Sujet Précédent Sujet Suivant

CiD Pubs Intempestives

Résolu
droide6 -  
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour,
J'ai un problème avec les pubs CiD, j'aimerai vraiment en finir, pouvez-vous m'aider SVP ?

42 réponses

Précédent
Réponse 21 / 42
droide6
 
Alors je fais quoi maintenant, aidez-moi ça fait pas mal de temps que je suis sur ce problème. Pour l'instant je n'ai pas encore eu de pub, mais ça peut encore venir ?
0
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Attends le retour de Loicdem, doit être parti manger.
0
Réponse 22 / 42
Utilisateur anonyme
 
Re, va dans la quarantaine de malwarebytes est supprime tout !
0
Réponse 23 / 42
droide6
 
voila c'est fait ensuite ?
0
Réponse 24 / 42
Utilisateur anonyme
 
Refait un hijack
0
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Pourquoi "refait"

il n'en a pas fait depuis le début ?

0
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017 > ^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention  
 
mdr, t'as l'oeil.
En effet :
http://www.commentcamarche.net/forum/affich 8742807 cid pubs intempestives#16
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 42
droide6
 
voila le rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:02:55, on 05/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS2\System32\smss.exe
C:\WINDOWS2\system32\winlogon.exe
C:\WINDOWS2\system32\services.exe
C:\WINDOWS2\system32\lsass.exe
C:\WINDOWS2\system32\svchost.exe
C:\WINDOWS2\System32\svchost.exe
C:\WINDOWS2\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS2\system32\WgaTray.exe
C:\WINDOWS2\Explorer.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS2\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Orange\systray\systrayapp.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HESTIN\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS2\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [memo site kind that] C:\Documents and Settings\All Users.WINDOWS2\Application Data\Grid Blue Memo Site\load date.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS2\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS2\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS2\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)
0
Réponse 26 / 42
Utilisateur anonyme
 
...
0
Utilisateur anonyme
 
ne penses tu pas que.....
LopSD.exe aurait resolu le probleme depuis longtemps

a+
0
Réponse 27 / 42
droide6
 
je l' ai fait juste au dessus le rapport.
0
Réponse 28 / 42
droide6
 
Que dois-je faire et que-ce que LopSD.exe ?

merci
0
Réponse 29 / 42
Utilisateur anonyme
 
Je ne pense pas archet !

Droide, inutile d'installer ce programme
0
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
C'est bien dommage .............

C'est un FIX spécial CID ..

+1 pour archet

0
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017 > ^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention  
 
+2 : (load date.exe dans Application Data).
0
Réponse 30 / 42
droide6
 
voici le rapport de hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:02:55, on 05/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS2\System32\smss.exe
C:\WINDOWS2\system32\winlogon.exe
C:\WINDOWS2\system32\services.exe
C:\WINDOWS2\system32\lsass.exe
C:\WINDOWS2\system32\svchost.exe
C:\WINDOWS2\System32\svchost.exe
C:\WINDOWS2\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS2\system32\WgaTray.exe
C:\WINDOWS2\Explorer.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS2\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Orange\systray\systrayapp.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HESTIN\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS2\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [memo site kind that] C:\Documents and Settings\All Users.WINDOWS2\Application Data\Grid Blue Memo Site\load date.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS2\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS2\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS2\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)
0
Utilisateur anonyme
 
fait ceci et tout sera fini en5mn
Télécharge LopSD.exe sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

Clique-droit sur le raccourci LopSD présent sur le Bureau et choisis "Exécuter en tant qu'administrateur" pour lancer LopSD.

Choisis la langue F pour Français puis valide par Entrée.

Choisis l'option Recherche en saisissant 1 puis valide par Entrée
.
* Patiente jusqu'à la fin du scan
* Poste le rapport généré qui se trouve ici => (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Si tu as un problème pour utiliser Lop S&D, regarde ce tutorial
0
Réponse 31 / 42
Utilisateur anonyme
 
Je l'ai vus, ne t'inquiète pas lol^^

Coche ça : O4 - HKLM\..\Run: [memo site kind that] C:\Documents and Settings\All Users.WINDOWS2\Application Data\Grid Blue Memo Site\load date.exe
et fait fix cheked
0
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Coche rien du tout


