Sujet Précédent Sujet Suivant

Probleme avec Pub CID

Résolu/Fermé
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 - 7 juin 2008 à 16:30
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 - 8 juin 2008 à 00:02
Bonjour,

J ai un probleme sur different PC, Des pub CID vienne tout le temps je ne suis pas assé performent pour arrivé a bou de ce probleme...

Voici le rapport HiJackThis du premier PC

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11:08, on 07/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\but\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Users\but\Desktop\HiJackThis.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&rlz=1T4SUNA_frFR276FR277&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ALaunch] C:\Acer\ALaunch\AlaunchClient.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Deaf Thunk] "C:\ProgramData\64SoftwareSoftware.jrxg33p"
O4 - HKCU\..\Run: [Bags Else Hole Lite] "C:\ProgramData\chic wait memo.7cre2"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
A voir également:

13 réponses

Réponse 1 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 16:34
Bonjour

tu télécharge : (by Moe) :
http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche,tu appuies
Un rapport sera crée, copie/colle sur le forum.
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 16:40
Bonjours, le logiciel que tu ma envoyé nescessite windows XP, il est impossible de faire l analyse car j ai Vista sur ce pc....
J atten la reponse merci beaucoup
0
Réponse 2 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 16:41
escuse moi

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 16:53
(rire ce n est pas grave) j ai installé le logiciel et effectué la recherche mais elle dure 10sec, ensuite je suis allé dans recherche et j ai tapé C:\lopP.txt pas d element trouvé....
J attend ta reponse MERCI
0
Réponse 3 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 16:58
pour vista

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.

http://www.laboratoire-microsoft.org/tips-23933-desactiver-uac-vista.html

et recommence Lop S&D.exe
0
mathlepetit
7 juin 2008 à 17:11
voila j ai donc fait la recherche avec lop s&d sa donne sa:



-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 17:05:14,03 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat

[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema

[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History

[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}

[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes

[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player


[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates




[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[07/06/2008 17:02][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[01/05/2008|11:12] C:\ProgramData\chic wait memo.7cre2
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 83

iexplore.exe ~ [3228]
iexplore.exe ~ [3672]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\chic wait memo.7cre2
C:\Users\but\AppData\Local\Temp\bis2E50.exe
C:\Users\but\AppData\Local\Temp\bis588E.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:05:41
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:1992][D:38]-> C:\Users\but\AppData\Local\Temp
[F:942][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1958][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 17:06:27,51 ]----------------------



j espere que c ce qu il te faut....

Merci
0
Réponse 4 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 17:14
c'est bien ça

Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 17:28
Voici le rapport....


-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 17:20:07,90 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt
Supprimé! - C:\ProgramData\chic wait memo.7cre2
Supprimé! - C:\Users\but\AppData\Local\Temp\bis2E50.exe
Supprimé! - C:\Users\but\AppData\Local\Temp\bis588E.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
Restauré! - Fichier Hosts

\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////

Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat

[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema

[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History

[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}

[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes

[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player


[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates




[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[07/06/2008 17:19][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 79

iexplore.exe ~ [6020]
iexplore.exe ~ [6080]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:21:27
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:1986][D:38]-> C:\Users\but\AppData\Local\Temp
[F:937][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2189][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 17:24:22,61 ]----------------------


Pas de trace de CID pour le moment....

Fini ?

merci
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 17:35
tout n'a pas était supprimer
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else

Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 17:54
petit probleme, j ai demarré l option 2, l ordinateur a redemarré mais maintenant j ai un cadre bleu avec un petit curseur blanc qui clignote...

Je clique sur croix et redemarr ?

MERCI
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10 > mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009
7 juin 2008 à 18:10
Bon voila j ai quitté et redemarré, sa ne fonctionne plus du tout, le logiciel ne veu plusse remettre en route donc voila...
Merci car je n est plus Les pub CID.....
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10 > mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009
7 juin 2008 à 18:12
Je viens d avoir une pud CID


Ahhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh

Aidé moi
0
Réponse 6 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 18:12
pour supprimer les outils de désinfections
Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.(sur un des 2 liens)
http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe
http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe
· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).
0
Réponse 7 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 18:14
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle messenger plus!
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 22:07
j ai utilisé le logiciel Tcleaner mais quand je fait la recherche du fichier texte TCleaner.txt il ne le trouve pas...
Que faire ????

Merci
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10 > mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009
7 juin 2008 à 22:09
je sais pas si c le rapport mais voila ce que j ai trouvé...

Je pense que c sa...

-->- Recherche:

C:\Lop SD: trouvé !
C:\Lop SD\Lop S&D.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\LopSD.exe: trouvé !
C:\Users\but\Desktop\HijackThis.exe: trouvé !

---------------------------------
-->- Suppression:

C:\Lop SD\Lop S&D.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\LopSD.exe: supprimé !
C:\Users\but\Desktop\HijackThis.exe: supprimé !
C:\Lop SD: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: ERREUR DE SUPPRESSION !!
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: supprimé !



Merci pour la reponse
0
Réponse 8 / 13
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 22:19
J ai toujours des pub....

Que faire SVP


merci
0
Réponse 9 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 23:14
bon au reprend du début

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 23:28
voici le rapport



-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 23:24:52,84 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat

[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema

[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History

[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}

[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes

[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player


[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates




[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[07/06/2008 23:22][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:20][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[07/06/2008|17:27] C:\ProgramData\Dead Barb Bind.zwu24
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|17:27] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 81

iexplore.exe ~ [3264]
iexplore.exe ~ [3704]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\Dead Barb Bind.zwu24
C:\ProgramData\Dead Barb Bind.zwu24

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\Army deaf.exe
C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:25:17
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:1731][D:38]-> C:\Users\but\AppData\Local\Temp
[F:974][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2546][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 23:26:01,80 ]----------------------




merci
0
Réponse 10 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 23:29
Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)


(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
0
Réponse 11 / 13
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
7 juin 2008 à 23:45
voici le rapport


-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 23:37:42,79 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\ProgramData\Iso Web Bags Else\Army deaf.exe
Supprimé! - C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt
Supprimé! - C:\ProgramData\Dead Barb Bind.zwu24
Supprimé! - C:\ProgramData\Iso Web Bags Else

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat

[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema

[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History

[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}

[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes

[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player


[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates




[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[07/06/2008 23:37][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:33][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 78

iexplore.exe ~ [5724]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:38:34
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:1723][D:38]-> C:\Users\but\AppData\Local\Temp
[F:972][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2577][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 23:42:16,40 ]----------------------




merci
0
Réponse 12 / 13
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
7 juin 2008 à 23:57
c'est bon
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
soit tu désinstalle messenger plus! ou tout simplement le sponsor

tu vérifie et tu supprime les programmes suivants si présents:
+ Cid help
+ Circle Developement
+ Adverts

bonne soirée et bonne nuit

gil
0
Réponse 13 / 13
mathlepetit Messages postés 307 Date d'inscription samedi 7 juin 2008 Statut Membre Dernière intervention 17 mars 2009 10
8 juin 2008 à 00:02
Je pense que c'est bon, plus de PUB CID pour le moment...

Merci pour ton aide, si tu a le temps un de ces jour, j aimerais savoir comment tu fait sa m interress....
Bien joué.....

A plus pour l'info.....

Merci Gil c cool....
0

Discussions similaires

Musique pub Skoda IV
SkodaIV -
Duck -

16 réponses
Cherche chanteur et titre chanson pub kinder noel 2023
Herme80 -
trekipat -

16 réponses
Enlever la pub sur sa tv?
DrFake -
Stryte005 -

10 réponses
M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses