Sujet Précédent Sujet Suivant

POP UP CID

C.KLo Messages postés 30 Statut Membre -  
 Utilisateur anonyme -
Bonjour, tout le monde

Depuis quelqus semaines, j'ai systématiquement des fenêtres pop up CID qui apparaissent lorsque j'utilise Internet Explorer.

J'ai supprimer le sponsor de msn plus mais les pop up sont toujours là alors j'ai carrément supprimer msn plus de mon ordinateur.

Après avoir redémarrer l'ordi, les pop up sont encore et toujours présents.

J'ai regardé dans "ajout/supression de programmes" s'il y avait des logiciels CID-help ou CID-quelquechose mais rien de cela.

Quelqu'un pourrait-il me venir en aide pour supprimer définitivement ces pop up CID?

Je vous remercie.

C.KLo
A voir également:

17 réponses

Réponse 1 / 17
Utilisateur anonyme
 
Bonjour,

#Télécharge lopS&D.exe sur ton bureau (Clique-droit sur le lien > Enregister la cible du lien sous)
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
#Désactive ton antivirus au cas où (tu pourras le réactiver après la fin du scan)
#Double-clique sur lopSD pour lancer l'installation
#Une fois installé, double-clique Lop S&D
#Sélectionne la langue en appuyant sur la touche F, puis choisis l'option 1 (Recherche)
#Si lopSD te demande de redémarrer accepte et attends la fin du scan.
#Copie/colle le contenu du rapport qui se situe à la racine du DD C:\lopR.txt
0
C.KLo
 
Bonjour
Je vous remercie de m'avoir répondu aussi vite
J'ai suivi vos instructions et vous envoie le rapport
Que dois-je faire par la suite?
Cordialement
C.KLo


-----------------------[ Lop S&D 4.2.1-4 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Daniel ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 13/06/2008 | 14:27:28,32 ] [ PC : PERSO ]
[ MAJ : 13-06-2008 | 02:10 ]

-------------[ Listing des dossiers dans Application Data ]------------

[05/12/2005|17:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[05/12/2005|17:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[08/09/2005|16:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[08/09/2005|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/03/2006|11:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[04/08/2007|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[21/09/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[11/05/2008|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[04/03/2007|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind
[08/09/2005|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[17/08/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[23/12/2007|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[13/06/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[21/09/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[31/12/2006|17:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/08/2007|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/03/2007|18:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[15/12/2006|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[28/12/2006|15:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[05/12/2005|16:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/12/2006|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[12/06/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[24/12/2007|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[26/12/2006|18:43] C:\DOCUME~1\Daniel\APPLIC~1\Adobe
[21/09/2007|14:41] C:\DOCUME~1\Daniel\APPLIC~1\AOL
[17/08/2007|20:58] C:\DOCUME~1\Daniel\APPLIC~1\Datalayer
[08/09/2005|16:04] C:\DOCUME~1\Daniel\APPLIC~1\desktop.ini
[07/06/2008|19:08] C:\DOCUME~1\Daniel\APPLIC~1\GDIPFONTCACHEV1.DAT
[23/12/2007|12:28] C:\DOCUME~1\Daniel\APPLIC~1\Google
[15/12/2006|11:51] C:\DOCUME~1\Daniel\APPLIC~1\Identities
[06/07/2007|18:59] C:\DOCUME~1\Daniel\APPLIC~1\knob flap
[03/08/2007|18:09] C:\DOCUME~1\Daniel\APPLIC~1\Kptic
[25/12/2007|20:09] C:\DOCUME~1\Daniel\APPLIC~1\LimeWire
[26/12/2006|18:17] C:\DOCUME~1\Daniel\APPLIC~1\Macromedia
[08/12/2007|19:05] C:\DOCUME~1\Daniel\APPLIC~1\Microsoft
[23/03/2008|18:48] C:\DOCUME~1\Daniel\APPLIC~1\NMM-MetaData.db
[18/08/2007|12:29] C:\DOCUME~1\Daniel\APPLIC~1\Nokia
[16/04/2008|19:01] C:\DOCUME~1\Daniel\APPLIC~1\Nokia Multimedia Player
[17/08/2007|17:18] C:\DOCUME~1\Daniel\APPLIC~1\PC Suite
[19/01/2007|15:15] C:\DOCUME~1\Daniel\APPLIC~1\PDFCreator
[20/02/2007|19:04] C:\DOCUME~1\Daniel\APPLIC~1\Sun
[21/06/2007|12:23] C:\DOCUME~1\Daniel\APPLIC~1\U3
[10/07/2007|09:45] C:\DOCUME~1\Daniel\APPLIC~1\vlc
[28/12/2006|15:00] C:\DOCUME~1\Daniel\APPLIC~1\You've Got Pictures Screensaver

[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[08/09/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[08/09/2005|16:04] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\desktop.ini
[06/12/2005|09:47] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\Microsoft

[08/09/2005|14:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[08/09/2005|14:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[12/06/2008 22:00][--ah-----] C:\WINDOWS\tasks\A93DDD92919254A6.job
[12/06/2008 21:50][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[13/06/2008 14:08][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

A93DDD92919254A6.job <--> c:\docume~1\daniel\applic~1\knobfl~1\deafjugsgrey.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/08/2007|15:23] C:\Program Files\Adobe
[21/09/2007|14:40] C:\Program Files\AOL
[09/11/2007|19:30] C:\Program Files\AOL 8.0
[16/08/2007|12:40] C:\Program Files\AOL 9.0
[21/09/2007|22:21] C:\Program Files\AOL 9.0 VR
[24/09/2007|17:27] C:\Program Files\AOL 9.0a
[05/04/2007|20:09] C:\Program Files\Audacity
[05/04/2007|20:09] C:\Program Files\audacity-win-1.2.6.exe
[04/06/2007|13:38] C:\Program Files\BeWAN ADSL V1.9.0.3
[08/09/2005|14:12] C:\Program Files\ComPlus Applications
[23/02/2007|13:50] C:\Program Files\Creative
[17/08/2007|17:20] C:\Program Files\DIFX
[04/08/2007|16:42] C:\Program Files\DivX
[01/08/2007|18:41] C:\Program Files\DivX521XP2K_1.exe
[12/06/2008|15:42] C:\Program Files\Emule
[25/12/2007|20:32] C:\Program Files\Ev0 3.0.2.plsk
[09/03/2008|16:35] C:\Program Files\Fichiers communs
[23/12/2007|12:25] C:\Program Files\Google
[05/12/2005|16:35] C:\Program Files\HighMAT CD Writing Wizard
[20/08/2007|21:54] C:\Program Files\IE7Setup.exe
[22/02/2007|11:11] C:\Program Files\IncrediMail
[09/03/2008|16:35] C:\Program Files\InstallShield Installation Information
[11/06/2008|21:22] C:\Program Files\Internet Explorer
[20/02/2007|18:49] C:\Program Files\Java
[07/08/2007|17:06] C:\Program Files\klcodec330f.exe
[04/03/2007|18:24] C:\Program Files\knob flap
[03/08/2007|18:08] C:\Program Files\Kptic_Win.zip
[05/04/2007|20:17] C:\Program Files\lame3.97.zip
[28/12/2006|15:00] C:\Program Files\Learn2.com
[25/12/2007|19:40] C:\Program Files\LimeWireWin.exe
[01/11/2007|14:50] C:\Program Files\Magicbit
[16/08/2007|15:49] C:\Program Files\Messenger
[16/08/2007|15:49] C:\Program Files\messenger.msi
[11/05/2007|08:41] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[19/03/2007|20:49] C:\Program Files\microsoft frontpage
[05/12/2005|17:24] C:\Program Files\Microsoft Office
[05/12/2005|17:24] C:\Program Files\Microsoft Visual Studio
[08/09/2005|14:13] C:\Program Files\Movie Maker
[31/07/2007|19:11] C:\Program Files\MP3 Player Utilities 3.10
[08/09/2005|14:11] C:\Program Files\MSN
[08/09/2005|14:12] C:\Program Files\MSN Gaming Zone
[24/12/2007|11:46] C:\Program Files\MSN Messenger
[01/08/2007|16:37] C:\Program Files\MTVVideoConverter_V1.11.4.zip
[08/09/2005|14:13] C:\Program Files\NetMeeting
[17/08/2007|17:18] C:\Program Files\Nokia
[26/12/2006|16:15] C:\Program Files\Nullsoft
[13/06/2007|19:14] C:\Program Files\Outlook Express
[05/12/2005|17:51] C:\Program Files\PDFCreator
[02/04/2007|17:20] C:\Program Files\Philips
[20/08/2007|10:56] C:\Program Files\Preparation_Messenger.exe
[02/04/2007|13:01] C:\Program Files\QuickTime
[26/12/2006|16:14] C:\Program Files\Real
[31/07/2007|18:45] C:\Program Files\Real Alternative
[08/09/2005|14:14] C:\Program Files\Services en ligne
[15/12/2006|12:03] C:\Program Files\Symantec
[13/06/2008|14:25] C:\Program Files\Symantec AntiVirus
[28/12/2006|14:56] C:\Program Files\TechCity Solutions
[08/09/2005|14:22] C:\Program Files\Uninstall Information
[17/07/2007|16:30] C:\Program Files\USB Disk Win98 Driver
[08/07/2007|17:18] C:\Program Files\VideoLAN
[26/12/2006|16:15] C:\Program Files\Viewpoint
[08/07/2007|17:18] C:\Program Files\vlc-0.8.6c-win32.exe
[31/07/2007|19:17] C:\Program Files\WinAVI MP4 Converter
[31/07/2007|18:42] C:\Program Files\WinAVI_MP4_Video_Converter_Fr.exe
[24/12/2007|11:29] C:\Program Files\Windows Live
[29/11/2007|22:02] C:\Program Files\Windows Live Toolbar
[05/12/2005|16:38] C:\Program Files\Windows Media Connect 2
[30/03/2006|10:54] C:\Program Files\Windows Media Player
[08/09/2005|14:12] C:\Program Files\Windows NT
[08/09/2005|14:14] C:\Program Files\WindowsUpdate
[03/02/2007|17:12] C:\Program Files\WinRAR
[12/06/2008|18:19] C:\Program Files\WinZip
[12/06/2008|18:18] C:\Program Files\winzip111fr.msi
[24/12/2007|11:16] C:\Program Files\WLinstaller.exe
[10/08/2007|18:09] C:\Program Files\WUNX_PCDrv_A2_1_01_03_0112.exe
[08/09/2005|14:16] C:\Program Files\xerox
[01/08/2007|18:42] C:\Program Files\XviD-1.1.0.exe

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/08/2007|15:24] C:\Program Files\Fichiers communs\Adobe
[21/09/2007|14:41] C:\Program Files\Fichiers communs\AOL
[28/12/2006|15:01] C:\Program Files\Fichiers communs\aolback
[21/09/2007|14:40] C:\Program Files\Fichiers communs\aolshare
[05/12/2005|17:24] C:\Program Files\Fichiers communs\Designer
[09/03/2008|16:34] C:\Program Files\Fichiers communs\InstallShield
[20/02/2007|18:36] C:\Program Files\Fichiers communs\Java
[16/08/2007|15:49] C:\Program Files\Fichiers communs\Microsoft Shared
[08/09/2005|14:13] C:\Program Files\Fichiers communs\MSSoap
[17/08/2007|17:19] C:\Program Files\Fichiers communs\Nokia
[28/12/2006|14:59] C:\Program Files\Fichiers communs\Nullsoft
[08/09/2005|16:04] C:\Program Files\Fichiers communs\ODBC
[17/08/2007|17:19] C:\Program Files\Fichiers communs\PCSuite
[16/08/2007|13:11] C:\Program Files\Fichiers communs\Real
[08/09/2005|14:13] C:\Program Files\Fichiers communs\Services
[09/03/2008|16:35] C:\Program Files\Fichiers communs\snpstd3
[08/09/2005|16:04] C:\Program Files\Fichiers communs\SpeechEngines
[15/12/2006|12:04] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|19:14] C:\Program Files\Fichiers communs\System
[24/12/2007|11:25] C:\Program Files\Fichiers communs\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 56

iexplore.exe ~ [1832]
iexplore.exe ~ [2088]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1
C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\gpl great once ooze.exe
C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\kmhazrxp.exe
C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\ldwefqco.exe
C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\pqvifdvw.exe
C:\Program Files\knobfl~1
C:\DOCUME~1\Daniel\Cookies\daniel@www.adserver5[1].txt
C:\DOCUME~1\Daniel\Cookies\daniel@adin.bigpoint[2].txt
C:\DOCUME~1\Daniel\Cookies\daniel@bigpoint[1].txt
C:\DOCUME~1\Daniel\Cookies\daniel@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Daniel\Cookies\daniel@adopt.euroclick[2].txt
C:\DOCUME~1\Daniel\Cookies\daniel@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Daniel\Cookies\daniel@32vegas[1].txt
C:\DOCUME~1\Daniel\Cookies\daniel@banner.32vegas[2].txt
C:\WINDOWS\Tasks\A93DDD92919254A6.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"doesbind"="C:\\DOCUME~1\\Daniel\\APPLIC~1\\KNOBFL~1\\Heart Sign.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-13 14:29:47
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Daniel\Local Settings\Temp\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis
=> C:\Documents and Settings\Daniel\Recent\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis.lnk


[F:1175][D:50]-> C:\DOCUME~1\Daniel\LOCALS~1\Temp
[F:162][D:0]-> C:\DOCUME~1\Daniel\Cookies
[F:337][D:6]-> C:\DOCUME~1\Daniel\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 14:33:10,93 ]----------------------
0
Réponse 2 / 17
Utilisateur anonyme
 
*Télécharge ATF-Cleaner
*Double clique sur le programme
*Coche "Select All" et clique sur le bouton "Empty Selected"
*Une fois terminé, ferme le programme.

---------------------------------------------------------------------------------------------------------------------------------------------

#Relance LopS&D
#Choisis l'option 2
#Copie/colle le rapport

---------------------------------------------------------------------------------------------------------------------------------------------

*Télécharge HijackThis
*Installe le à la racine de ton disque dur
*Lance HijackThis en double-cliquant sur l'icône HijackThis
*Clique sur Do a system Scan only and Save a Logfile
*Un rapport sera généré dans le bloc-note (le rapport est également situé ici : C:\hijackthis.log)
*Copie/colle le rapport dans ton prochain message.
0
Réponse 3 / 17
C.KLo Messages postés 30 Statut Membre
 
Bonjour, voilà le premier rapport j'envoi le second desuite
merci

-----------------------[ Lop S&D 4.2.1-4 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Daniel ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 16/06/2008 | 9:58:59,93 ] [ PC : PERSO ]
[ MAJ : 13-06-2008 | 02:10 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\gpl great once ooze.exe
Supprimé! - C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\kmhazrxp.exe
Supprimé! - C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\ldwefqco.exe
Supprimé! - C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1\pqvifdvw.exe
Supprimé! - C:\WINDOWS\Tasks\A93DDD92919254A6.job
Supprimé! - C:\DOCUME~1\Daniel\APPLIC~1\knobfl~1
Supprimé! - C:\Program Files\knobfl~1
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprimé! - C:\Program Files\Viewpoint
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[05/12/2005|17:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[05/12/2005|17:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[08/09/2005|16:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[08/09/2005|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/03/2006|11:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[04/08/2007|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[21/09/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[11/05/2008|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[04/03/2007|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind
[08/09/2005|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[17/08/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[23/12/2007|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/06/2008|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[21/09/2007|14:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[31/12/2006|17:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/08/2007|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/03/2007|18:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[15/12/2006|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/12/2005|16:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/12/2006|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[12/06/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[24/12/2007|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[26/12/2006|18:43] C:\DOCUME~1\Daniel\APPLIC~1\Adobe
[21/09/2007|14:41] C:\DOCUME~1\Daniel\APPLIC~1\AOL
[17/08/2007|20:58] C:\DOCUME~1\Daniel\APPLIC~1\Datalayer
[08/09/2005|16:04] C:\DOCUME~1\Daniel\APPLIC~1\desktop.ini
[07/06/2008|19:08] C:\DOCUME~1\Daniel\APPLIC~1\GDIPFONTCACHEV1.DAT
[23/12/2007|12:28] C:\DOCUME~1\Daniel\APPLIC~1\Google
[15/12/2006|11:51] C:\DOCUME~1\Daniel\APPLIC~1\Identities
[03/08/2007|18:09] C:\DOCUME~1\Daniel\APPLIC~1\Kptic
[25/12/2007|20:09] C:\DOCUME~1\Daniel\APPLIC~1\LimeWire
[26/12/2006|18:17] C:\DOCUME~1\Daniel\APPLIC~1\Macromedia
[08/12/2007|19:05] C:\DOCUME~1\Daniel\APPLIC~1\Microsoft
[23/03/2008|18:48] C:\DOCUME~1\Daniel\APPLIC~1\NMM-MetaData.db
[18/08/2007|12:29] C:\DOCUME~1\Daniel\APPLIC~1\Nokia
[16/04/2008|19:01] C:\DOCUME~1\Daniel\APPLIC~1\Nokia Multimedia Player
[17/08/2007|17:18] C:\DOCUME~1\Daniel\APPLIC~1\PC Suite
[19/01/2007|15:15] C:\DOCUME~1\Daniel\APPLIC~1\PDFCreator
[20/02/2007|19:04] C:\DOCUME~1\Daniel\APPLIC~1\Sun
[21/06/2007|12:23] C:\DOCUME~1\Daniel\APPLIC~1\U3
[10/07/2007|09:45] C:\DOCUME~1\Daniel\APPLIC~1\vlc
[28/12/2006|15:00] C:\DOCUME~1\Daniel\APPLIC~1\You've Got Pictures Screensaver

[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[08/09/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[15/12/2006|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[08/09/2005|16:04] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\desktop.ini
[06/12/2005|09:47] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\Microsoft

[08/09/2005|14:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[08/09/2005|14:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[16/06/2008 09:50][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[16/06/2008 08:17][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/08/2007|15:23] C:\Program Files\Adobe
[21/09/2007|14:40] C:\Program Files\AOL
[09/11/2007|19:30] C:\Program Files\AOL 8.0
[16/08/2007|12:40] C:\Program Files\AOL 9.0
[21/09/2007|22:21] C:\Program Files\AOL 9.0 VR
[24/09/2007|17:27] C:\Program Files\AOL 9.0a
[05/04/2007|20:09] C:\Program Files\Audacity
[05/04/2007|20:09] C:\Program Files\audacity-win-1.2.6.exe
[04/06/2007|13:38] C:\Program Files\BeWAN ADSL V1.9.0.3
[08/09/2005|14:12] C:\Program Files\ComPlus Applications
[23/02/2007|13:50] C:\Program Files\Creative
[17/08/2007|17:20] C:\Program Files\DIFX
[04/08/2007|16:42] C:\Program Files\DivX
[01/08/2007|18:41] C:\Program Files\DivX521XP2K_1.exe
[13/06/2008|15:56] C:\Program Files\Emule
[25/12/2007|20:32] C:\Program Files\Ev0 3.0.2.plsk
[09/03/2008|16:35] C:\Program Files\Fichiers communs
[23/12/2007|12:25] C:\Program Files\Google
[05/12/2005|16:35] C:\Program Files\HighMAT CD Writing Wizard
[20/08/2007|21:54] C:\Program Files\IE7Setup.exe
[22/02/2007|11:11] C:\Program Files\IncrediMail
[09/03/2008|16:35] C:\Program Files\InstallShield Installation Information
[11/06/2008|21:22] C:\Program Files\Internet Explorer
[20/02/2007|18:49] C:\Program Files\Java
[07/08/2007|17:06] C:\Program Files\klcodec330f.exe
[03/08/2007|18:08] C:\Program Files\Kptic_Win.zip
[05/04/2007|20:17] C:\Program Files\lame3.97.zip
[28/12/2006|15:00] C:\Program Files\Learn2.com
[25/12/2007|19:40] C:\Program Files\LimeWireWin.exe
[01/11/2007|14:50] C:\Program Files\Magicbit
[16/08/2007|15:49] C:\Program Files\Messenger
[16/08/2007|15:49] C:\Program Files\messenger.msi
[11/05/2007|08:41] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[19/03/2007|20:49] C:\Program Files\microsoft frontpage
[05/12/2005|17:24] C:\Program Files\Microsoft Office
[05/12/2005|17:24] C:\Program Files\Microsoft Visual Studio
[08/09/2005|14:13] C:\Program Files\Movie Maker
[31/07/2007|19:11] C:\Program Files\MP3 Player Utilities 3.10
[08/09/2005|14:11] C:\Program Files\MSN
[08/09/2005|14:12] C:\Program Files\MSN Gaming Zone
[24/12/2007|11:46] C:\Program Files\MSN Messenger
[01/08/2007|16:37] C:\Program Files\MTVVideoConverter_V1.11.4.zip
[08/09/2005|14:13] C:\Program Files\NetMeeting
[17/08/2007|17:18] C:\Program Files\Nokia
[26/12/2006|16:15] C:\Program Files\Nullsoft
[13/06/2007|19:14] C:\Program Files\Outlook Express
[05/12/2005|17:51] C:\Program Files\PDFCreator
[02/04/2007|17:20] C:\Program Files\Philips
[20/08/2007|10:56] C:\Program Files\Preparation_Messenger.exe
[02/04/2007|13:01] C:\Program Files\QuickTime
[26/12/2006|16:14] C:\Program Files\Real
[31/07/2007|18:45] C:\Program Files\Real Alternative
[08/09/2005|14:14] C:\Program Files\Services en ligne
[15/12/2006|12:03] C:\Program Files\Symantec
[16/06/2008|08:17] C:\Program Files\Symantec AntiVirus
[28/12/2006|14:56] C:\Program Files\TechCity Solutions
[08/09/2005|14:22] C:\Program Files\Uninstall Information
[17/07/2007|16:30] C:\Program Files\USB Disk Win98 Driver
[08/07/2007|17:18] C:\Program Files\VideoLAN
[08/07/2007|17:18] C:\Program Files\vlc-0.8.6c-win32.exe
[31/07/2007|19:17] C:\Program Files\WinAVI MP4 Converter
[31/07/2007|18:42] C:\Program Files\WinAVI_MP4_Video_Converter_Fr.exe
[24/12/2007|11:29] C:\Program Files\Windows Live
[29/11/2007|22:02] C:\Program Files\Windows Live Toolbar
[05/12/2005|16:38] C:\Program Files\Windows Media Connect 2
[30/03/2006|10:54] C:\Program Files\Windows Media Player
[08/09/2005|14:12] C:\Program Files\Windows NT
[08/09/2005|14:14] C:\Program Files\WindowsUpdate
[03/02/2007|17:12] C:\Program Files\WinRAR
[12/06/2008|18:19] C:\Program Files\WinZip
[12/06/2008|18:18] C:\Program Files\winzip111fr.msi
[24/12/2007|11:16] C:\Program Files\WLinstaller.exe
[10/08/2007|18:09] C:\Program Files\WUNX_PCDrv_A2_1_01_03_0112.exe
[08/09/2005|14:16] C:\Program Files\xerox
[01/08/2007|18:42] C:\Program Files\XviD-1.1.0.exe

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/08/2007|15:24] C:\Program Files\Fichiers communs\Adobe
[21/09/2007|14:41] C:\Program Files\Fichiers communs\AOL
[28/12/2006|15:01] C:\Program Files\Fichiers communs\aolback
[21/09/2007|14:40] C:\Program Files\Fichiers communs\aolshare
[05/12/2005|17:24] C:\Program Files\Fichiers communs\Designer
[09/03/2008|16:34] C:\Program Files\Fichiers communs\InstallShield
[20/02/2007|18:36] C:\Program Files\Fichiers communs\Java
[16/08/2007|15:49] C:\Program Files\Fichiers communs\Microsoft Shared
[08/09/2005|14:13] C:\Program Files\Fichiers communs\MSSoap
[17/08/2007|17:19] C:\Program Files\Fichiers communs\Nokia
[28/12/2006|14:59] C:\Program Files\Fichiers communs\Nullsoft
[08/09/2005|16:04] C:\Program Files\Fichiers communs\ODBC
[17/08/2007|17:19] C:\Program Files\Fichiers communs\PCSuite
[16/08/2007|13:11] C:\Program Files\Fichiers communs\Real
[08/09/2005|14:13] C:\Program Files\Fichiers communs\Services
[09/03/2008|16:35] C:\Program Files\Fichiers communs\snpstd3
[08/09/2005|16:04] C:\Program Files\Fichiers communs\SpeechEngines
[15/12/2006|12:04] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|19:14] C:\Program Files\Fichiers communs\System
[24/12/2007|11:25] C:\Program Files\Fichiers communs\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 52

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-16 10:01:08
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Daniel\Local Settings\Temp\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis
=> C:\Documents and Settings\Daniel\Recent\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis.lnk

[F:1076][D:12]-> C:\DOCUME~1\Daniel\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\Daniel\Cookies
[F:68][D:3]-> C:\DOCUME~1\Daniel\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 10:01:59,18 ]----------------------
0
Réponse 4 / 17
C.KLo Messages postés 30 Statut Membre
 
Voila le second rapport
j'attend vos prochaines instructions
en tout cas je vous remercie!
C.KLo

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:07:10, on 16/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\CCM\CcmExec.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
C:\Program Files\Fichiers communs\AOL\1168012420\ee\AOLSoftware.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\USB Disk Win98 Driver\Res.EXE
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\WINDOWS\CameraFixer.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Messenger\Msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
c:\program files\aol\aol toolbar 4.0\AolTbServer.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www-valrho.cea.fr:8080/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par CEA Valrhô
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1168012420\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [lieskindballseek] C:\Documents and Settings\All Users\Application Data\ByteLoudLiesKind\Pile Iso.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [USB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [CameraFixer] C:\WINDOWS\CameraFixer.exe
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AOL Dialer] C:\Program Files\Fichiers communs\AOL\ACS\AOlDial.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www-valrho.cea.fr:8080/
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = intra.cea.fr
O17 - HKLM\Software\..\Telephony: DomainName = intra.cea.fr
O17 - HKLM\System\CCS\Services\Tcpip\..\{7F5E8C77-C847-4D5A-9AC7-76FC490E275B}: NameServer = 86.64.145.144 84.103.237.144
O17 - HKLM\System\CCS\Services\Tcpip\..\{941ECAD5-B789-4742-8B61-82460AA365B5}: Domain = intra.cea.fr
O17 - HKLM\System\CCS\Services\Tcpip\..\{941ECAD5-B789-4742-8B61-82460AA365B5}: NameServer = 132.169.160.1,132.166.192.6
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = intra.cea.fr
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = intra.cea.fr,valrho.cea.fr,saclay.cea.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = intra.cea.fr,valrho.cea.fr,saclay.cea.fr
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
Utilisateur anonyme
 
*Télécharge OTMoveIt (d’Old_Timer) sur ton Bureau.
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe

*Double-clique sur OTMoveIt.exe pour le lancer.
*Copie la liste qui se trouve ci-dessous et colle-la dans le cadre de gauche de OTMoveIt : Paste List of Files/Folders to be moved.

c:\docume~1\daniel\applic~1\knobfl~1\deafjugsgrey.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind
C:\Documents and Settings\Daniel\Local Settings\Temp\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis
C:\Documents and Settings\Daniel\Recent\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis.lnk
C:\Documents and Settings\All Users\Application Data\ByteLoudLiesKind\Pile Iso.exe

*Clique sur MoveIt! Pour lancer la suppression.
*Le résultat apparaitra dans le cadre Results.
*Clique sur Exit pour fermer.
*Poste le rapport situé dans C:\_OTMoveIt\MovedFiles. Exemple:(01282008_131348.log )

*Il te sera peut-être demander de redémarrer le PC pour achever la suppression.
Si c'est le cas accepte par Yes

Ensuite,
#Vas sur https://virusscan.jotti.org/
#Clique en haut à droite sur "Parcourir", navigue dans les dossiers et sélectionne ce fichier :

C:\DOCUME~1\Daniel\APPLIC~1\GDIPFONTCACHEV1.DAT

#Clique sur submit toujours en haut à droite
#Le scan va se lancer, ça va prendre quelques minutes
#En bas, tu as le résultat du scan, copie/colle le résultat complet du scan ici.
Aide : https://www.malekal.com/scan-antivirus-ligne-nod32/#mozTocId662799

Idem pour ce fichier : C:\Program Files\klcodec330f.exe
0
Réponse 6 / 17
C.KLo Messages postés 30 Statut Membre
 
re, voici le premier rapport.

File/Folder c:\docume~1\daniel\applic~1\knobfl~1\deafjugsgrey.exe not found.
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind moved successfully.
C:\Documents and Settings\Daniel\Local Settings\Temp\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis moved successfully.
C:\Documents and Settings\Daniel\Recent\SmartMovie.v2.72.S60.SymbianOS.Cracked-oWnPDA.sis.lnk moved successfully.
File/Folder C:\Documents and Settings\All Users\Application Data\ByteLoudLiesKind\Pile Iso.exe not found.

OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 06162008_150311

ensuite

Scanner results
Scan taken on 16 Jun 2008 13:09:10 (GMT)
A-Squared Found nothing
AntiVir Found nothing
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
CPsecure Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found nothing
Fortinet Found nothing
Ikarus Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
Panda Antivirus Found nothing
Sophos Antivirus Found nothing
VirusBuster Found nothing
VBA32 Found nothing

je ne sais pas si lle tableau "statistics" doit être mis mais je le fait au cas où

Statistics
Last file scanned at least one scanner reported something about: server2.exe (MD5: 8611d57560d0e046bb3f327fc7908b8b, size: 276401 bytes), detected by:

Scanner Malware name
A-Squared X
AntiVir TR/PSW.Steam.an
ArcaVir X
Avast Win32:Pakes-OD
AVG Antivirus PSW.Generic6.INR
BitDefender Backdoor.IRCBot.ABYV
ClamAV X
CPsecure X
Dr.Web Trojan.PWS.Lineage.4319
F-Prot Antivirus Possibly a new variant of W32/Threat-IKNP-based!Maximus
F-Secure Anti-Virus Trojan-PSW.Win32.Steam.an
Fortinet X
Ikarus MalwareScope.Worm.Viking.4
Kaspersky Anti-Virus Trojan-PSW.Win32.Steam.an
NOD32 Win32/PSW.Steam.NA
Norman Virus Control W32/Suspicious_N.gen
Panda Antivirus X
Sophos Antivirus Troj/Agent-GPW
VirusBuster X
VBA32 Trojan-PSW.Win32.Steam.an

You're free to (mis)interpret these automated, flawed statistics at your own discretion. For antivirus comparisons, visit AV comparatives
We are not affiliated with any third parties that conduct tests using this service

par contre impossible de le faire avec C:\Program Files\klcodec330f.exe la page charge mais rien ne se fait j'essaye depuis 2 heures; est ce que je peux supprimer le fichier klcodec330f.exe de mon ordinateur ???

que dois-je faire ensuite?

et pouvez-vous m'expliquer exactement ce qu'à mon ordinateur car je suis à lettre vos instructions mais j'avoue que je ne comprends pas vraiement ce que je fais! lol

merci, j'attend votre réponse
C.KLo
0
Réponse 7 / 17
Utilisateur anonyme
 
Re,

On va recommencer le scan, quelque chose m'intrigue :

Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ce fichier : C:\DOCUME~1\Daniel\APPLIC~1\GDIPFONTCACHEV1.DAT

Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.

Si VirusTotal indique que le fichier a déjà été analysé, cliquer sur le bouton Reanalyse le fichier maintenant

Idem pour ce fichier : C:\Program Files\klcodec330f.exe

Que fait-on !? Et bien on supprime toutes les méchantes petites bêtes qui sont venus s'incruster dans ton PC. En particulier, tu avais 2 cracks, et c'est très mauvais, il faut éviter absolument les cracks keygen et tout ce qui s'en suit.

J'aimerais que tu fasses ceci aussi :
Tu vas dans ajout/suppression des programmes et tu supprimes tout ce qui se rapporte à CiD.
0
Réponse 8 / 17
C.KLo Messages postés 30 Statut Membre
 
Fichier GDIPFONTCACHEV1.DAT reçu le 2008.06.16 17:51:44 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE

Résultat: 0/33 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: ___.
L'heure estimée de démarrage est entre ___ et ___ .
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.6.13.1 2008.06.16 -
AntiVir 7.8.0.55 2008.06.16 -
Authentium 5.1.0.4 2008.06.16 -
Avast 4.8.1195.0 2008.06.15 -
AVG 7.5.0.516 2008.06.16 -
BitDefender 7.2 2008.06.16 -
CAT-QuickHeal 9.50 2008.06.16 -
ClamAV 0.93.1 2008.06.16 -
DrWeb 4.44.0.09170 2008.06.16 -
eSafe 7.0.15.0 2008.06.15 -
eTrust-Vet 31.6.5878 2008.06.16 -
Ewido 4.0 2008.06.16 -
F-Prot 4.4.4.56 2008.06.12 -
F-Secure 6.70.13260.0 2008.06.16 -
Fortinet 3.14.0.0 2008.06.16 -
GData 2.0.7306.1023 2008.06.16 -
Ikarus T3.1.1.26.0 2008.06.16 -
Kaspersky 7.0.0.125 2008.06.16 -
McAfee 5317 2008.06.13 -
Microsoft 1.3604 2008.06.16 -
NOD32v2 3191 2008.06.16 -
Norman 5.80.02 2008.06.16 -
Panda 9.0.0.4 2008.06.15 -
Prevx1 V2 2008.06.16 -
Rising 20.49.02.00 2008.06.16 -
Sophos 4.30.0 2008.06.16 -
Sunbelt 3.0.1153.1 2008.06.15 -
Symantec 10 2008.06.16 -
TheHacker 6.2.92.351 2008.06.16 -
TrendMicro 8.700.0.1004 2008.06.16 -
VBA32 3.12.6.7 2008.06.16 -
VirusBuster 4.3.26:9 2008.06.12 -
Webwasher-Gateway 6.6.2 2008.06.16 -
Information additionnelle
File size: 33048 bytes
MD5...: f78dad532a9b3345cc56622c45a2d821
SHA1..: 4b8deeac2045d08a69252d0e99b0ab65d06eab59
SHA256: ab348f7fcc2bb1cf6d1ce1bafd4cbf14333bcdd340b65b354eb5518d4b02eda5
SHA512: 01fb0443c93bb320a18a04863ba90a0c61eafebba1f75a5a8cc5d40f6cb93f56
8d0c1cc35a69b00594db958da14cd1a29a3ee3f642133f5bff6971fd3578b590
PEiD..: -
PEInfo: -

Fichier klcodec330f.exe reçu le 2008.06.16 17:46:51 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE

Résultat: 0/33 (0%)

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.6.13.1 2008.06.16 -
AntiVir 7.8.0.55 2008.06.16 -
Authentium 5.1.0.4 2008.06.16 -
Avast 4.8.1195.0 2008.06.15 -
AVG 7.5.0.516 2008.06.16 -
BitDefender 7.2 2008.06.16 -
CAT-QuickHeal 9.50 2008.06.16 -
ClamAV 0.93.1 2008.06.16 -
DrWeb 4.44.0.09170 2008.06.16 -
eSafe 7.0.15.0 2008.06.15 -
eTrust-Vet 31.6.5878 2008.06.16 -
Ewido 4.0 2008.06.16 -
F-Prot 4.4.4.56 2008.06.12 -
F-Secure 6.70.13260.0 2008.06.16 -
Fortinet 3.14.0.0 2008.06.16 -
GData 2.0.7306.1023 2008.06.16 -
Ikarus T3.1.1.26.0 2008.06.16 -
Kaspersky 7.0.0.125 2008.06.16 -
McAfee 5317 2008.06.13 -
Microsoft 1.3604 2008.06.16 -
NOD32v2 3191 2008.06.16 -
Norman 5.80.02 2008.06.16 -
Panda 9.0.0.4 2008.06.15 -
Prevx1 V2 2008.06.16 -
Rising 20.49.02.00 2008.06.16 -
Sophos 4.30.0 2008.06.16 -
Sunbelt 3.0.1153.1 2008.06.15 -
Symantec 10 2008.06.16 -
TheHacker 6.2.92.351 2008.06.16 -
TrendMicro 8.700.0.1004 2008.06.16 -
VBA32 3.12.6.7 2008.06.16 -
VirusBuster 4.3.26:9 2008.06.12 -
Webwasher-Gateway 6.6.2 2008.06.16 -
Information additionnelle
File size: 13043226 bytes
MD5...: d3d3cf8152049f5d764021b79ed1dcfd
SHA1..: ecf4243a35f6c8aaea8b517e8a48163e5a41a846
SHA256: be262e8c980bc239aa316cf481eb5594163b4035451790610565577aa06682c4
SHA512: 7d5ac7e2df8df19b84a09039e74f01b9aa172ce5cf3f8b375ff84f49f9fe9053
a0539f5e588e9eb2db4115dd6e565d2644f4a00ff9e86597791280a6973e78a1
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x4098cc
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)

