Sujet Précédent Sujet Suivant

Cid aider moi svp

ky0 -  
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité -
Bonjour,

J ai des pub venant de CID et c est très embêtant :s , je vois un peu près comment je l ai obtenu lol.
svp aider moi !!

Voila ce que sa donne avec lopR (je suis sous vista) :

-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kyo ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/06/2008 | 0:44:33,36 ] [ PC : PC-DE-KYO ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[26/04/2008|23:24] C:\Users\Kyo\AppData\Roaming\Adobe\Linguistics
[26/04/2008|23:23] C:\Users\Kyo\AppData\Roaming\Adobe\Acrobat
[26/04/2008|23:17] C:\Users\Kyo\AppData\Roaming\Adobe\Flash Player

[26/04/2008|23:12] C:\Users\Kyo\AppData\Roaming\DivX\DivX Codec

[01/06/2008|23:38] C:\Users\Kyo\AppData\Roaming\FlashGet\DataBase

[05/06/2008|21:44] C:\Users\Kyo\AppData\Roaming\GlarySoft\Glary Utilities

[26/04/2008|21:37] C:\Users\Kyo\AppData\Roaming\Google\Local Search History

[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Identities\{F2C30901-49B8-4A42-A62B-0766F7FAC1F9}

[11/05/2008|16:02] C:\Users\Kyo\AppData\Roaming\InstallShield\UpdateService
[11/12/2007|13:44] C:\Users\Kyo\AppData\Roaming\InstallShield\ISEngine12.0

[08/06/2008|00:11] C:\Users\Kyo\AppData\Roaming\Macromedia\Flash Player

[07/06/2008|13:23] C:\Users\Kyo\AppData\Roaming\Microsoft\Outlook
[05/06/2008|21:38] C:\Users\Kyo\AppData\Roaming\Microsoft\HTML Help
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\Office
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\AddIns
[03/05/2008|01:06] C:\Users\Kyo\AppData\Roaming\Microsoft\eHome
[01/05/2008|16:33] C:\Users\Kyo\AppData\Roaming\Microsoft\Ime
[30/04/2008|21:53] C:\Users\Kyo\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|23:03] C:\Users\Kyo\AppData\Roaming\Microsoft\IdentityCRL
[26/04/2008|20:41] C:\Users\Kyo\AppData\Roaming\Microsoft\Internet Explorer
[26/04/2008|20:20] C:\Users\Kyo\AppData\Roaming\Microsoft\Protect
[27/11/2007|10:39] C:\Users\Kyo\AppData\Roaming\Microsoft\CLR Security Config
[26/11/2007|14:14] C:\Users\Kyo\AppData\Roaming\Microsoft\MMC
[26/11/2007|12:34] C:\Users\Kyo\AppData\Roaming\Microsoft\Crypto
[26/11/2007|12:03] C:\Users\Kyo\AppData\Roaming\Microsoft\SystemCertificates
[26/11/2007|11:32] C:\Users\Kyo\AppData\Roaming\Microsoft\Windows
[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Microsoft\Credentials

[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Extensions
[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Firefox

[26/04/2008|22:04] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO Update
[11/12/2007|14:00] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Network Utility
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO POWER MANAGEMENT
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Setting Utility Series

