12/12/2007 09:34:07 ... Samsung ---= Samsung
01/09/2007 08:22:52 ... ScanSoft --= ScanSoft
27/10/2007 17:10:52 ... SecuROM ---= SecuROM
22/10/2007 18:07:48 ... Sun -------= Sun
26/09/2007 09:56:27 ... vlc -------= vlc
02/09/2007 08:30:45 ... WinRAR ----= WinRAR

+- C:\Documents and Settings\steph\Local Settings\Application Data

01/09/2007 07:04:55 ... Adobe -----= Adobe
03/09/2007 11:45:16 ... Ahead -----= Ahead
01/09/2007 07:02:55 ... Google ----= Google
13/09/2007 20:47:52 ... IDENTI~1 --= Identities
17/09/2007 13:44:08 ... JOLLYB~1 --= JollyBear
31/08/2007 22:46:05 ... MICROS~1 --= Microsoft
02/09/2007 11:57:02 ... Neuf ------= Neuf
14/09/2007 06:05:53 ... Steam -----= Steam

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

24/10/2007 20:19:50 ... ABRAAC~1 --= Abra Academy - Returning Cast
01/09/2007 07:04:32 ... Adobe -----= Adobe
01/09/2007 07:11:35 ... Ahead -----= Ahead
31/08/2007 22:57:14 ... ANALOG~1 --= Analog Devices
01/09/2007 08:25:04 ... ArcSoft ---= ArcSoft
26/09/2007 10:51:20 ... Azureus ---= Azureus
24/10/2007 20:11:16 ... BFGCLI~1 --= bfgclient
03/09/2007 16:51:11 ... Boonty ----= Boonty
03/09/2007 16:51:13 ... BOONTY~1 --= BoontyGames
01/09/2007 08:16:52 ... Canon -----= Canon
01/09/2007 06:42:45 ... CCleaner --= CCleaner
31/08/2007 22:39:07 ... COMPLU~1 --= ComPlus Applications
16/09/2007 20:46:53 ... DVDSHR~1 --= DVD Shrink
01/09/2007 00:30:49 ... FICHIE~1 --= Fichiers communs
21/09/2007 11:00:48 ... GamesBar --= GamesBar
01/09/2007 07:02:25 ... Google ----= Google
17/01/2008 21:27:43 ... Grisoft ---= Grisoft
26/12/2007 19:53:54 ... HIDDEN~1 --= Hidden Secrets - The Nightmare
31/08/2007 22:57:13 ... INSTAL~1 --= InstallShield Installation Information
31/08/2007 22:54:46 ... Intel -----= Intel
31/08/2007 22:39:20 ... INTERN~1 --= Internet Explorer
15/01/2008 21:11:27 ... INTERP~1.CHA --= Interpol - The Trail of Dr. Chaos
01/09/2007 06:58:25 ... Java ------= Java
31/08/2007 22:59:41 ... KASPER~1 --= Kaspersky Lab
31/08/2007 23:25:19 ... KONAMI ----= KONAMI
01/09/2007 06:47:17 ... Lavasoft --= Lavasoft
01/09/2007 06:57:32 ... LimeWire --= LimeWire
01/09/2007 07:38:29 ... Logitech --= Logitech
20/01/2008 10:03:39 ... Lopxp -----= Lopxp
31/08/2007 22:38:30 ... MESSEN~1 --= Messenger
17/01/2008 21:51:28 ... MESSEN~2 --= Messenger Plus! Live
01/11/2007 20:03:23 ... MICROA~1 --= Micro Application
31/08/2007 22:41:52 ... MICROS~1 --= microsoft frontpage
05/09/2007 11:06:08 ... MICROS~3 --= Microsoft Office
15/11/2007 16:44:13 ... MI29AE~1 --= Microsoft SQL Server Compact Edition
03/11/2007 10:20:30 ... MICROS~4 --= Microsoft Visual Studio
01/09/2007 08:06:01 ... MICROS~2 --= Microsoft Works
31/08/2007 22:39:37 ... MOVIEM~1 --= Movie Maker
31/08/2007 22:38:01 ... MSN -------= MSN
31/08/2007 22:38:27 ... MSNGAM~1 --= MSN Gaming Zone
01/09/2007 19:43:01 ... MSXML4~1.0 --= MSXML 4.0
14/11/2007 19:45:32 ... MYSTER~1 --= Mystery Case Files - Madame Fate
20/12/2007 21:53:43 ... MYSTER~2 --= Mystery in London
02/01/2008 21:02:34 ... MYSTER~1.-TH --= Mystery P.I. - The Lottery Ticket
31/08/2007 22:39:28 ... NETMEE~1 --= NetMeeting
31/08/2007 23:02:56 ... Neuf ------= Neuf
31/08/2007 22:38:35 ... ONLINE~1 --= Online Services
31/08/2007 22:39:25 ... OUTLOO~1 --= Outlook Express
31/08/2007 22:57:54 ... Realtek ---= Realtek
11/12/2007 08:08:19 ... Samsung ---= Samsung
01/09/2007 08:22:36 ... ScanSoft --= ScanSoft
31/08/2007 22:40:27 ... SERVIC~1 --= Services en ligne
21/12/2007 07:16:08 ... SLDCOD~1 --= SLD Codec Pack
18/01/2008 09:05:54 ... TRENDM~1 --= Trend Micro
31/08/2007 22:46:09 ... UNINST~1 --= Uninstall Information
02/09/2007 09:03:03 ... Valve -----= Valve
26/09/2007 09:57:31 ... VideoLAN --= VideoLAN
01/09/2007 06:54:56 ... WINDOW~4 --= Windows Live
02/09/2007 08:47:04 ... WI4DF6~1 --= Windows Media Connect 2
31/08/2007 22:38:35 ... WINDOW~2 --= Windows Media Player
31/08/2007 22:37:59 ... WINDOW~1 --= Windows NT
31/08/2007 22:40:31 ... WINDOW~3 --= WindowsUpdate
01/09/2007 06:44:13 ... WinRAR ----= WinRAR
31/08/2007 22:41:52 ... xerox -----= xerox


___________________________________________________________________________

=> Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"axis web cake second"="C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web\Iso blue.exe"


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :


___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

+- Dossiers suspects :

C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web
C:\Documents and Settings\steph\Application Data\Real

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"axis web cake second"=-

- Fin du rapport -
0
Réponse 4 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
salut

ok,

va dans : Démarrer > Exécuter puis copie/colle la ligne suivante en gras :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme

puis valide, et poste le rapport stp

@+
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
stephanie31 Messages postés 5 Statut Membre
 
ok greenday voici le rapport merci de bien vouloir m aider et me dire ce qu il faut que je vire du pc merci encore

Exécuté dans : C:\Program Files\Lopxp 


___________________________________________________________________________

=> Fixme :

+- Dossiers :
! Problème de suppression ! => C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web
Supprimé : C:\Documents and Settings\steph\Application Data\Real

+- Registre :
Nettoyage effectué.

+- Fichiers temporaires :
Nettoyage effectué.

___________________________________________________________________________

=> Tâches planifiées

Aucune tâche planifiée détecté.

___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\All Users\Application Data

01/09/2007 07:04:38 ... Adobe -----= Adobe
01/09/2007 07:11:45 ... Ahead -----= Ahead
24/10/2007 20:11:16 ... BIGFIS~1 --= BigFishGamesCache
22/12/2007 08:20:13 ... BOOKSL~1 --= Book Slow Axis Web
03/09/2007 16:53:18 ... BOONTY ----= BOONTY
15/12/2007 12:50:01 ... CHRIST~1 --= Christmasville
16/09/2007 20:46:54 ... DVDSHR~1 --= DVD Shrink
19/11/2007 13:28:52 ... Fugazo ----= Fugazo
01/09/2007 07:02:47 ... Google ----= Google
17/01/2008 21:27:45 ... Grisoft ---= Grisoft
26/12/2007 19:57:37 ... HIDDEN~1 --= HiddenSecretsNightmare
17/09/2007 13:44:08 ... JOLLYB~1 --= JollyBear
31/08/2007 22:59:41 ... KASPER~1 --= Kaspersky Lab
30/09/2007 15:25:36 ... KASPER~2 --= Kaspersky Lab Setup Files
01/09/2007 06:49:29 ... Lavasoft --= Lavasoft
17/01/2008 21:57:43 ... MESSEN~1 --= Messenger Plus!
01/09/2007 00:30:11 ... MICROS~1 --= Microsoft
01/11/2007 14:23:26 ... MUMBOJ~1 --= MumboJumbo
31/08/2007 23:05:38 ... NVIEW_~1 --= nView_Profiles
05/10/2007 12:01:04 ... PLAYFI~1 --= PlayFirst
21/09/2007 11:09:13 ... SANDLO~1 --= Sandlot Games
03/09/2007 16:53:32 ... SCREEN~1 --= ScreenSeven
02/01/2008 21:02:54 ... SPINTO~1 --= SpinTop Games
01/09/2007 08:22:50 ... SSSCAN~1 --= SSScanAppDataDir
01/09/2007 08:22:50 ... SSSCAN~2 --= SSScanWizard
01/10/2007 13:06:34 ... TEMP ------= TEMP
02/09/2007 08:42:41 ... WINDOW~1 --= Windows Genuine Advantage
15/11/2007 16:39:27 ... WLINST~1 --= WLInstaller