( 8 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0x8ff0 0x9000 6.59 083e077c314dfe6832fadef9f8dbac29
DATA 0xa000 0x248 0x400 2.72 7b967885fdd6cf034d6bbacee6d60fd9
BSS 0xb000 0xe38 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.idata 0xc000 0x950 0xa00 4.43 bd5bdc394dd9459844ea032b48349bc1
.tls 0xd000 0x8 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0xe000 0x18 0x200 0.20 d293bf8d4ebe9826d58e1d27c25fe4b6
.reloc 0xf000 0x8a8 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0x10000 0x25000 0x24400 4.60 a88c46b3d5c02df7a8e7c21d69d7160a

( 8 imports )
> kernel32.dll: DeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, WideCharToMultiByte, TlsSetValue, TlsGetValue, MultiByteToWideChar, GetModuleHandleA, GetLastError, GetCommandLineA, WriteFile, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetSystemTime, GetFileType, ExitProcess, CreateFileA, CloseHandle
> user32.dll: MessageBoxA
> oleaut32.dll: VariantChangeTypeEx, VariantCopyInd, VariantClear, SysStringLen, SysAllocStringLen
> advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey, OpenProcessToken, LookupPrivilegeValueA
> kernel32.dll: WriteFile, VirtualQuery, VirtualProtect, VirtualFree, VirtualAlloc, Sleep, SizeofResource, SetLastError, SetFilePointer, SetErrorMode, SetEndOfFile, RemoveDirectoryA, ReadFile, LockResource, LoadResource, LoadLibraryA, IsDBCSLeadByte, GetWindowsDirectoryA, GetVersionExA, GetUserDefaultLangID, GetSystemInfo, GetSystemDefaultLCID, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetFullPathNameA, GetFileSize, GetFileAttributesA, GetExitCodeProcess, GetEnvironmentVariableA, GetCurrentProcess, GetCommandLineA, GetACP, InterlockedExchange, FormatMessageA, FindResourceA, DeleteFileA, CreateProcessA, CreateFileA, CreateDirectoryA, CloseHandle
> user32.dll: TranslateMessage, SetWindowLongA, PeekMessageA, MsgWaitForMultipleObjects, MessageBoxA, LoadStringA, ExitWindowsEx, DispatchMessageA, DestroyWindow, CreateWindowExA, CallWindowProcA, CharPrevA
> comctl32.dll: InitCommonControls
> advapi32.dll: AdjustTokenPrivileges

( 0 exports )

il y a aucun fichier avec le mot CID dans ajout/suppression programme
0
Réponse 9 / 17
Utilisateur anonyme
 
Les fichiers sont légitimes. C'est bon

Comment se comporte le PC ?
0
Réponse 10 / 17
C.KLo Messages postés 30 Statut Membre
 
Depuis cet aprés midi aucune fenêtre cid est venue m'embêter donc ça a l'air d'aller
en tout cas je vous remercie énormément de m'avoir aidé, ce forum est génial.

Par contre de tout les logiciels que j'ai téléchargé lesquels dois -je supprimer? lesquels dois je garder? et dans ce garder quand dois-je les utiliser et pourquoi?

Encore merci beaucoup
0
Réponse 11 / 17
Utilisateur anonyme
 
On va vérifier que tout est clean :

BitDefender
#Fais un scan en ligne Bitdefender
#Une fois sur le site clique sur le bouton BitDefender Scan Online
#Vois la démo de Balltrap34 ici si tu n'y arrives pas !
#Copie/colle le rapport final.

NB : Le scan est à faire avec Internet Explorer

Pour les outils utilisés, je te dirais quoi faire après.
0
Réponse 12 / 17
C.KLo Messages postés 30 Statut Membre
 
ça marche pas je peux pas installer bitdefender ni faire un scan en ligne je peux pas le faire via un autre site?
0
Réponse 13 / 17
Utilisateur anonyme
 
Tu as un message d'erreur ?

Le scan est à faire avec Internet Explorer. Tu as accepté l'activeX ?

Même en regardant la vidéo ça ne fonctionne pas ?
0
Réponse 14 / 17
C.KLo Messages postés 30 Statut Membre
 
BitDefender Online Scanner - Rapport virus en temps réel

Généré à: Mon, Jun 16, 2008 - 20:49:05

--------------------------------------------------------------------------------

Info d'analyse

Fichiers scannés
32708

Infectés Fichiers
8

Virus Détectés

Spyware.479
1

Trojan.FatObfus.Gen
7

BitDefender Online Scanner

Rapport d'analyse généré à: Mon, Jun 16, 2008 - 19:54:10

Voie d'analyse: A:\;C:\;D:\;Z:\;

Statistiques

Temps
00:33:10

Fichiers
27952

Directoires
4749

Secteurs de boot
4

Archives
526

Paquets programmes
73

Résultats

Virus identifiés
2

Fichiers infectés
8

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
7

Info sur les moteurs

Définition virus
1222498

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
4

Archive des plugins
11

Unpack des plugins
3

E-mail plugins
1

Système plugins
1

Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions

Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui

Fichier analysé
Statut

C:\Lop SD\Backup-Lop\F\gpl great once ooze.exe
Infecté par: Trojan.FatObfus.Gen

C:\Lop SD\Backup-Lop\F\gpl great once ooze.exe
Echec de la désinfection

C:\Lop SD\Backup-Lop\F\gpl great once ooze.exe
Supprimé

C:\Lop SD\Backup-Lop\F\kmhazrxp.exe
Infecté par: Trojan.FatObfus.Gen

C:\Lop SD\Backup-Lop\F\kmhazrxp.exe
Echec de la désinfection

C:\Lop SD\Backup-Lop\F\kmhazrxp.exe
Supprimé

C:\Lop SD\Backup-Lop\F\ldwefqco.exe
Infecté par: Trojan.FatObfus.Gen

C:\Lop SD\Backup-Lop\F\ldwefqco.exe
Echec de la désinfection

C:\Lop SD\Backup-Lop\F\ldwefqco.exe
Supprimé

C:\Lop SD\Backup-Lop\F\pqvifdvw.exe
Infecté par: Trojan.FatObfus.Gen

C:\Lop SD\Backup-Lop\F\pqvifdvw.exe
Echec de la désinfection

C:\Lop SD\Backup-Lop\F\pqvifdvw.exe
Supprimé

C:\WINDOWS\CameraFixer.exe
Détecté avec: Spyware.479

C:\WINDOWS\CameraFixer.exe
Echec de la désinfection

C:\WINDOWS\CameraFixer.exe
Echec de la suppression

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\KnobNoun.exe
Infecté par: Trojan.FatObfus.Gen

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\KnobNoun.exe
Echec de la désinfection

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\KnobNoun.exe
Supprimé

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\mess idol.exe
Infecté par: Trojan.FatObfus.Gen

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\mess idol.exe
Echec de la désinfection

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\mess idol.exe
Supprimé

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\Pile Iso.exe
Infecté par: Trojan.FatObfus.Gen

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\Pile Iso.exe
Echec de la désinfection

C:\_OTMoveIt\MovedFiles\06162008_150311\DOCUME~1\ALLUSE~1\APPLIC~1\ByteLoudLiesKind\Pile Iso.exe
Supprimé
0
Réponse 15 / 17
Utilisateur anonyme
 
*Double-clique sur OTMoveIt.exe pour le lancer.
*Copie la liste qui se trouve ci-dessous et colle-la dans le cadre de gauche de OTMoveIt : Paste List of Files/Folders to be moved.