[04/06/2008|22:54] C:\Users\Kyo\AppData\Roaming\Spamihilator\recycle

[18/05/2008|11:19] C:\Users\Kyo\AppData\Roaming\Thunderbird\Profiles

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[08/06/2008 00:35][--ah-----] C:\Windows\tasks\SA.DAT
[08/06/2008 00:28][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[27/11/2007|10:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[26/04/2008|23:35] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[07/06/2008|13:23] C:\ProgramData\Avg8
[26/11/2007|11:28] C:\ProgramData\Bureau
[03/06/2008|22:14] C:\ProgramData\Delete license license.147regb
[07/06/2008|22:34] C:\ProgramData\Delete license license.1fdk9f
[06/06/2008|02:15] C:\ProgramData\Delete license license.2ses5y7
[05/06/2008|21:37] C:\ProgramData\Delete license license.3bmahbu
[06/06/2008|22:41] C:\ProgramData\Delete license license.3gicf
[03/06/2008|22:35] C:\ProgramData\Delete license license.3s6m0
[06/06/2008|23:46] C:\ProgramData\Delete license license.4shputh
[06/06/2008|06:37] C:\ProgramData\Delete license license.59e17u
[07/06/2008|00:30] C:\ProgramData\Delete license license.5pvd6
[03/06/2008|23:41] C:\ProgramData\Delete license license.5uv2m
[06/06/2008|04:48] C:\ProgramData\Delete license license.6lvmjyy
[07/06/2008|21:50] C:\ProgramData\Delete license license.8izkr
[06/06/2008|05:53] C:\ProgramData\Delete license license.9ime6ps
[06/06/2008|04:04] C:\ProgramData\Delete license license.9s75fg
[06/06/2008|07:21] C:\ProgramData\Delete license license.a49b4s
[07/06/2008|23:18] C:\ProgramData\Delete license license.abv199f
[03/06/2008|22:57] C:\ProgramData\Delete license license.abvxfkk
[06/06/2008|00:25] C:\ProgramData\Delete license license.aj8ik5
[08/06/2008|00:02] C:\ProgramData\Delete license license.b0lpd
[05/06/2008|23:20] C:\ProgramData\Delete license license.bae6fs
[04/06/2008|23:22] C:\ProgramData\Delete license license.bymtz4
[06/06/2008|08:26] C:\ProgramData\Delete license license.cb4hszz
[06/06/2008|21:57] C:\ProgramData\Delete license license.cdsn42
[05/06/2008|00:08] C:\ProgramData\Delete license license.cre4l7
[07/06/2008|22:56] C:\ProgramData\Delete license license.ctc5jv
[06/06/2008|05:32] C:\ProgramData\Delete license license.d7mpu
[05/06/2008|23:42] C:\ProgramData\Delete license license.dfajjg
[05/06/2008|22:58] C:\ProgramData\Delete license license.djeuj
[07/06/2008|11:11] C:\ProgramData\Delete license license.eejtes
[07/06/2008|22:12] C:\ProgramData\Delete license license.f7o42
[07/06/2008|23:40] C:\ProgramData\Delete license license.g0t5g1b
[06/06/2008|23:03] C:\ProgramData\Delete license license.g5d1q1
[07/06/2008|20:45] C:\ProgramData\Delete license license.gfin5z
[06/06/2008|01:31] C:\ProgramData\Delete license license.gj89rrh
[05/06/2008|00:30] C:\ProgramData\Delete license license.hg371j
[06/06/2008|08:05] C:\ProgramData\Delete license license.hg6fcun
[06/06/2008|05:10] C:\ProgramData\Delete license license.hk63n
[06/06/2008|03:21] C:\ProgramData\Delete license license.jcdxrl5
[07/06/2008|21:29] C:\ProgramData\Delete license license.jinpf
[06/06/2008|06:59] C:\ProgramData\Delete license license.jsqgs9o
[04/06/2008|23:00] C:\ProgramData\Delete license license.k6z9fkx
[06/06/2008|04:26] C:\ProgramData\Delete license license.katagwn
[06/06/2008|02:37] C:\ProgramData\Delete license license.le29r
[03/06/2008|21:51] C:\ProgramData\Delete license license.lq0nj
[06/06/2008|03:42] C:\ProgramData\Delete license license.m3pn9
[06/06/2008|02:59] C:\ProgramData\Delete license license.mvxjz
[05/06/2008|22:14] C:\ProgramData\Delete license license.mx5g7y
[07/06/2008|01:14] C:\ProgramData\Delete license license.nu2zcd
[07/06/2008|00:08] C:\ProgramData\Delete license license.o102b
[03/06/2008|21:51] C:\ProgramData\Delete license license.ocjcm7e
[06/06/2008|00:47] C:\ProgramData\Delete license license.pbcppv
[06/06/2008|01:09] C:\ProgramData\Delete license license.q9oyvsw
[05/06/2008|22:36] C:\ProgramData\Delete license license.qaul5
[06/06/2008|07:43] C:\ProgramData\Delete license license.qwcej
[07/06/2008|20:23] C:\ProgramData\Delete license license.rnnu5
[07/06/2008|11:33] C:\ProgramData\Delete license license.t3ga19g
[03/06/2008|23:19] C:\ProgramData\Delete license license.u40957
[07/06/2008|10:28] C:\ProgramData\Delete license license.unh25q5
[07/06/2008|21:07] C:\ProgramData\Delete license license.uwlcmr2
[06/06/2008|23:25] C:\ProgramData\Delete license license.v7hozvs
[07/06/2008|10:50] C:\ProgramData\Delete license license.vzo3t
[04/06/2008|00:03] C:\ProgramData\Delete license license.wbjkky7
[07/06/2008|00:52] C:\ProgramData\Delete license license.xinol
[06/06/2008|22:19] C:\ProgramData\Delete license license.xky8if
[06/06/2008|00:04] C:\ProgramData\Delete license license.xp6lq
[06/06/2008|01:53] C:\ProgramData\Delete license license.yll6iw
[06/06/2008|06:15] C:\ProgramData\Delete license license.z5vyq
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[26/11/2007|11:28] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[26/04/2008|21:37] C:\ProgramData\Google
[03/06/2008|21:52] C:\ProgramData\GREAT ONLINE PLAY.rw870z
[11/05/2008|16:02] C:\ProgramData\InstallShield
[08/06/2008|00:35] C:\ProgramData\Kaspersky Lab
[07/06/2008|13:22] C:\ProgramData\Kaspersky Lab Setup Files
[26/11/2007|11:28] C:\ProgramData\Menu D‚marrer
[05/06/2008|21:38] C:\ProgramData\Microsoft
[13/05/2008|23:09] C:\ProgramData\Microsoft Help
[26/11/2007|11:28] C:\ProgramData\ModŠles
[26/11/2007|12:45] C:\ProgramData\NVIDIA
[03/06/2008|21:52] C:\ProgramData\Part Hide Grey Pop
[01/05/2008|11:21] C:\ProgramData\Real
[27/11/2007|10:42] C:\ProgramData\Skype
[11/12/2007|13:55] C:\ProgramData\Sonic
[27/11/2007|10:41] C:\ProgramData\Sony
[26/04/2008|23:12] C:\ProgramData\Sony Corporation
[02/11/2006|15:02] C:\ProgramData\Start Menu
[26/04/2008|21:31] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[11/12/2007|13:46] C:\ProgramData\VAIO Media Platform
[03/06/2008|21:52] C:\ProgramData\Wave Heck First
[26/04/2008|22:53] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[27/11/2007|10:35] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/04/2008|23:35] C:\Program Files\Adobe
[26/11/2007|14:20] C:\Program Files\Apoint
[04/06/2008|22:56] C:\Program Files\AVG
[27/11/2007|10:36] C:\Program Files\BFG
[08/06/2008|00:07] C:\Program Files\CCleaner
[18/05/2008|13:53] C:\Program Files\Codemasters
[01/05/2008|12:09] C:\Program Files\Common Files
[26/11/2007|14:19] C:\Program Files\CONEXANT
[26/11/2007|12:20] C:\Program Files\desktop.ini
[01/05/2008|11:21] C:\Program Files\DivX
[26/11/2007|11:28] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[01/06/2008|20:21] C:\Program Files\FlashGet
[07/06/2008|23:06] C:\Program Files\Garena
[27/04/2008|21:11] C:\Program Files\Google
[27/11/2007|10:40] C:\Program Files\Google BAE
[05/06/2008|00:03] C:\Program Files\InstallShield Installation Information
[26/11/2007|12:42] C:\Program Files\Intel
[26/04/2008|21:14] C:\Program Files\Internet Explorer
[11/12/2007|14:03] C:\Program Files\InterVideo
[10/05/2008|20:23] C:\Program Files\Java
[20/05/2008|20:42] C:\Program Files\KalOnlineEng
[07/06/2008|13:40] C:\Program Files\Kaspersky Lab
[01/05/2008|11:21] C:\Program Files\K-Lite Codec Pack
[11/12/2007|13:41] C:\Program Files\Lecteur CANALPLAY
[08/06/2008|00:21] C:\Program Files\Lopxp
[08/06/2008|00:15] C:\Program Files\Messenger Plus! Live
[26/04/2008|23:44] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[27/11/2007|10:38] C:\Program Files\Microsoft Office
[27/11/2007|10:39] C:\Program Files\Microsoft Small Business
[26/04/2008|23:45] C:\Program Files\Microsoft SQL Server
[26/04/2008|23:05] C:\Program Files\Microsoft SQL Server Compact Edition
[27/11/2007|10:33] C:\Program Files\Microsoft Visual Studio
[27/11/2007|10:33] C:\Program Files\Microsoft Works
[27/11/2007|10:37] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[08/06/2008|00:36] C:\Program Files\Mozilla Firefox
[06/06/2008|22:08] C:\Program Files\Mozilla Firefox 3 Beta 3
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[26/11/2007|12:03] C:\Program Files\MSXML 4.0
[08/06/2008|00:10] C:\Program Files\Navilog1
[26/04/2008|23:32] C:\Program Files\OGPlanet
[20/05/2008|22:54] C:\Program Files\Outspark
[26/04/2008|21:33] C:\Program Files\Picasa2
[26/11/2007|12:47] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[11/12/2007|13:54] C:\Program Files\Roxio
[27/11/2007|10:42] C:\Program Files\Skype
[01/05/2008|20:50] C:\Program Files\Softnyx
[11/12/2007|14:04] C:\Program Files\Sony
[11/12/2007|13:57] C:\Program Files\Sony Corporation
[04/06/2008|22:54] C:\Program Files\Spamihilator
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[01/05/2008|11:24] C:\Program Files\uTorrent
[07/06/2008|23:08] C:\Program Files\Warcraft III
[03/06/2008|21:51] C:\Program Files\Wave Heck First
[26/11/2007|12:18] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[26/11/2007|12:18] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[27/04/2008|22:15] C:\Program Files\Windows Live
[26/11/2007|12:18] C:\Program Files\Windows Mail
[26/11/2007|12:18] C:\Program Files\Windows Media Player
[26/11/2007|11:28] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[26/04/2008|21:14] C:\Program Files\Windows Sidebar
[05/06/2008|21:14] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/04/2008|23:35] C:\Program Files\Common Files\Adobe
[27/11/2007|10:33] C:\Program Files\Common Files\DESIGNER
[01/05/2008|12:09] C:\Program Files\Common Files\INCA Shared
[11/05/2008|16:02] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:03] C:\Program Files\Common Files\InterVideo
[27/11/2007|10:42] C:\Program Files\Common Files\Java
[04/06/2008|22:56] C:\Program Files\Common Files\microsoft shared
[11/12/2007|13:55] C:\Program Files\Common Files\PX Storage Engine
[11/12/2007|13:55] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[27/11/2007|10:42] C:\Program Files\Common Files\Skype
[11/12/2007|13:55] C:\Program Files\Common Files\Sonic Shared
[11/12/2007|13:56] C:\Program Files\Common Files\Sony Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[26/04/2008|21:31] C:\Program Files\Common Files\Symantec Shared
[27/11/2007|10:31] C:\Program Files\Common Files\System
[26/04/2008|23:01] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 64