0
Réponse 32 / 42
droide6
 
Voilà je l'ai fait et je remet un rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:20:50, on 05/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS2\System32\smss.exe
C:\WINDOWS2\system32\winlogon.exe
C:\WINDOWS2\system32\services.exe
C:\WINDOWS2\system32\lsass.exe
C:\WINDOWS2\system32\svchost.exe
C:\WINDOWS2\System32\svchost.exe
C:\WINDOWS2\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS2\system32\WgaTray.exe
C:\WINDOWS2\Explorer.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS2\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Orange\systray\systrayapp.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HESTIN\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS2\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS2\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS2\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS2\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)
0
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Fais ce qui est indique >> http://www.commentcamarche.net/forum/affich 8742807 cid pubs intempestives?page=2#43
0
Réponse 33 / 42
Utilisateur anonyme
 
http://www.commentcamarche.net/forum/affich 8742807 cid pubs intempestives?page=2#43
0
Réponse 34 / 42
droide6
 
J'ai fais le scan avec Lop S&D le voici :

--------------------\\ Lop S&D 4.2.4-5 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2800+ )
BIOS : Default System BIOS
USER : HESTIN ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.27 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 18 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
G:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [1] ( 05/10/2008|21:23 )

--------------------\\ Listing des dossiers dans APPLIC~1

[22/03/2006|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/02/2006|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\bend lite bib meet
[24/01/2006|20:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[31/08/2005|14:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/01/2006|17:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/02/2006|18:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/07/2005|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[20/03/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[31/03/2006|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\The Film Pop Bone
[31/03/2006|17:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViGUARD
[04/09/2005|11:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[13/09/2008|10:53] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[15/04/2008|22:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[16/07/2007|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/12/2006|19:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[11/04/2008|10:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[11/03/2007|23:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[17/09/2008|12:11] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grid Blue Memo Site
[18/04/2006|23:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\InstallShield
[01/04/2008|20:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[31/10/2007|16:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MailFrontier
[17/09/2008|18:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[18/10/2007|18:11] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[01/09/2008|15:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[01/09/2008|16:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[08/06/2007|20:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\nView_Profiles
[27/04/2006|16:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QuickTime
[04/09/2006|13:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\RoboForm
[25/08/2008|09:53] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[20/09/2008|22:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[15/12/2007|19:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
[08/03/2007|19:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[09/04/2007|13:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Vivendi Universal Games
[28/05/2006|21:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[05/10/2008|13:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller

[15/07/2005|16:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[01/12/2007|18:09] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[05/10/2008|15:17] C:\DOCUME~1\HESTIN\APPLIC~1\Adobe
[22/04/2007|12:59] C:\DOCUME~1\HESTIN\APPLIC~1\AdobeUM
[22/12/2006|19:46] C:\DOCUME~1\HESTIN\APPLIC~1\Apple Computer
[07/05/2008|23:36] C:\DOCUME~1\HESTIN\APPLIC~1\Atari
[12/07/2006|22:53] C:\DOCUME~1\HESTIN\APPLIC~1\BitDefender
[08/12/2006|18:18] C:\DOCUME~1\HESTIN\APPLIC~1\BitTorrent
[11/04/2007|20:30] C:\DOCUME~1\HESTIN\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium
[04/04/2007|18:52] C:\DOCUME~1\HESTIN\APPLIC~1\Command & Conquer 3 Tiberium Wars Demo
[10/07/2006|11:32] C:\DOCUME~1\HESTIN\APPLIC~1\CyberLink
[18/04/2006|22:58] C:\DOCUME~1\HESTIN\APPLIC~1\Dev-Cpp
[03/02/2007|16:26] C:\DOCUME~1\HESTIN\APPLIC~1\DivX
[17/09/2008|13:31] C:\DOCUME~1\HESTIN\APPLIC~1\EoRezo
[11/03/2007|23:16] C:\DOCUME~1\HESTIN\APPLIC~1\Google
[24/05/2008|12:56] C:\DOCUME~1\HESTIN\APPLIC~1\Hamachi
[29/04/2006|16:20] C:\DOCUME~1\HESTIN\APPLIC~1\Help
[04/04/2006|18:37] C:\DOCUME~1\HESTIN\APPLIC~1\Identities
[12/08/2008|11:33] C:\DOCUME~1\HESTIN\APPLIC~1\InstallShield
[10/07/2006|10:25] C:\DOCUME~1\HESTIN\APPLIC~1\Jasc
[26/10/2006|09:34] C:\DOCUME~1\HESTIN\APPLIC~1\Lavasoft
[05/10/2008|14:38] C:\DOCUME~1\HESTIN\APPLIC~1\Leadertech
[18/04/2006|18:46] C:\DOCUME~1\HESTIN\APPLIC~1\Macromedia
[05/11/2006|21:35] C:\DOCUME~1\HESTIN\APPLIC~1\MAGIX
[19/09/2008|19:01] C:\DOCUME~1\HESTIN\APPLIC~1\mail for five
[17/09/2008|18:06] C:\DOCUME~1\HESTIN\APPLIC~1\Malwarebytes
[01/09/2008|15:45] C:\DOCUME~1\HESTIN\APPLIC~1\Microsoft
[21/07/2008|14:27] C:\DOCUME~1\HESTIN\APPLIC~1\Mozilla
[18/04/2006|23:04] C:\DOCUME~1\HESTIN\APPLIC~1\Notepad++
[22/09/2008|20:31] C:\DOCUME~1\HESTIN\APPLIC~1\OpenOffice.org2
[01/02/2007|10:32] C:\DOCUME~1\HESTIN\APPLIC~1\Real
[22/07/2007|12:53] C:\DOCUME~1\HESTIN\APPLIC~1\ReGet Junior
[15/04/2007|18:52] C:\DOCUME~1\HESTIN\APPLIC~1\Screenshot Sender
[11/04/2007|20:26] C:\DOCUME~1\HESTIN\APPLIC~1\SecuROM
[25/08/2008|09:50] C:\DOCUME~1\HESTIN\APPLIC~1\skypePM
[27/05/2006|11:44] C:\DOCUME~1\HESTIN\APPLIC~1\Sun
[18/04/2006|18:45] C:\DOCUME~1\HESTIN\APPLIC~1\Talkback
[16/06/2008|12:26] C:\DOCUME~1\HESTIN\APPLIC~1\teamspeak2
[15/12/2007|20:18] C:\DOCUME~1\HESTIN\APPLIC~1\TomTom
[01/04/2008|18:34] C:\DOCUME~1\HESTIN\APPLIC~1\uTorrent
[13/09/2008|16:09] C:\DOCUME~1\HESTIN\APPLIC~1\Xfire

[15/07/2005|16:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[31/03/2006|17:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

[13/07/2006|09:14] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\BitDefender
[15/07/2006|10:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/11/2007|10:28] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Xfire

[15/07/2005|16:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/03/2006|16:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
[31/03/2006|19:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Webroot

[04/04/2006|18:20] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[20/10/2007|19:02] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Xfire

[06/11/2005|11:09] C:\DOCUME~1\UTILIS~1\APPLIC~1\Adobe
[17/09/2005|14:25] C:\DOCUME~1\UTILIS~1\APPLIC~1\Ahead
[22/03/2006|15:21] C:\DOCUME~1\UTILIS~1\APPLIC~1\Arcsoft
[23/03/2006|17:47] C:\DOCUME~1\UTILIS~1\APPLIC~1\BitDefender
[24/01/2006|21:58] C:\DOCUME~1\UTILIS~1\APPLIC~1\Dev-Cpp
[15/08/2005|14:21] C:\DOCUME~1\UTILIS~1\APPLIC~1\Help
[15/07/2005|17:06] C:\DOCUME~1\UTILIS~1\APPLIC~1\Identities
[15/07/2005|17:33] C:\DOCUME~1\UTILIS~1\APPLIC~1\InterTrust
[19/08/2005|11:25] C:\DOCUME~1\UTILIS~1\APPLIC~1\Macromedia
[31/03/2006|19:49] C:\DOCUME~1\UTILIS~1\APPLIC~1\mail for five
[25/09/2005|19:08] C:\DOCUME~1\UTILIS~1\APPLIC~1\Microsoft
[30/08/2005|13:37] C:\DOCUME~1\UTILIS~1\APPLIC~1\Microsoft Web Folders
[15/07/2005|17:24] C:\DOCUME~1\UTILIS~1\APPLIC~1\Mozilla
[01/01/2006|12:44] C:\DOCUME~1\UTILIS~1\APPLIC~1\Notepad++
[18/07/2005|10:41] C:\DOCUME~1\UTILIS~1\APPLIC~1\Symantec
[01/01/2006|23:22] C:\DOCUME~1\UTILIS~1\APPLIC~1\Talkback
[24/03/2006|20:06] C:\DOCUME~1\UTILIS~1\APPLIC~1\teamspeak2
[31/03/2006|19:17] C:\DOCUME~1\UTILIS~1\APPLIC~1\web slow math
[01/01/2006|23:28] C:\DOCUME~1\UTILIS~1\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\WINDOWS2\tasks