C:\WINDOWS\CameraFixer.exe

*Clique sur MoveIt! Pour lancer la suppression.
*Le résultat apparaitra dans le cadre Results.
*Clique sur Exit pour fermer.
*Poste le rapport situé dans C:\_OTMoveIt\MovedFiles. Exemple:(01282008_131348.log )

*Il te sera peut-être demander de redémarrer le PC pour achever la suppression.
Si c'est le cas accepte par Yes
0
Réponse 16 / 17
LUDI95
 
bonjour à tous! ayant un peu le même problème, je me permets de diffuser mon scan avec lopR et j'espère que l'un de vous pourra me donner une petite solution car ce CiD commence à être quelque peu désagréable... merci d'avance!

-----------------------[ Lop S&D 4.2.1-6 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : HP_Administrateur ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 19/06/2008 | 19:06:28,35 ] [ PC : R2D2 ]
[ MAJ : 16-06-2008 | 23:01 ]

-------------[ Listing des dossiers dans Application Data ]------------

[10/10/2005|23:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[18/10/2005|20:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[04/03/2008|02:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[03/01/2005|02:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[03/01/2005|02:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[29/04/2007|21:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/01/2008|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[02/01/2008|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/06/2008|21:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
[04/03/2008|02:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg8
[06/04/2007|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[10/10/2005|23:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[18/10/2006|06:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Firefly Studios
[07/06/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[18/06/2008|23:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[03/01/2005|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[28/02/2006|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[03/01/2005|02:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[17/05/2007|22:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Inter Real Once Name
[02/03/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[09/05/2007|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[14/06/2008|17:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[01/06/2007|01:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[19/11/2007|22:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[28/02/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2005|02:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[03/01/2005|02:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[04/03/2008|02:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[29/06/2006|12:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[21/03/2007|00:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[27/08/2006|23:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[31/08/2006|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[19/04/2008|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/03/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ywasvxup.hvs

[10/10/2005|23:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[18/10/2005|20:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[05/10/2007|21:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[03/01/2005|03:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2005|02:36] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[03/01/2005|02:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[18/05/2006|20:43] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Adobe
[18/05/2006|20:43] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AdobeAUM
[20/05/2008|20:47] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AdobeUM
[09/08/2006|20:09] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Ahead
[30/07/2006|15:42] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Apple Computer
[07/04/2006|18:27] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ArcSoft
[02/03/2008|20:08] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AVGTOOLBAR
[12/10/2006|08:03] C:\DOCUME~1\HP_ADM~1\APPLIC~1\BitTorrent
[28/02/2006|20:04] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Creative
[10/10/2005|23:24] C:\DOCUME~1\HP_ADM~1\APPLIC~1\desktop.ini
[01/06/2007|01:46] C:\DOCUME~1\HP_ADM~1\APPLIC~1\DivX
[08/05/2006|20:02] C:\DOCUME~1\HP_ADM~1\APPLIC~1\GdiplusUpgrade_MSIApproach_Wrapper.log
[23/05/2006|23:00] C:\DOCUME~1\HP_ADM~1\APPLIC~1\G-Force Prefs (WindowsMediaPlayer).txt
[09/08/2007|07:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Google
[06/08/2006|17:08] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Help
[28/02/2006|19:24] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HP
[28/02/2006|20:01] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HPQ
[31/03/2006|18:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HPSU_48BitScanUpdate.log
[19/02/2007|12:55] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Identities
[12/06/2008|23:25] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Image Zone Express
[20/03/2007|23:03] C:\DOCUME~1\HP_ADM~1\APPLIC~1\InstallShield
[28/02/2006|20:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\InterVideo
[14/09/2006|21:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Lavasoft
[18/05/2006|20:56] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Leadertech
[07/06/2008|11:32] C:\DOCUME~1\HP_ADM~1\APPLIC~1\LimeWire
[01/06/2008|21:51] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Loud Ping Two
[24/04/2006|19:23] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Macromedia
[04/03/2008|02:52] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Microsoft
[26/03/2006|17:46] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Motive
[02/08/2006|18:58] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Mozilla
[24/03/2006|22:18] C:\DOCUME~1\HP_ADM~1\APPLIC~1\MSNInstaller
[02/10/2007|15:03] C:\DOCUME~1\HP_ADM~1\APPLIC~1\MySpace
[01/03/2006|00:00] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Panasonic
[26/03/2008|21:24] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Real
[09/05/2007|21:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Screenshot Sender
[29/10/2007|02:42] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Shareaza
[18/05/2006|20:56] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sonic
[07/05/2006|02:36] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sun
[28/02/2006|18:43] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Symantec
[02/08/2006|18:58] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Talkback
[31/03/2006|18:37] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Update_HP_RedboxHprblog_HPSU.log
[05/11/2007|16:38] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Windows Desktop Search

[27/03/2008|00:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[04/03/2008|02:52] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[19/06/2008 19:00][--ah-----] C:\WINDOWS\tasks\8772BDCF86A12E5B.job
[16/06/2008 10:12][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[12/06/2008 03:15][--ah-----] C:\WINDOWS\tasks\SA.DAT
[19/06/2008 16:09][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[10/08/2004 21:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