iexplore.exe ~ [2680]
iexplore.exe ~ [3248]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\Delete license license.147regb
C:\ProgramData\Delete license license.1fdk9f
C:\ProgramData\Delete license license.2ses5y7
C:\ProgramData\Delete license license.3bmahbu
C:\ProgramData\Delete license license.3gicf
C:\ProgramData\Delete license license.3s6m0
C:\ProgramData\Delete license license.4shputh
C:\ProgramData\Delete license license.59e17u
C:\ProgramData\Delete license license.5pvd6
C:\ProgramData\Delete license license.5uv2m
C:\ProgramData\Delete license license.6lvmjyy
C:\ProgramData\Delete license license.8izkr
C:\ProgramData\Delete license license.9ime6ps
C:\ProgramData\Delete license license.9s75fg
C:\ProgramData\Delete license license.a49b4s
C:\ProgramData\Delete license license.abv199f
C:\ProgramData\Delete license license.abvxfkk
C:\ProgramData\Delete license license.aj8ik5
C:\ProgramData\Delete license license.b0lpd
C:\ProgramData\Delete license license.bae6fs
C:\ProgramData\Delete license license.bymtz4
C:\ProgramData\Delete license license.cb4hszz
C:\ProgramData\Delete license license.cdsn42
C:\ProgramData\Delete license license.cre4l7
C:\ProgramData\Delete license license.ctc5jv
C:\ProgramData\Delete license license.d7mpu
C:\ProgramData\Delete license license.dfajjg
C:\ProgramData\Delete license license.djeuj
C:\ProgramData\Delete license license.eejtes
C:\ProgramData\Delete license license.f7o42
C:\ProgramData\Delete license license.g0t5g1b
C:\ProgramData\Delete license license.g5d1q1
C:\ProgramData\Delete license license.gfin5z
C:\ProgramData\Delete license license.gj89rrh
C:\ProgramData\Delete license license.hg371j
C:\ProgramData\Delete license license.hg6fcun
C:\ProgramData\Delete license license.hk63n
C:\ProgramData\Delete license license.jcdxrl5
C:\ProgramData\Delete license license.jinpf
C:\ProgramData\Delete license license.jsqgs9o
C:\ProgramData\Delete license license.k6z9fkx
C:\ProgramData\Delete license license.katagwn
C:\ProgramData\Delete license license.le29r
C:\ProgramData\Delete license license.lq0nj
C:\ProgramData\Delete license license.m3pn9
C:\ProgramData\Delete license license.mvxjz
C:\ProgramData\Delete license license.mx5g7y
C:\ProgramData\Delete license license.nu2zcd
C:\ProgramData\Delete license license.o102b
C:\ProgramData\Delete license license.ocjcm7e
C:\ProgramData\Delete license license.pbcppv
C:\ProgramData\Delete license license.q9oyvsw
C:\ProgramData\Delete license license.qaul5
C:\ProgramData\Delete license license.qwcej
C:\ProgramData\Delete license license.rnnu5
C:\ProgramData\Delete license license.t3ga19g
C:\ProgramData\Delete license license.u40957
C:\ProgramData\Delete license license.unh25q5
C:\ProgramData\Delete license license.uwlcmr2
C:\ProgramData\Delete license license.v7hozvs
C:\ProgramData\Delete license license.vzo3t
C:\ProgramData\Delete license license.wbjkky7
C:\ProgramData\Delete license license.xinol
C:\ProgramData\Delete license license.xky8if
C:\ProgramData\Delete license license.xp6lq
C:\ProgramData\Delete license license.yll6iw
C:\ProgramData\Delete license license.z5vyq
C:\ProgramData\GREAT ONLINE PLAY.rw870z
C:\ProgramData\Delete license license.1fdk9f
C:\ProgramData\Delete license license.2ses5y7
C:\ProgramData\Delete license license.3bmahbu
C:\ProgramData\Delete license license.3s6m0
C:\ProgramData\Delete license license.4shputh
C:\ProgramData\Delete license license.5pvd6
C:\ProgramData\Delete license license.5uv2m
C:\ProgramData\Delete license license.6lvmjyy
C:\ProgramData\Delete license license.8izkr
C:\ProgramData\Delete license license.9ime6ps
C:\ProgramData\Delete license license.9s75fg
C:\ProgramData\Delete license license.a49b4s
C:\ProgramData\Delete license license.abv199f
C:\ProgramData\Delete license license.aj8ik5
C:\ProgramData\Delete license license.bae6fs
C:\ProgramData\Delete license license.bymtz4
C:\ProgramData\Delete license license.cdsn42
C:\ProgramData\Delete license license.cre4l7
C:\ProgramData\Delete license license.ctc5jv
C:\ProgramData\Delete license license.eejtes
C:\ProgramData\Delete license license.f7o42
C:\ProgramData\Delete license license.g0t5g1b
C:\ProgramData\Delete license license.g5d1q1
C:\ProgramData\Delete license license.gfin5z
C:\ProgramData\Delete license license.hk63n
C:\ProgramData\Delete license license.jcdxrl5
C:\ProgramData\Delete license license.jinpf
C:\ProgramData\Delete license license.jsqgs9o
C:\ProgramData\Delete license license.k6z9fkx
C:\ProgramData\Delete license license.katagwn
C:\ProgramData\Delete license license.le29r
C:\ProgramData\Delete license license.m3pn9
C:\ProgramData\Delete license license.mvxjz
C:\ProgramData\Delete license license.mx5g7y
C:\ProgramData\Delete license license.o102b
C:\ProgramData\Delete license license.q9oyvsw
C:\ProgramData\Delete license license.u40957
C:\ProgramData\Delete license license.unh25q5
C:\ProgramData\Delete license license.uwlcmr2
C:\ProgramData\Delete license license.xinol
C:\ProgramData\Delete license license.xky8if
C:\ProgramData\Delete license license.xp6lq
C:\ProgramData\Delete license license.z5vyq

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\Part Hide Grey Pop
C:\ProgramData\Part Hide Grey Pop\Bone Axis.exe
C:\Windows\Prefetch\BONE AXIS.EXE-E8CA2AC9.pf
C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@www.adserver5[1].txt

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-08 00:46:16
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Users\Kyo\Desktop\(kis) kaspersky internet security 7.0.0.125 fr + licence key\KIS-7Crack.exe

[F:18][D:1]-> C:\Users\Kyo\AppData\Local\Temp
[F:19][D:0]-> C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies
[F:64][D:8]-> C:\Users\Kyo\AppData\Local\MICROS~2\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 0:46:45,92 ]----------------------

18 réponses

Réponse 1 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Bonsoir tous les 2,

kyo, l'idée d'utiliser un logiciel de sécurité cracké est une des choses les plus stupides que je connaisse en matière de sécurité antivirale.

Les cracks sont des vecteurs d'infection bien connus. Les cracks des antivirus aussi. Ca s'appelle introduire le loup dans la bergerie.

Soit tu mets un Kaspersky légitime soit tu installes un antivirus gratuit.

tenshi, tu lui feras passer lop S&D option 3
1
Réponse 2 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Re,

AVG en urgence

Lop S&D option 3 en suivant

hijackthis ensuite.
1
Réponse 3 / 18
Utilisateur anonyme
 
Bonsoir Ky0,

lance navilog stp, lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
pour télécharger navilog1.exe.

Choisis Enregistrer

et enregistre-le sur ton bureau.

Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité du rapport dans ta réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)

poste le rapport stp

----------------------

télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html

Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
http://www.tutoriaux-excalibur.com/hijackthis.htm
https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html
0
Réponse 4 / 18
mibushiro Messages postés 7 Statut Membre
 
je suis ky0, je viens de me crée un compte :)

que doit je faire maintenant? j ai télécharger hijackthis et poser a c:\hijacthis
voila donne le rapport fixnavi :

Search Navipromo version 3.5.8 commencé le 08/06/2008 à 1:06:45,98

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Kyo"

Mise à jour le 06.06.2008 à 18h00 par IL-MAFIOSO

Microsoft Windows Vista 6.0.6000
Internet Explorer : 7.0.6000.16643
Système de fichiers : NTFS

Recherche executé en mode normal

*** Recherche Programmes installés ***

*** Recherche dossiers dans "C:\Windows" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "C:\ProgramData" ***

*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "c:\users\kyo\appdata\roaming\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "C:\Users\Kyo\AppData\Local\virtualstore\Program Files" ***

*** Recherche dossiers dans "C:\Users\Kyo\AppData\Roaming" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\Windows\system32" *

* Recherche dans "C:\Users\Kyo\AppData\Local\Microsoft" *

* Recherche dans "C:\Users\Kyo\AppData\Local" *

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\Windows\system32" :

* Dans "C:\Users\Kyo\AppData\Local\Microsoft" :

* Dans "C:\Users\Kyo\AppData\Local" :

3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :

*** Analyse terminée le 08/06/2008 à 1:12:10,44 ***
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 18
mibushiro Messages postés 7 Statut Membre
 
utiliser kaspersky était mon seul moyen d enlever CiD , enfin c est ce que je croyait :s
Je l ai désinstaller là et je vais aller télècharger avg
0
Réponse 6 / 18
Utilisateur anonyme
 
comme antivirus installe antivir très performant et gratuit

réglages pour antivir :

une fois antivir ouvert click surconfiguration et coche la case "expert mode" puis sur l´onglet scanner dans la fenetre du dessous tu va voir : rootkit search click sur le petit + pour deployer et coche la case a coté de ton disk dur
puis click sur configuration en haut a droite; dans la nouvelle fenetre a gauche >scanner > coche "scan all files" et en dessous >scanner priority = High
coche : allow stopping the scanner, comme cela tu peux faire une pause pendant le scan si tu le desir.
puis sur la droite coche les case suivantes :
scan boot sectors of selected drives
scan master boot sectors
scan memory
search foe rootkit before scan
decoche :
ignore off line files
toujours a gauche > scan > deploie > heuristique > macrovirus heuristic = coché et en dessous > win32 heuristic la case coché et high detection level

--------------------

relance LopS&D
cette fois choisi l'option 3 et post le log (merci lyonnais92)
0
Réponse 7 / 18
Utilisateur anonyme
 
xD lyonnais je te laisse continuer ;) je suis quand même au cas ou :)
0
Réponse 8 / 18
mibushiro Messages postés 7 Statut Membre
 
Voila j ai appliquer l 'option 3 du lop S&D
ça donne:

-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kyo ] [ "C:\Lop SD" ] [ Selection : 3 ]
[ 08/06/2008 | 1:23:56,23 ] [ PC : PC-DE-KYO ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\ProgramData\Part Hide Grey Pop\Bone Axis.exe
Supprimé! - C:\Windows\Prefetch\BONE AXIS.EXE-E8CA2AC9.pf
Supprimé! - C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@www.adserver5[1].txt
Supprimé! - C:\ProgramData\Delete license license.147regb
Supprimé! - C:\ProgramData\Delete license license.1fdk9f
Supprimé! - C:\ProgramData\Delete license license.2ses5y7
Supprimé! - C:\ProgramData\Delete license license.3bmahbu
Supprimé! - C:\ProgramData\Delete license license.3gicf
Supprimé! - C:\ProgramData\Delete license license.3s6m0
Supprimé! - C:\ProgramData\Delete license license.4shputh
Supprimé! - C:\ProgramData\Delete license license.59e17u
Supprimé! - C:\ProgramData\Delete license license.5pvd6
Supprimé! - C:\ProgramData\Delete license license.5uv2m
Supprimé! - C:\ProgramData\Delete license license.6lvmjyy
Supprimé! - C:\ProgramData\Delete license license.8izkr
Supprimé! - C:\ProgramData\Delete license license.9ime6ps
Supprimé! - C:\ProgramData\Delete license license.9s75fg
Supprimé! - C:\ProgramData\Delete license license.a49b4s
Supprimé! - C:\ProgramData\Delete license license.abv199f
Supprimé! - C:\ProgramData\Delete license license.abvxfkk
Supprimé! - C:\ProgramData\Delete license license.aj8ik5
Supprimé! - C:\ProgramData\Delete license license.b0lpd
Supprimé! - C:\ProgramData\Delete license license.bae6fs
Supprimé! - C:\ProgramData\Delete license license.bymtz4
Supprimé! - C:\ProgramData\Delete license license.cb4hszz
Supprimé! - C:\ProgramData\Delete license license.cdsn42
Supprimé! - C:\ProgramData\Delete license license.cre4l7
Supprimé! - C:\ProgramData\Delete license license.ctc5jv
Supprimé! - C:\ProgramData\Delete license license.d7mpu
Supprimé! - C:\ProgramData\Delete license license.dfajjg
Supprimé! - C:\ProgramData\Delete license license.djeuj
Supprimé! - C:\ProgramData\Delete license license.eejtes
Supprimé! - C:\ProgramData\Delete license license.f7o42
Supprimé! - C:\ProgramData\Delete license license.g0t5g1b
Supprimé! - C:\ProgramData\Delete license license.g5d1q1
Supprimé! - C:\ProgramData\Delete license license.gfin5z
Supprimé! - C:\ProgramData\Delete license license.gj89rrh
Supprimé! - C:\ProgramData\Delete license license.hg371j
Supprimé! - C:\ProgramData\Delete license license.hg6fcun
Supprimé! - C:\ProgramData\Delete license license.hk63n
Supprimé! - C:\ProgramData\Delete license license.jcdxrl5
Supprimé! - C:\ProgramData\Delete license license.jinpf
Supprimé! - C:\ProgramData\Delete license license.jsqgs9o
Supprimé! - C:\ProgramData\Delete license license.k6z9fkx
Supprimé! - C:\ProgramData\Delete license license.katagwn
Supprimé! - C:\ProgramData\Delete license license.le29r
Supprimé! - C:\ProgramData\Delete license license.lq0nj
Supprimé! - C:\ProgramData\Delete license license.m3pn9
Supprimé! - C:\ProgramData\Delete license license.mvxjz
Supprimé! - C:\ProgramData\Delete license license.mx5g7y
Supprimé! - C:\ProgramData\Delete license license.nu2zcd
Supprimé! - C:\ProgramData\Delete license license.o102b
Supprimé! - C:\ProgramData\Delete license license.ocjcm7e
Supprimé! - C:\ProgramData\Delete license license.pbcppv
Supprimé! - C:\ProgramData\Delete license license.q9oyvsw
Supprimé! - C:\ProgramData\Delete license license.qaul5
Supprimé! - C:\ProgramData\Delete license license.qwcej
Supprimé! - C:\ProgramData\Delete license license.rnnu5
Supprimé! - C:\ProgramData\Delete license license.t3ga19g
Supprimé! - C:\ProgramData\Delete license license.u40957
Supprimé! - C:\ProgramData\Delete license license.unh25q5
Supprimé! - C:\ProgramData\Delete license license.uwlcmr2
Supprimé! - C:\ProgramData\Delete license license.v7hozvs
Supprimé! - C:\ProgramData\Delete license license.vzo3t
Supprimé! - C:\ProgramData\Delete license license.wbjkky7
Supprimé! - C:\ProgramData\Delete license license.xinol
Supprimé! - C:\ProgramData\Delete license license.xky8if
Supprimé! - C:\ProgramData\Delete license license.xp6lq
Supprimé! - C:\ProgramData\Delete license license.yll6iw
Supprimé! - C:\ProgramData\Delete license license.z5vyq
Supprimé! - C:\ProgramData\GREAT ONLINE PLAY.rw870z
Supprimé! - C:\ProgramData\Part Hide Grey Pop

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[26/04/2008|23:24] C:\Users\Kyo\AppData\Roaming\Adobe\Linguistics
[26/04/2008|23:23] C:\Users\Kyo\AppData\Roaming\Adobe\Acrobat
[26/04/2008|23:17] C:\Users\Kyo\AppData\Roaming\Adobe\Flash Player

[26/04/2008|23:12] C:\Users\Kyo\AppData\Roaming\DivX\DivX Codec

[01/06/2008|23:38] C:\Users\Kyo\AppData\Roaming\FlashGet\DataBase

[05/06/2008|21:44] C:\Users\Kyo\AppData\Roaming\GlarySoft\Glary Utilities

[26/04/2008|21:37] C:\Users\Kyo\AppData\Roaming\Google\Local Search History

[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Identities\{F2C30901-49B8-4A42-A62B-0766F7FAC1F9}

[11/05/2008|16:02] C:\Users\Kyo\AppData\Roaming\InstallShield\UpdateService
[11/12/2007|13:44] C:\Users\Kyo\AppData\Roaming\InstallShield\ISEngine12.0

[08/06/2008|00:11] C:\Users\Kyo\AppData\Roaming\Macromedia\Flash Player

[07/06/2008|13:23] C:\Users\Kyo\AppData\Roaming\Microsoft\Outlook
[05/06/2008|21:38] C:\Users\Kyo\AppData\Roaming\Microsoft\HTML Help
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\Office
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\AddIns
[03/05/2008|01:06] C:\Users\Kyo\AppData\Roaming\Microsoft\eHome
[01/05/2008|16:33] C:\Users\Kyo\AppData\Roaming\Microsoft\Ime
[30/04/2008|21:53] C:\Users\Kyo\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|23:03] C:\Users\Kyo\AppData\Roaming\Microsoft\IdentityCRL
[26/04/2008|20:41] C:\Users\Kyo\AppData\Roaming\Microsoft\Internet Explorer
[26/04/2008|20:20] C:\Users\Kyo\AppData\Roaming\Microsoft\Protect
[27/11/2007|10:39] C:\Users\Kyo\AppData\Roaming\Microsoft\CLR Security Config
[26/11/2007|14:14] C:\Users\Kyo\AppData\Roaming\Microsoft\MMC
[26/11/2007|12:34] C:\Users\Kyo\AppData\Roaming\Microsoft\Crypto
[26/11/2007|12:03] C:\Users\Kyo\AppData\Roaming\Microsoft\SystemCertificates
[26/11/2007|11:32] C:\Users\Kyo\AppData\Roaming\Microsoft\Windows
[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Microsoft\Credentials

[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Extensions
[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Firefox

[26/04/2008|22:04] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO Update
[11/12/2007|14:00] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Network Utility
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO POWER MANAGEMENT
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Setting Utility Series