[05/10/2008 21:00][--ah-----] C:\WINDOWS2\tasks\ABCD16E4918A8790.job
[29/08/2008 10:40][--a------] C:\WINDOWS2\tasks\AppleSoftwareUpdate.job
[05/10/2008 20:21][--ah-----] C:\WINDOWS2\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS2\tasks\desktop.ini

( ABCD16E4918A8790.job )=( c:\docume~1\hestin\applic~1\mailfo~1\moveplaybeep.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[24/04/2006|12:10] C:\Program Files\A4Tech
[13/07/2008|20:36] C:\Program Files\Adobe
[05/04/2006|14:25] C:\Program Files\Ahead
[05/10/2008|11:54] C:\Program Files\Alcohol Soft
[02/02/2006|18:11] C:\Program Files\AMD
[13/08/2008|13:49] C:\Program Files\Apple Software Update
[07/05/2008|23:30] C:\Program Files\Atari
[11/04/2008|10:42] C:\Program Files\Avira
[25/04/2006|20:57] C:\Program Files\AviSynth 2.5
[23/12/2006|13:44] C:\Program Files\AvRack
[13/09/2008|10:52] C:\Program Files\Bonjour
[04/02/2007|13:05] C:\Program Files\CCleaner
[15/07/2005|16:10] C:\Program Files\C-Media 3D Audio
[17/05/2008|10:48] C:\Program Files\Common Files
[15/04/2008|20:46] C:\Program Files\DivX
[07/11/2006|18:55] C:\Program Files\download
[16/10/2007|20:16] C:\Program Files\EA GAMES
[05/10/2008|16:01] C:\Program Files\EA Sports
[01/10/2008|09:54] C:\Program Files\eMule
[30/04/2007|13:52] C:\Program Files\EPSON
[18/09/2008|19:29] C:\Program Files\Fichiers communs
[31/10/2007|21:32] C:\Program Files\GameSpy Arcade
[30/01/2008|16:41] C:\Program Files\Gpotato.eu
[10/08/2008|19:20] C:\Program Files\GTA
[14/04/2008|10:45] C:\Program Files\Hamachi
[12/08/2005|09:21] C:\Program Files\Hercules
[15/04/2008|21:23] C:\Program Files\ICQLite
[18/08/2008|22:13] C:\Program Files\InstallShield Installation Information
[14/08/2008|23:32] C:\Program Files\internet explorer
[13/09/2008|10:53] C:\Program Files\iPod
[13/09/2008|10:53] C:\Program Files\iTunes
[26/02/2007|11:17] C:\Program Files\Java
[17/09/2008|12:10] C:\Program Files\mail for five
[05/10/2008|18:33] C:\Program Files\Malwarebytes' Anti-Malware
[25/12/2007|17:35] C:\Program Files\Micro Application
[26/02/2006|17:01] C:\Program Files\microsoft frontpage
[01/09/2008|15:38] C:\Program Files\Microsoft SDKs
[19/08/2008|22:49] C:\Program Files\Microsoft Silverlight
[01/09/2008|16:31] C:\Program Files\Microsoft Visual Studio 9.0
[01/09/2008|16:28] C:\Program Files\Microsoft.NET
[12/09/2008|19:29] C:\Program Files\Movie Maker
[05/10/2008|20:58] C:\Program Files\Mozilla Firefox
[01/09/2008|15:32] C:\Program Files\MSBuild
[12/09/2008|19:29] C:\Program Files\msn
[31/03/2006|20:10] C:\Program Files\msn gaming zone
[18/11/2006|20:47] C:\Program Files\MSXML 4.0
[01/09/2008|15:29] C:\Program Files\MSXML 6.0
[05/10/2008|18:26] C:\Program Files\Navilog1
[12/09/2008|19:26] C:\Program Files\NetMeeting
[13/08/2005|11:38] C:\Program Files\Netropa
[07/11/2006|18:52] C:\Program Files\NVIDIA
[16/06/2008|19:27] C:\Program Files\OLYMPUS
[05/04/2006|14:54] C:\Program Files\OpenOffice.org 2.0
[12/08/2008|11:42] C:\Program Files\Orange
[12/09/2008|19:26] C:\Program Files\Outlook Express
[23/07/2008|21:02] C:\Program Files\Photo Viewer
[20/07/2007|18:55] C:\Program Files\Pilotes
[13/09/2008|10:51] C:\Program Files\QuickTime
[23/12/2006|13:44] C:\Program Files\Realtek AC97
[23/12/2006|13:44] C:\Program Files\Realtek Sound Manager
[01/08/2006|21:32] C:\Program Files\REALTEK_XP64_XP_2K(A377)
[01/09/2008|15:32] C:\Program Files\Reference Assemblies
[01/05/2006|20:00] C:\Program Files\RegCleaner
[12/08/2008|11:33] C:\Program Files\SAGEM
[11/06/2008|10:38] C:\Program Files\Securitoo
[08/12/2007|21:00] C:\Program Files\SilverCrest Vibration Headset
[04/01/2007|11:36] C:\Program Files\SP810
[13/08/2005|11:22] C:\Program Files\SpeedTouch USB
[17/09/2008|13:57] C:\Program Files\Spybot - Search & Destroy
[05/10/2008|17:22] C:\Program Files\Steam
[24/04/2006|21:11] C:\Program Files\Teamspeak2_RC2
[17/09/2008|13:43] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[21/02/2007|09:56] C:\Program Files\THQ
[15/12/2007|20:18] C:\Program Files\TomTom HOME 2
[13/08/2005|11:38] C:\Program Files\Touch Manager
[06/05/2008|19:56] C:\Program Files\TryMedia
[29/05/2006|20:55] C:\Program Files\Ubisoft
[02/08/2006|15:10] C:\Program Files\Ulead Systems
[15/07/2005|17:06] C:\Program Files\Uninstall Information
[24/03/2008|15:37] C:\Program Files\uTorrent
[18/08/2008|22:17] C:\Program Files\Warcraft III
[03/10/2008|17:41] C:\Program Files\Windows Live
[20/07/2007|18:56] C:\Program Files\Windows Media Connect 2
[12/09/2008|19:26] C:\Program Files\Windows Media Player
[12/09/2008|19:26] C:\Program Files\Windows NT
[04/04/2006|17:32] C:\Program Files\WindowsUpdate
[03/11/2006|21:29] C:\Program Files\WinRAR
[28/09/2008|13:10] C:\Program Files\World of Warcraft
[08/09/2008|19:23] C:\Program Files\WowCartographe
[15/07/2005|17:00] C:\Program Files\xerox
[13/09/2008|10:41] C:\Program Files\Xfire