8772BDCF86A12E5B.job <--> c:\docume~1\hp_adm~1\applic~1\loudpi~1\CompLinkLies.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/05/2006|20:32] C:\Program Files\Adobe
[07/04/2006|18:16] C:\Program Files\Ahead
[29/06/2006|12:45] C:\Program Files\Alwil Software
[20/04/2008|00:16] C:\Program Files\Apple Software Update
[28/02/2006|19:49] C:\Program Files\ArcSoft
[31/07/2007|14:29] C:\Program Files\Assistant Dartybox
[03/01/2005|02:20] C:\Program Files\ATI Technologies
[29/11/2006|21:06] C:\Program Files\BitComet
[16/08/2006|02:41] C:\Program Files\BitLord
[04/03/2008|02:59] C:\Program Files\BitTorrent
[06/04/2007|09:59] C:\Program Files\Boonty
[06/04/2007|10:00] C:\Program Files\BoontyGames
[28/10/2006|01:16] C:\Program Files\CCleaner
[24/03/2006|12:54] C:\Program Files\Common Files
[18/10/2005|00:28] C:\Program Files\ComPlus Applications
[24/03/2006|20:35] C:\Program Files\Creative
[17/05/2006|21:46] C:\Program Files\DIFX
[29/10/2007|02:49] C:\Program Files\DivX
[07/06/2008|11:56] C:\Program Files\Fichiers communs
[14/10/2006|12:18] C:\Program Files\Firefly Studios
[07/06/2008|11:53] C:\Program Files\Google
[03/09/2007|08:13] C:\Program Files\Grisoft
[22/08/2006|23:12] C:\Program Files\Guitar Pro 4
[28/08/2006|15:50] C:\Program Files\Guitar Pro 5
[20/12/2006|01:19] C:\Program Files\hachette Multimedia
[03/01/2005|02:53] C:\Program Files\Hewlett-Packard
[31/03/2006|18:39] C:\Program Files\HP
[26/03/2008|21:29] C:\Program Files\InstallShield Installation Information
[12/06/2008|03:03] C:\Program Files\Internet Explorer
[03/01/2005|02:39] C:\Program Files\InterVideo
[20/04/2008|00:13] C:\Program Files\iPod
[20/04/2008|00:13] C:\Program Files\iTunes
[05/06/2008|20:54] C:\Program Files\Java
[29/10/2007|02:57] C:\Program Files\Lecteur CANALPLAY
[07/06/2008|11:52] C:\Program Files\LimeWire
[01/06/2008|21:50] C:\Program Files\Loud Ping Two
[30/07/2006|15:56] C:\Program Files\Messenger
[21/04/2008|18:39] C:\Program Files\Messenger Plus! Live
[10/05/2007|03:18] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[18/10/2005|20:27] C:\Program Files\microsoft frontpage
[31/08/2006|07:44] C:\Program Files\Microsoft Games
[26/03/2008|23:23] C:\Program Files\Microsoft Office
[05/11/2007|13:02] C:\Program Files\Microsoft SQL Server Compact Edition
[26/03/2008|21:28] C:\Program Files\Microsoft Works
[26/03/2008|21:18] C:\Program Files\Movavi Video Converter 6
[18/05/2006|22:48] C:\Program Files\Movie Maker
[26/03/2008|21:22] C:\Program Files\Mozilla Firefox
[26/03/2008|23:22] C:\Program Files\MSECache
[28/02/2006|20:53] C:\Program Files\MSN
[18/10/2005|20:27] C:\Program Files\MSN Gaming Zone
[07/11/2007|20:15] C:\Program Files\MSN Messenger
[15/10/2006|03:04] C:\Program Files\MSXML 4.0
[03/01/2005|02:44] C:\Program Files\muvee Technologies
[29/10/2007|02:48] C:\Program Files\MySpace
[08/08/2006|07:35] C:\Program Files\Nero
[15/10/2006|17:56] C:\Program Files\NetMeeting
[02/02/2007|23:47] C:\Program Files\Numericable
[18/10/2005|20:27] C:\Program Files\Online Services
[14/06/2007|03:02] C:\Program Files\Outlook Express
[28/02/2006|19:28] C:\Program Files\Panasonic
[07/04/2006|18:15] C:\Program Files\Philips
[29/02/2008|19:27] C:\Program Files\PokerStars
[27/08/2006|20:57] C:\Program Files\PowerTracks DirectX Plugins
[20/04/2008|00:11] C:\Program Files\QuickTime
[03/01/2005|02:36] C:\Program Files\Real
[27/08/2006|20:53] C:\Program Files\Roland
[18/02/2007|18:14] C:\Program Files\SAGEM
[03/01/2005|02:55] C:\Program Files\Services en ligne
[03/01/2005|02:38] C:\Program Files\Sonic
[04/03/2008|03:01] C:\Program Files\Spybot - Search & Destroy
[03/03/2006|20:27] C:\Program Files\THQ
[20/03/2007|23:03] C:\Program Files\TomTom DesktopSuite
[20/04/2007|01:53] C:\Program Files\TomTom HOME
[06/04/2007|19:13] C:\Program Files\Trymedia
[18/10/2005|00:28] C:\Program Files\Uninstall Information
[05/11/2007|13:01] C:\Program Files\Windows Desktop Search
[26/03/2008|21:21] C:\Program Files\Windows Live
[06/05/2008|20:19] C:\Program Files\Windows Live Safety Center
[23/01/2008|21:30] C:\Program Files\Windows Live Toolbar
[23/04/2008|07:20] C:\Program Files\Windows Media Connect 2
[26/03/2008|23:43] C:\Program Files\Windows Media Player
[18/05/2006|22:45] C:\Program Files\Windows NT
[18/10/2005|20:28] C:\Program Files\Windows Plus
[18/10/2005|00:28] C:\Program Files\WindowsUpdate
[20/04/2007|01:53] C:\Program Files\WinRAR
[18/10/2005|20:28] C:\Program Files\xerox
[28/03/2006|20:54] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[22/05/2007|18:58] C:\Program Files\Fichiers communs\Adobe
[08/08/2006|07:35] C:\Program Files\Fichiers communs\Ahead
[02/01/2008|15:14] C:\Program Files\Fichiers communs\Apple
[07/04/2006|18:16] C:\Program Files\Fichiers communs\ArcSoft
[06/04/2007|10:00] C:\Program Files\Fichiers communs\BOONTY Shared
[03/01/2005|02:24] C:\Program Files\Fichiers communs\Hewlett-Packard
[03/01/2005|02:26] C:\Program Files\Fichiers communs\HP
[03/01/2005|02:52] C:\Program Files\Fichiers communs\InstallShield
[03/01/2005|02:39] C:\Program Files\Fichiers communs\InterVideo
[15/04/2008|14:52] C:\Program Files\Fichiers communs\Microsoft Shared
[18/10/2005|20:26] C:\Program Files\Fichiers communs\MSSoap
[26/03/2008|21:29] C:\Program Files\Fichiers communs\muvee Technologies
[18/10/2005|20:26] C:\Program Files\Fichiers communs\ODBC
[17/05/2007|20:59] C:\Program Files\Fichiers communs\Panda Software
[26/03/2008|21:25] C:\Program Files\Fichiers communs\Real
[03/01/2005|02:38] C:\Program Files\Fichiers communs\Roxio Shared
[01/02/2005|09:51] C:\Program Files\Fichiers communs\Services
[24/03/2007|09:31] C:\Program Files\Fichiers communs\Softwin
[03/01/2005|02:37] C:\Program Files\Fichiers communs\Sonic Shared
[18/10/2005|20:26] C:\Program Files\Fichiers communs\SpeechEngines
[03/01/2005|02:37] C:\Program Files\Fichiers communs\SureThing Shared
[29/10/2007|02:39] C:\Program Files\Fichiers communs\Symantec Shared
[14/06/2007|03:02] C:\Program Files\Fichiers communs\System
[03/01/2005|02:38] C:\Program Files\Fichiers communs\TiVo Shared
[15/04/2008|14:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 48

iexplore.exe ~ [636]
iexplore.exe ~ [1412]
iexplore.exe ~ [4668]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse\LONG RDR.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\Comp Link Lies.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\delete about pure.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\FLAGHECKEGGSFLAP.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\kyvciedn.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\npkdvmqx.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\loudpi~1\zxjfzkgc.exe
C:\Program Files\loudpi~1
C:\WINDOWS\Prefetch\COMP LINK LIES.EXE-2FAF9236.pf
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.adserver5[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@adin.bigpoint[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@bigpoint[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@banner.casinoking[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@casinoking[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@banner.cotedazurpalace[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@cotedazurpalace[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@adopt.euroclick[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@32vegas[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@banner.32vegas[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\8772BDCF86A12E5B.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"biketick"="C:\\DOCUME~1\\HP_ADM~1\\APPLIC~1\\LOUDPI~1\\delete about pure.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Part browse safe hold"="C:\\Documents and Settings\\All Users\\Application Data\\Audio 4 part

browse\\LONG RDR.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 7952 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-19 19:07:38
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\pack.epk
[b]! EGDACCESS !/b

=> C:\Documents and Settings\HP_Administrateur\Mes documents\Downloads\Metadata\(Crack) sting

- songs from the labyrinth 1 by CORE (1).zip.xml
=> C:\Documents and Settings\HP_Administrateur\Application

Data\Shareaza\Torrents\AVG.Anti-Virus.v7.5.425.814.Multilingual.WinALL.Incl.Keygen-ViRiLiTY.torre

nt

[F:166][D:10]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp
[F:312][D:0]-> C:\DOCUME~1\HP_ADM~1\Cookies
[F:15878][D:20]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 19:09:41,18 ]----------------------
0
Réponse 17 / 17
Utilisateur anonyme
 
Bonjour,

Crée ton propre sujet. On t'y répondra.
0

Discussions similaires

Comment désactiver le mode sécurisé de la Freebox POP.
Cycy -
bazfile -

18 réponses
Comment lire un DVD avec un pop-up mobile external DVD-RW
Anna -
Anna -

2 réponses
Freebox pop
Kuza -
CCMBot -

1 réponse
Notifications pop UP sous Android 14
Mich -
Panth33ra -

5 réponses
Freebox Pop Démarrer télé avec une seule télécommande
JOHN6733 -
JOHN6733 -

2 réponses