[04/06/2008|22:54] C:\Users\Kyo\AppData\Roaming\Spamihilator\recycle

[18/05/2008|11:19] C:\Users\Kyo\AppData\Roaming\Thunderbird\Profiles

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[08/06/2008 01:23][--ah-----] C:\Windows\tasks\SA.DAT
[08/06/2008 01:22][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[27/11/2007|10:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[26/04/2008|23:35] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[07/06/2008|13:23] C:\ProgramData\Avg8
[26/11/2007|11:28] C:\ProgramData\Bureau
[08/06/2008|00:57] C:\ProgramData\Delete license license.4ng3q
[08/06/2008|01:19] C:\ProgramData\Delete license license.i6rbg3u
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[26/11/2007|11:28] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[26/04/2008|21:37] C:\ProgramData\Google
[11/05/2008|16:02] C:\ProgramData\InstallShield
[08/06/2008|01:18] C:\ProgramData\Kaspersky Lab
[07/06/2008|13:22] C:\ProgramData\Kaspersky Lab Setup Files
[26/11/2007|11:28] C:\ProgramData\Menu D‚marrer
[05/06/2008|21:38] C:\ProgramData\Microsoft
[13/05/2008|23:09] C:\ProgramData\Microsoft Help
[26/11/2007|11:28] C:\ProgramData\ModŠles
[26/11/2007|12:45] C:\ProgramData\NVIDIA
[01/05/2008|11:21] C:\ProgramData\Real
[27/11/2007|10:42] C:\ProgramData\Skype
[11/12/2007|13:55] C:\ProgramData\Sonic
[27/11/2007|10:41] C:\ProgramData\Sony
[26/04/2008|23:12] C:\ProgramData\Sony Corporation
[02/11/2006|15:02] C:\ProgramData\Start Menu
[26/04/2008|21:31] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[11/12/2007|13:46] C:\ProgramData\VAIO Media Platform
[03/06/2008|21:52] C:\ProgramData\Wave Heck First
[26/04/2008|22:53] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[27/11/2007|10:35] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/04/2008|23:35] C:\Program Files\Adobe
[26/11/2007|14:20] C:\Program Files\Apoint
[04/06/2008|22:56] C:\Program Files\AVG
[27/11/2007|10:36] C:\Program Files\BFG
[08/06/2008|00:07] C:\Program Files\CCleaner
[18/05/2008|13:53] C:\Program Files\Codemasters
[01/05/2008|12:09] C:\Program Files\Common Files
[26/11/2007|14:19] C:\Program Files\CONEXANT
[26/11/2007|12:20] C:\Program Files\desktop.ini
[01/05/2008|11:21] C:\Program Files\DivX
[26/11/2007|11:28] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[01/06/2008|20:21] C:\Program Files\FlashGet
[07/06/2008|23:06] C:\Program Files\Garena
[27/04/2008|21:11] C:\Program Files\Google
[27/11/2007|10:40] C:\Program Files\Google BAE
[05/06/2008|00:03] C:\Program Files\InstallShield Installation Information
[26/11/2007|12:42] C:\Program Files\Intel
[26/04/2008|21:14] C:\Program Files\Internet Explorer
[11/12/2007|14:03] C:\Program Files\InterVideo
[10/05/2008|20:23] C:\Program Files\Java
[20/05/2008|20:42] C:\Program Files\KalOnlineEng
[01/05/2008|11:21] C:\Program Files\K-Lite Codec Pack
[11/12/2007|13:41] C:\Program Files\Lecteur CANALPLAY
[08/06/2008|00:21] C:\Program Files\Lopxp
[08/06/2008|00:15] C:\Program Files\Messenger Plus! Live
[26/04/2008|23:44] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[27/11/2007|10:38] C:\Program Files\Microsoft Office
[27/11/2007|10:39] C:\Program Files\Microsoft Small Business
[26/04/2008|23:45] C:\Program Files\Microsoft SQL Server
[26/04/2008|23:05] C:\Program Files\Microsoft SQL Server Compact Edition
[27/11/2007|10:33] C:\Program Files\Microsoft Visual Studio
[27/11/2007|10:33] C:\Program Files\Microsoft Works
[27/11/2007|10:37] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[08/06/2008|00:47] C:\Program Files\Mozilla Firefox
[06/06/2008|22:08] C:\Program Files\Mozilla Firefox 3 Beta 3
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[26/11/2007|12:03] C:\Program Files\MSXML 4.0
[08/06/2008|01:12] C:\Program Files\Navilog1
[26/04/2008|23:32] C:\Program Files\OGPlanet
[20/05/2008|22:54] C:\Program Files\Outspark
[26/04/2008|21:33] C:\Program Files\Picasa2
[26/11/2007|12:47] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[11/12/2007|13:54] C:\Program Files\Roxio
[27/11/2007|10:42] C:\Program Files\Skype
[01/05/2008|20:50] C:\Program Files\Softnyx
[11/12/2007|14:04] C:\Program Files\Sony
[11/12/2007|13:57] C:\Program Files\Sony Corporation
[04/06/2008|22:54] C:\Program Files\Spamihilator
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[01/05/2008|11:24] C:\Program Files\uTorrent
[07/06/2008|23:08] C:\Program Files\Warcraft III
[03/06/2008|21:51] C:\Program Files\Wave Heck First
[26/11/2007|12:18] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[26/11/2007|12:18] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[27/04/2008|22:15] C:\Program Files\Windows Live
[26/11/2007|12:18] C:\Program Files\Windows Mail
[26/11/2007|12:18] C:\Program Files\Windows Media Player
[26/11/2007|11:28] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[26/04/2008|21:14] C:\Program Files\Windows Sidebar
[05/06/2008|21:14] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/04/2008|23:35] C:\Program Files\Common Files\Adobe
[27/11/2007|10:33] C:\Program Files\Common Files\DESIGNER
[01/05/2008|12:09] C:\Program Files\Common Files\INCA Shared
[11/05/2008|16:02] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:03] C:\Program Files\Common Files\InterVideo
[27/11/2007|10:42] C:\Program Files\Common Files\Java
[04/06/2008|22:56] C:\Program Files\Common Files\microsoft shared
[11/12/2007|13:55] C:\Program Files\Common Files\PX Storage Engine
[11/12/2007|13:55] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[27/11/2007|10:42] C:\Program Files\Common Files\Skype
[11/12/2007|13:55] C:\Program Files\Common Files\Sonic Shared
[11/12/2007|13:56] C:\Program Files\Common Files\Sony Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[26/04/2008|21:31] C:\Program Files\Common Files\Symantec Shared
[27/11/2007|10:31] C:\Program Files\Common Files\System
[26/04/2008|23:01] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 63

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\Delete license license.4ng3q
C:\ProgramData\Delete license license.i6rbg3u
C:\ProgramData\Delete license license.4ng3q
C:\ProgramData\Delete license license.i6rbg3u