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[15/04/2008|22:16] C:\Program Files\Fichiers communs\Adobe
[15/07/2005|17:30] C:\Program Files\Fichiers communs\Ahead
[13/09/2008|10:50] C:\Program Files\Fichiers communs\Apple
[27/05/2008|16:51] C:\Program Files\Fichiers communs\Blizzard Entertainment
[24/04/2007|10:01] C:\Program Files\Fichiers communs\EPSON
[12/08/2008|11:40] C:\Program Files\Fichiers communs\France Telecom
[24/01/2006|20:08] C:\Program Files\Fichiers communs\InstallShield
[01/12/2006|22:44] C:\Program Files\Fichiers communs\Java
[02/11/2006|10:24] C:\Program Files\Fichiers communs\MAGIX Shared
[01/09/2008|16:29] C:\Program Files\Fichiers communs\Merge Modules
[03/10/2008|17:39] C:\Program Files\Fichiers communs\Microsoft Shared
[29/12/2007|10:54] C:\Program Files\Fichiers communs\Motorola Shared
[15/07/2005|16:57] C:\Program Files\Fichiers communs\MSSoap
[15/07/2005|17:50] C:\Program Files\Fichiers communs\ODBC
[07/05/2008|23:33] C:\Program Files\Fichiers communs\PocketSoft
[01/02/2007|10:32] C:\Program Files\Fichiers communs\Real
[13/01/2008|13:14] C:\Program Files\Fichiers communs\ReGet Shared
[15/07/2005|16:57] C:\Program Files\Fichiers communs\Services
[13/07/2006|12:58] C:\Program Files\Fichiers communs\Softwin
[15/07/2005|17:50] C:\Program Files\Fichiers communs\SpeechEngines
[05/10/2006|20:15] C:\Program Files\Fichiers communs\SWF Studio
[21/03/2006|08:25] C:\Program Files\Fichiers communs\Symantec Shared
[12/09/2008|19:26] C:\Program Files\Fichiers communs\System
[21/04/2006|10:38] C:\Program Files\Fichiers communs\Vbox
[09/04/2007|13:15] C:\Program Files\Fichiers communs\Vivendi Universal Games
[02/10/2008|19:15] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 41 Processes )