+- C:\Documents and Settings\steph\Application Data

24/10/2007 20:34:47 ... ABRAAC~1 --= Abra Academy2
01/09/2007 07:05:11 ... Adobe -----= Adobe
08/09/2007 15:41:31 ... Ahead -----= Ahead
15/11/2007 12:54:48 ... ANUMAN~1 --= Anuman Interactive
03/09/2007 12:10:32 ... Azureus ---= Azureus
10/09/2007 08:39:48 ... BIGFIS~1 --= Big Fish Games
03/09/2007 11:15:23 ... Canon -----= Canon
01/09/2007 07:41:04 ... FotoWire --= FotoWire
01/09/2007 07:02:55 ... Google ----= Google
17/01/2008 21:28:05 ... Grisoft ---= Grisoft
31/08/2007 22:46:10 ... IDENTI~1 --= Identities
02/09/2007 14:45:15 ... Lavasoft --= Lavasoft
02/09/2007 10:38:19 ... LimeWire --= LimeWire
31/08/2007 23:07:42 ... MACROM~1 --= Macromedia
21/12/2007 12:21:44 ... MEDIAP~1 --= Media Player Classic
31/08/2007 22:46:05 ... MICROS~1 --= Microsoft
11/10/2007 21:29:37 ... MYSTER~1 --= Mysteryville2
12/12/2007 09:34:07 ... Samsung ---= Samsung
01/09/2007 08:22:52 ... ScanSoft --= ScanSoft
27/10/2007 17:10:52 ... SecuROM ---= SecuROM
22/10/2007 18:07:48 ... Sun -------= Sun
26/09/2007 09:56:27 ... vlc -------= vlc
02/09/2007 08:30:45 ... WinRAR ----= WinRAR

+- C:\Documents and Settings\steph\Local Settings\Application Data

01/09/2007 07:04:55 ... Adobe -----= Adobe
03/09/2007 11:45:16 ... Ahead -----= Ahead
01/09/2007 07:02:55 ... Google ----= Google
13/09/2007 20:47:52 ... IDENTI~1 --= Identities
17/09/2007 13:44:08 ... JOLLYB~1 --= JollyBear
31/08/2007 22:46:05 ... MICROS~1 --= Microsoft
02/09/2007 11:57:02 ... Neuf ------= Neuf
14/09/2007 06:05:53 ... Steam -----= Steam

