Sujet Précédent Sujet Suivant

Virus CiD fenetre pop up

Résolu/Fermé
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008 - 12 juil. 2008 à 15:04
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008 - 16 juil. 2008 à 09:35
Bonjour,

Des fenetres Pop-up s'ouvrent sur mon ordinateur, souvent marquées "CID ...".

J'ai fait un rapport Hijackthis que vous trouverez ci-dessous. Quelqu'un peut-il m'aider à remettre de l'ordre ?

Merci d'avance de votre aide

Annie

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:19:24, on 11/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 1 pour HiJackThis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [Part browse safe hold] C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\long amen.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [draw global] C:\DOCUME~1\COMPAQ~1\APPLIC~1\01THIS~1\Readme Load.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
A voir également:

10 réponses

Réponse 1 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
12 juil. 2008 à 15:24
bonjour

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
12 juil. 2008 à 15:34
bonjour Gil. Merci beaucoup de m'aider

Voici le rapport généré :
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 11/08/2008 | 15:27:07,35 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[21/06/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[23/07/2007|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[21/06/2008|22:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\01thisdate
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 15:00][--ah-----] C:\WINDOWS\tasks\ABFA0B9D91FD807D.job
[11/08/2008 14:45][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 09:45][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

ABFA0B9D91FD807D.job <--> c:\docume~1\compaq~1\applic~1\01this~1\MeetDupeIntra.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[21/06/2008|22:38] C:\Program Files\01thisdate
[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[11/08/2008|11:15] C:\Program Files\Circle Developement
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[05/01/2008|19:32] C:\Program Files\Messenger Plus! Live
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|15:23] C:\Program Files\Mozilla Firefox
[25/05/2006|14:33] C:\Program Files\MSN
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[22/04/2008|10:44] C:\Program Files\MSN Messenger
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[28/12/2007|23:07] C:\Program Files\Windows Live Favorites
[28/12/2007|23:07] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[22/04/2008|10:52] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

iexplore.exe ~ [1692]
iexplore.exe ~ [2052]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse\long amen.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ayfmlfbm.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Logostupidcurbthird.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Meet Dupe Intra.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Readme Load.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ssbqkjuy.exe
C:\Program Files\01this~1
C:\Program Files\Circle Developement
C:\WINDOWS\Prefetch\LONG AMEN.EXE-06F9EE62.pf
C:\WINDOWS\Prefetch\AYFMLFBM.EXE-10EF0B92.pf
C:\WINDOWS\Prefetch\MEET DUPE INTRA.EXE-35D54046.pf
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[2].txt
C:\WINDOWS\Tasks\ABFA0B9D91FD807D.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"draw global"="C:\\DOCUME~1\\COMPAQ~1\\APPLIC~1\\01THIS~1\\Readme Load.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Part browse safe hold"="C:\\Documents and Settings\\All Users\\Application Data\\Audio 4 part browse\\long amen.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 15:31:04
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a


[F:47][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:32][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:647][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 15:32:36,45 ]----------------------
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008 > annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
12 juil. 2008 à 16:00
Personne pour m'aider ?
0
Réponse 2 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
12 juil. 2008 à 16:25
Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)


(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

pour les pub cid le probléme vient souvent du sponsor de messengerplus!
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle le sponsor messengerplus!
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
12 juil. 2008 à 17:05
Voilà c'est fait. Et voici le nouveau rapport :


-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 11/08/2008 | 16:56:09,54 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse\long amen.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ayfmlfbm.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Logostupidcurbthird.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Meet Dupe Intra.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Readme Load.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ssbqkjuy.exe
Supprime! - C:\WINDOWS\Prefetch\LONG AMEN.EXE-06F9EE62.pf
Supprime! - C:\WINDOWS\Prefetch\AYFMLFBM.EXE-10EF0B92.pf
Supprime! - C:\WINDOWS\Prefetch\MEET DUPE INTRA.EXE-35D54046.pf
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[2].txt
Supprime! - C:\WINDOWS\Tasks\ABFA0B9D91FD807D.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1
Supprime! - C:\Program Files\01this~1
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans APPLIC~1 ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 16:45][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 09:45][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[11/08/2008|16:54] C:\Program Files\Messenger Plus! Live
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|15:23] C:\Program Files\Mozilla Firefox
[25/05/2006|14:33] C:\Program Files\MSN
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[22/04/2008|10:44] C:\Program Files\MSN Messenger
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[28/12/2007|23:07] C:\Program Files\Windows Live Favorites
[28/12/2007|23:07] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[22/04/2008|10:52] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

iexplore.exe ~ [3612]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 17:00:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a


[F:48][D:5]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:29][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:649][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 17:01:04,73 ]----------------------
0
Réponse 3 / 10
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
12 juil. 2008 à 17:08
Et je viens d'avoir une fenetre CID qui vient de nouveau de s'ouvrir ...
0
Réponse 4 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
12 juil. 2008 à 17:32
pour les pub cid le probléme vient souvent du sponsor de messengerplus!
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle le sponsor messengerplus! ou tout simplement messengerplus!