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@www.adserver5[2].txt
C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@adin.bigpoint[2].txt
C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@bigpoint[1].txt
C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@fr1.seafight.bigpoint[1].txt
C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies\kyo@fr1.seafight.bigpoint[1].txt

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-08 01:25:00
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Users\Kyo\Desktop\(kis) kaspersky internet security 7.0.0.125 fr + licence key\KIS-7Crack.exe

[F:20][D:1]-> C:\Users\Kyo\AppData\Local\Temp
[F:29][D:0]-> C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies
[F:107][D:8]-> C:\Users\Kyo\AppData\Local\MICROS~2\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 1:26:23,66 ]----------------------
0
Réponse 9 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Re,

l'antivirus légitime et le rapport Hijackthis.
0
Réponse 10 / 18
mibushiro
 
re

voici le rapport du hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:44:39, on 08/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Sony\Network Utility\LANUtil.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Windows\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\PROGRA~1\GOOGLE~1\BAE.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ThunkHope] "C:\ProgramData\Delete license license.i6rbg3u"
O4 - HKLM\..\Run: [Grey pop cake audio] "C:\ProgramData\GREAT ONLINE PLAY.rw870z"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O13 - Gopher Prefix:
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - https://www.fileplanet.com/
O16 - DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} (MGLaunch_USAv1001 Class) - http://ares.netgame.com/download/mglaunch_USAv1002.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\Sony\Network Utility\NSUService.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0
Réponse 11 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Bonjour,

pas d'antivirus !!

l'installation de AVg semble avoir échoué

Règle ça en urgence absolue
0
Réponse 12 / 18
mibushiro Messages postés 7 Statut Membre
 
bonjour

voila j ai installer avg 8.0 , que doit je faire maintenant?
0
Réponse 13 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Re

Relance lop S&D option 1, il y a encore des fichiers lop sur le rapport Hijackthis.
0
Réponse 14 / 18
mibushiro Messages postés 7 Statut Membre
 
voila :

-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kyo ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/06/2008 | 11:22:23,77 ] [ PC : PC-DE-KYO ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[26/04/2008|23:24] C:\Users\Kyo\AppData\Roaming\Adobe\Linguistics
[26/04/2008|23:23] C:\Users\Kyo\AppData\Roaming\Adobe\Acrobat
[26/04/2008|23:17] C:\Users\Kyo\AppData\Roaming\Adobe\Flash Player

[26/04/2008|23:12] C:\Users\Kyo\AppData\Roaming\DivX\DivX Codec

[01/06/2008|23:38] C:\Users\Kyo\AppData\Roaming\FlashGet\DataBase

[05/06/2008|21:44] C:\Users\Kyo\AppData\Roaming\GlarySoft\Glary Utilities

[26/04/2008|21:37] C:\Users\Kyo\AppData\Roaming\Google\Local Search History

[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Identities\{F2C30901-49B8-4A42-A62B-0766F7FAC1F9}

[11/05/2008|16:02] C:\Users\Kyo\AppData\Roaming\InstallShield\UpdateService
[11/12/2007|13:44] C:\Users\Kyo\AppData\Roaming\InstallShield\ISEngine12.0

[08/06/2008|02:04] C:\Users\Kyo\AppData\Roaming\Macromedia\Flash Player

[08/06/2008|11:13] C:\Users\Kyo\AppData\Roaming\Microsoft\Outlook
[05/06/2008|21:38] C:\Users\Kyo\AppData\Roaming\Microsoft\HTML Help
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\Office
[18/05/2008|17:46] C:\Users\Kyo\AppData\Roaming\Microsoft\AddIns
[03/05/2008|01:06] C:\Users\Kyo\AppData\Roaming\Microsoft\eHome
[01/05/2008|16:33] C:\Users\Kyo\AppData\Roaming\Microsoft\Ime
[30/04/2008|21:53] C:\Users\Kyo\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|23:03] C:\Users\Kyo\AppData\Roaming\Microsoft\IdentityCRL
[26/04/2008|20:41] C:\Users\Kyo\AppData\Roaming\Microsoft\Internet Explorer
[26/04/2008|20:20] C:\Users\Kyo\AppData\Roaming\Microsoft\Protect
[27/11/2007|10:39] C:\Users\Kyo\AppData\Roaming\Microsoft\CLR Security Config
[26/11/2007|14:14] C:\Users\Kyo\AppData\Roaming\Microsoft\MMC
[26/11/2007|12:34] C:\Users\Kyo\AppData\Roaming\Microsoft\Crypto
[26/11/2007|12:03] C:\Users\Kyo\AppData\Roaming\Microsoft\SystemCertificates
[26/11/2007|11:32] C:\Users\Kyo\AppData\Roaming\Microsoft\Windows
[26/11/2007|11:30] C:\Users\Kyo\AppData\Roaming\Microsoft\Credentials

[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Extensions
[03/06/2008|23:39] C:\Users\Kyo\AppData\Roaming\Mozilla\Firefox

[26/04/2008|22:04] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO Update
[11/12/2007|14:00] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Network Utility
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\VAIO POWER MANAGEMENT
[27/11/2007|10:43] C:\Users\Kyo\AppData\Roaming\Sony Corporation\Setting Utility Series