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

24/10/2007 20:19:50 ... ABRAAC~1 --= Abra Academy - Returning Cast
01/09/2007 07:04:32 ... Adobe -----= Adobe
01/09/2007 07:11:35 ... Ahead -----= Ahead
31/08/2007 22:57:14 ... ANALOG~1 --= Analog Devices
01/09/2007 08:25:04 ... ArcSoft ---= ArcSoft
26/09/2007 10:51:20 ... Azureus ---= Azureus
24/10/2007 20:11:16 ... BFGCLI~1 --= bfgclient
03/09/2007 16:51:11 ... Boonty ----= Boonty
03/09/2007 16:51:13 ... BOONTY~1 --= BoontyGames
01/09/2007 08:16:52 ... Canon -----= Canon
01/09/2007 06:42:45 ... CCleaner --= CCleaner
31/08/2007 22:39:07 ... COMPLU~1 --= ComPlus Applications
16/09/2007 20:46:53 ... DVDSHR~1 --= DVD Shrink
01/09/2007 00:30:49 ... FICHIE~1 --= Fichiers communs
21/09/2007 11:00:48 ... GamesBar --= GamesBar
01/09/2007 07:02:25 ... Google ----= Google
17/01/2008 21:27:43 ... Grisoft ---= Grisoft
26/12/2007 19:53:54 ... HIDDEN~1 --= Hidden Secrets - The Nightmare
31/08/2007 22:57:13 ... INSTAL~1 --= InstallShield Installation Information
31/08/2007 22:54:46 ... Intel -----= Intel
31/08/2007 22:39:20 ... INTERN~1 --= Internet Explorer
15/01/2008 21:11:27 ... INTERP~1.CHA --= Interpol - The Trail of Dr. Chaos
01/09/2007 06:58:25 ... Java ------= Java
31/08/2007 22:59:41 ... KASPER~1 --= Kaspersky Lab
31/08/2007 23:25:19 ... KONAMI ----= KONAMI
01/09/2007 06:47:17 ... Lavasoft --= Lavasoft
01/09/2007 06:57:32 ... LimeWire --= LimeWire
01/09/2007 07:38:29 ... Logitech --= Logitech
20/01/2008 10:03:39 ... Lopxp -----= Lopxp
31/08/2007 22:38:30 ... MESSEN~1 --= Messenger
17/01/2008 21:51:28 ... MESSEN~2 --= Messenger Plus! Live
01/11/2007 20:03:23 ... MICROA~1 --= Micro Application
31/08/2007 22:41:52 ... MICROS~1 --= microsoft frontpage
05/09/2007 11:06:08 ... MICROS~3 --= Microsoft Office
15/11/2007 16:44:13 ... MI29AE~1 --= Microsoft SQL Server Compact Edition
03/11/2007 10:20:30 ... MICROS~4 --= Microsoft Visual Studio
01/09/2007 08:06:01 ... MICROS~2 --= Microsoft Works
31/08/2007 22:39:37 ... MOVIEM~1 --= Movie Maker
31/08/2007 22:38:01 ... MSN -------= MSN
31/08/2007 22:38:27 ... MSNGAM~1 --= MSN Gaming Zone
01/09/2007 19:43:01 ... MSXML4~1.0 --= MSXML 4.0
14/11/2007 19:45:32 ... MYSTER~1 --= Mystery Case Files - Madame Fate
20/12/2007 21:53:43 ... MYSTER~2 --= Mystery in London
02/01/2008 21:02:34 ... MYSTER~1.-TH --= Mystery P.I. - The Lottery Ticket
31/08/2007 22:39:28 ... NETMEE~1 --= NetMeeting
31/08/2007 23:02:56 ... Neuf ------= Neuf
31/08/2007 22:38:35 ... ONLINE~1 --= Online Services
31/08/2007 22:39:25 ... OUTLOO~1 --= Outlook Express
31/08/2007 22:57:54 ... Realtek ---= Realtek
11/12/2007 08:08:19 ... Samsung ---= Samsung
01/09/2007 08:22:36 ... ScanSoft --= ScanSoft
31/08/2007 22:40:27 ... SERVIC~1 --= Services en ligne
21/12/2007 07:16:08 ... SLDCOD~1 --= SLD Codec Pack
18/01/2008 09:05:54 ... TRENDM~1 --= Trend Micro
31/08/2007 22:46:09 ... UNINST~1 --= Uninstall Information
02/09/2007 09:03:03 ... Valve -----= Valve
26/09/2007 09:57:31 ... VideoLAN --= VideoLAN
01/09/2007 06:54:56 ... WINDOW~4 --= Windows Live
02/09/2007 08:47:04 ... WI4DF6~1 --= Windows Media Connect 2
31/08/2007 22:38:35 ... WINDOW~2 --= Windows Media Player
31/08/2007 22:37:59 ... WINDOW~1 --= Windows NT
31/08/2007 22:40:31 ... WINDOW~3 --= WindowsUpdate
01/09/2007 06:44:13 ... WinRAR ----= WinRAR
31/08/2007 22:41:52 ... xerox -----= xerox


___________________________________________________________________________

=> Clés registre


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :


___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

+- Dossiers suspects :

C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web

- Fin du rapport -
0
Réponse 6 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
ok,

poste un nouveau hijack stp

++
0
Réponse 7 / 8
stephanie31 Messages postés 5 Statut Membre
 
merci j ai regarder la fin du rapport de lopxp c est a dire suggestion dossier suspect j ai supprimer ce qu il y avait dedans en passant par le chemin indiquer c:document and setting etc et maintenant je n ai plus de fenetre CID je te remercie pour ton aide a plus et merci encore.
0
Réponse 8 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

c'est aussi une manière de faire ! :-)

mais ce n'est pas encore fini ! cid oui, mais il reste quelques bébéttes ...

Télécharger ComboFix (par sUBs) sur le Bureau : http://download.bleepingcomputer.com/sUBs/ComboFix.exe

* Démarrer en mode sans echec
* Double cliquer combofix.exe.
* Appuyer sur la touche Y (Yes) pour démarrer le scan
* Le rapport sera crée dans: C:\Combofix.txt, poste le stp

++
0

Discussions similaires

Encore les CiD
doudoudim -
doudoudim -

18 réponses
appel intrusif sur Skype
FAMATHELY -
Utilisateur anonyme -

3 réponses
CiD
Bahia -
espion3004 -

1 réponse
comment donner les droits sur fichier partage
ch'ti du 57 -
fil1958 -

2 réponses
Problème CiD
Djemalounet -
Djemalounet -

104 réponses