* Pour les logiciels p2p, il faut chercher et supprimer le sponsor lié à CiD :
*tu supprime les programmes suivants si présents :
+ Cid help
+ Circle Developement
+ Adverts

relance lops S&D
tu fais option1
tu me colle le rapport
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
12 juil. 2008 à 17:36
aussi supprime tes cracks

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
12 juil. 2008 à 18:17
Et voilà le rapport...

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 11/08/2008 | 18:09:23,48 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 18:02][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|18:02] C:\Program Files\Mozilla Firefox
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[11/08/2008|18:08] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[11/08/2008|17:55] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 18:13:13
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:60][D:10]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:30][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:200][D:6]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 18:14:44,92 ]----------------------
0
Réponse 6 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
12 juil. 2008 à 18:31
normalement tu ne doit plus avoir de pub CID

tu poste un rapport hijackthis ftp://ftp.commentcamarche.com/download/HJTInstall.exe
tu vas sur démarrer,poste de travail, C:\Program Files\Hijackthis\HijackThis.exe,tu fais un clic droit sur HijackThis.exe puis sur renommer et inscrit par exemple gil.exe ( à la place de hijackthis.exe)
tu double-clic dessus
tu fais Do a system scan and save the log
et tu me coller le rapport
si problème voir l'aide
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
0
Réponse 7 / 10
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
13 juil. 2008 à 10:44
Pour l'instant cela à l'air d'aller. Voici le rapport de hijackthis. En tout cas merci de ton aide. Annie


ogfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:17, on 12/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\Répertoire temporaire 1 pour HiJackThis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
0
Réponse 8 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
13 juil. 2008 à 11:08
bonjour

relance hijackthis
selectionne do a system scan only
et coches les lignes suivantes:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)

puis clic sur le bouton "Fix Checked"
puis tu me repost un rapport hijackthis.
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
14 juil. 2008 à 06:07
Bonjour
j'ai fait ce que tu m'as dit. Voici le nouveau rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:04:47, on 13/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
0
Réponse 9 / 10
tribun Messages postés 64861 Date d'inscription vendredi 24 août 2007 Statut Membre Dernière intervention 20 février 2020 12 512
14 juil. 2008 à 06:24
bonjour
va dans ajout et supprimer programme et vois si tu vois sponsor CID et désinstalei
et fait un SDfix , ça devrais régler ton problème !
et nettoie ton pc avec CCLeaner !

https://www.malekal.com/slenfbot-still-an-other-irc-bot/
0
Réponse 10 / 10
gil le fantom Messages postés 2799 Date d'inscription vendredi 18 janvier 2008 Statut Membre Dernière intervention 17 octobre 2010 25
14 juil. 2008 à 08:40
bonjour

comment va ton pc?

comme te dis tribun ,pour nettoyer ton pc installe ccleaner
http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner

je te conseille comme antivirus plutôt antivir, plus leger et plus performant ou avg8 free edition
https://forum.malekal.com/viewtopic.php?f=45&t=11659
http://forum.malekal.com/ftopic3528.php

si tu installe antivir applique ce qui suit:
pour désinstaller avast proprement
http://www.commentcamarche.net/faq/sujet 8172 desinstaller proprement avast

télécharge antivir
http://www.commentcamarche.net/telecharger/telecharger 55 antivir

pour bien régler antivir
https://forum.malekal.com/viewtopic.php?f=45&t=4192
https://www.malekal.com/avira-free-security-antivirus-gratuit/
0
annie123 Messages postés 9 Date d'inscription samedi 12 juillet 2008 Statut Membre Dernière intervention 16 juillet 2008
16 juil. 2008 à 09:35
Bonjour

A priori je n'ai plus de fenêtres intempestives. J'ai fait un nettoyage ccleanner, installé suivant tes conseils antivir à la place de avast, fait un scan de l'ensemble de l'ordinateur (et detecté plusieurs fichiers avec des virus que j'ai mis en quarantaine).

Merci encore une fois pour ton aide et tes conseils.

Annie
0

Discussions similaires

Comment désactiver le mode sécurisé de la Freebox POP.
Cycy -
munstef676 -

11 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment lire un DVD avec un pop-up mobile external DVD-RW
Anna -
Anna -

2 réponses
Trouver la radio sur freebox poo
Cam -
bazfile -

1 réponse