[04/06/2008|22:54] C:\Users\Kyo\AppData\Roaming\Spamihilator\recycle

[18/05/2008|11:19] C:\Users\Kyo\AppData\Roaming\Thunderbird\Profiles

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[08/06/2008 11:09][--ah-----] C:\Windows\tasks\SA.DAT
[08/06/2008 02:11][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[27/11/2007|10:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[26/04/2008|23:35] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/06/2008|11:14] C:\ProgramData\Avg8
[26/11/2007|11:28] C:\ProgramData\Bureau
[08/06/2008|00:57] C:\ProgramData\Delete license license.4ng3q
[08/06/2008|01:19] C:\ProgramData\Delete license license.i6rbg3u
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[26/11/2007|11:28] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[26/04/2008|21:37] C:\ProgramData\Google
[11/05/2008|16:02] C:\ProgramData\InstallShield
[08/06/2008|01:18] C:\ProgramData\Kaspersky Lab
[07/06/2008|13:22] C:\ProgramData\Kaspersky Lab Setup Files
[26/11/2007|11:28] C:\ProgramData\Menu D‚marrer
[05/06/2008|21:38] C:\ProgramData\Microsoft
[13/05/2008|23:09] C:\ProgramData\Microsoft Help
[26/11/2007|11:28] C:\ProgramData\ModŠles
[26/11/2007|12:45] C:\ProgramData\NVIDIA
[01/05/2008|11:21] C:\ProgramData\Real
[27/11/2007|10:42] C:\ProgramData\Skype
[11/12/2007|13:55] C:\ProgramData\Sonic
[27/11/2007|10:41] C:\ProgramData\Sony
[26/04/2008|23:12] C:\ProgramData\Sony Corporation
[02/11/2006|15:02] C:\ProgramData\Start Menu
[26/04/2008|21:31] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[11/12/2007|13:46] C:\ProgramData\VAIO Media Platform
[03/06/2008|21:52] C:\ProgramData\Wave Heck First
[26/04/2008|22:53] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[27/11/2007|10:35] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/04/2008|23:35] C:\Program Files\Adobe
[26/11/2007|14:20] C:\Program Files\Apoint
[04/06/2008|22:56] C:\Program Files\AVG
[27/11/2007|10:36] C:\Program Files\BFG
[08/06/2008|00:07] C:\Program Files\CCleaner
[18/05/2008|13:53] C:\Program Files\Codemasters
[01/05/2008|12:09] C:\Program Files\Common Files
[26/11/2007|14:19] C:\Program Files\CONEXANT
[26/11/2007|12:20] C:\Program Files\desktop.ini
[01/05/2008|11:21] C:\Program Files\DivX
[26/11/2007|11:28] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[01/06/2008|20:21] C:\Program Files\FlashGet
[07/06/2008|23:06] C:\Program Files\Garena
[27/04/2008|21:11] C:\Program Files\Google
[27/11/2007|10:40] C:\Program Files\Google BAE
[08/06/2008|11:19] C:\Program Files\InstallShield Installation Information
[26/11/2007|12:42] C:\Program Files\Intel
[26/04/2008|21:14] C:\Program Files\Internet Explorer
[11/12/2007|14:03] C:\Program Files\InterVideo
[10/05/2008|20:23] C:\Program Files\Java
[20/05/2008|20:42] C:\Program Files\KalOnlineEng
[01/05/2008|11:21] C:\Program Files\K-Lite Codec Pack
[11/12/2007|13:41] C:\Program Files\Lecteur CANALPLAY
[08/06/2008|00:21] C:\Program Files\Lopxp
[08/06/2008|00:15] C:\Program Files\Messenger Plus! Live
[26/04/2008|23:44] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[27/11/2007|10:38] C:\Program Files\Microsoft Office
[27/11/2007|10:39] C:\Program Files\Microsoft Small Business
[26/04/2008|23:45] C:\Program Files\Microsoft SQL Server
[26/04/2008|23:05] C:\Program Files\Microsoft SQL Server Compact Edition
[27/11/2007|10:33] C:\Program Files\Microsoft Visual Studio
[27/11/2007|10:33] C:\Program Files\Microsoft Works
[27/11/2007|10:37] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[08/06/2008|11:20] C:\Program Files\Mozilla Firefox
[06/06/2008|22:08] C:\Program Files\Mozilla Firefox 3 Beta 3
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[26/11/2007|12:03] C:\Program Files\MSXML 4.0
[08/06/2008|01:12] C:\Program Files\Navilog1
[26/04/2008|23:32] C:\Program Files\OGPlanet
[20/05/2008|22:54] C:\Program Files\Outspark
[26/04/2008|21:33] C:\Program Files\Picasa2
[26/11/2007|12:47] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[11/12/2007|13:54] C:\Program Files\Roxio
[27/11/2007|10:42] C:\Program Files\Skype
[01/05/2008|20:50] C:\Program Files\Softnyx
[11/12/2007|14:04] C:\Program Files\Sony
[11/12/2007|13:57] C:\Program Files\Sony Corporation
[04/06/2008|22:54] C:\Program Files\Spamihilator
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[01/05/2008|11:24] C:\Program Files\uTorrent
[07/06/2008|23:08] C:\Program Files\Warcraft III
[03/06/2008|21:51] C:\Program Files\Wave Heck First
[26/11/2007|12:18] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[26/11/2007|12:18] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[27/04/2008|22:15] C:\Program Files\Windows Live
[26/11/2007|12:18] C:\Program Files\Windows Mail
[26/11/2007|12:18] C:\Program Files\Windows Media Player
[26/11/2007|11:28] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[26/04/2008|21:14] C:\Program Files\Windows Sidebar
[05/06/2008|21:14] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[26/04/2008|23:35] C:\Program Files\Common Files\Adobe
[27/11/2007|10:33] C:\Program Files\Common Files\DESIGNER
[01/05/2008|12:09] C:\Program Files\Common Files\INCA Shared
[11/05/2008|16:02] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:03] C:\Program Files\Common Files\InterVideo
[27/11/2007|10:42] C:\Program Files\Common Files\Java
[04/06/2008|22:56] C:\Program Files\Common Files\microsoft shared
[11/12/2007|13:55] C:\Program Files\Common Files\PX Storage Engine
[11/12/2007|13:55] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[27/11/2007|10:42] C:\Program Files\Common Files\Skype
[11/12/2007|13:55] C:\Program Files\Common Files\Sonic Shared
[11/12/2007|13:56] C:\Program Files\Common Files\Sony Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[26/04/2008|21:31] C:\Program Files\Common Files\Symantec Shared
[27/11/2007|10:31] C:\Program Files\Common Files\System
[26/04/2008|23:01] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 71

iexplore.exe ~ [3300]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\Delete license license.4ng3q
C:\ProgramData\Delete license license.i6rbg3u
C:\ProgramData\Delete license license.4ng3q
C:\ProgramData\Delete license license.i6rbg3u

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-08 11:22:47
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

[F:23][D:5]-> C:\Users\Kyo\AppData\Local\Temp
[F:7][D:0]-> C:\Users\Kyo\AppData\Roaming\MICROS~1\Windows\Cookies
[F:29][D:4]-> C:\Users\Kyo\AppData\Local\MICROS~2\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 11:23:13,85 ]----------------------
0
Réponse 15 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Re,

relance avec l'option 2,

fais redémarrer l'ordi.

remets un rapport Hijackthis.
0
Réponse 16 / 18
mibushiro Messages postés 7 Statut Membre
 
excuse moi Lyonnais92 lors de l application du lo s&d option 2 doit je désactiver l antivirus avg?
0
Réponse 17 / 18
mibushiro Messages postés 7 Statut Membre
 
car j arrive pas à lancer l option 2
0
Réponse 18 / 18
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Re,

alors déconnecte toi d'Internet, ferme toutes tes applications, y compris la garde de ton antivirus.

exécute lop S&D

réactive tes sécurités.

Poste le rapport.
0

Discussions similaires

Encore les CiD
doudoudim -
doudoudim -

18 réponses
appel intrusif sur Skype
FAMATHELY -
Utilisateur anonyme -

3 réponses
Erreur Windows Update maj impossible 0x800f0805
Alan... -
Alan -

21 réponses
Aider moi svp
Bigax26 -
MPMP10 -

10 réponses
Skyrim : Hearthfire, le Jarl Siddgeir en grève
Help4159 -
probleme -

9 réponses