IEXPLORE.EXE ~ [PID:952]
iexplore.exe ~ [PID:700]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grid Blue Memo Site
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grid Blue Memo Site\load date.exe
C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1
C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\hyqeacfh.exe
C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\kind frag style pure.exe
C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\lghvkymw.exe
C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\moveplaybeep.exe
C:\DOCUME~1\UTILIS~1\APPLIC~1\mailfo~1
C:\Program Files\mailfo~1
C:\DOCUME~1\HESTIN\Cookies\hestin@www.adserver5[1].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@bigpoint[1].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@fr1.darkorbit.bigpoint[2].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@cotedazurpalace[2].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@adopt.euroclick[2].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@partygaming.122.2o7[1].txt
C:\DOCUME~1\HESTIN\Cookies\hestin@partypoker[2].txt
C:\WINDOWS2\Tasks\ABCD16E4918A8790.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-05 21:24:56
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 221

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:1][D:1]-> C:\DOCUME~1\HESTIN\LOCALS~1\Temp
[F:90][D:0]-> C:\DOCUME~1\HESTIN\Cookies
[F:2541][D:8]-> C:\DOCUME~1\HESTIN\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|21:26 - Option : [1]

--------------------\\ Fin du rapport a 21:26:10
0
Utilisateur anonyme
 
reprend lops et lancr l otion 2
a+
0
Réponse 35 / 42
droide6
 
Le scan avec l'option 2, le voici :

--------------------\\ Lop S&D 4.2.4-5 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2800+ )
BIOS : Default System BIOS
USER : HESTIN ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.27 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 18 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
G:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [2] ( 05/10/2008|21:28 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grid Blue Memo Site\load date.exe
Supprime! - C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\hyqeacfh.exe
Supprime! - C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\kind frag style pure.exe
Supprime! - C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\lghvkymw.exe
Supprime! - C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1\moveplaybeep.exe
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@bigpoint[1].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@fr1.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@partygaming.122.2o7[1].txt
Supprime! - C:\DOCUME~1\HESTIN\Cookies\hestin@partypoker[2].txt
Supprime! - C:\WINDOWS2\Tasks\ABCD16E4918A8790.job
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grid Blue Memo Site
Supprime! - C:\DOCUME~1\HESTIN\APPLIC~1\mailfo~1
Supprime! - C:\DOCUME~1\UTILIS~1\APPLIC~1\mailfo~1
Supprime! - C:\Program Files\mailfo~1
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[22/03/2006|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/02/2006|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\bend lite bib meet
[24/01/2006|20:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[31/08/2005|14:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/01/2006|17:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/02/2006|18:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/07/2005|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[20/03/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[31/03/2006|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\The Film Pop Bone
[31/03/2006|17:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViGUARD
[04/09/2005|11:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[13/09/2008|10:53] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[15/04/2008|22:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[16/07/2007|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/12/2006|19:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[11/04/2008|10:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[11/03/2007|23:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[18/04/2006|23:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\InstallShield
[01/04/2008|20:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[31/10/2007|16:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MailFrontier
[17/09/2008|18:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[18/10/2007|18:11] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[01/09/2008|15:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[01/09/2008|16:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[08/06/2007|20:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\nView_Profiles
[27/04/2006|16:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QuickTime
[04/09/2006|13:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\RoboForm
[25/08/2008|09:53] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[20/09/2008|22:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[15/12/2007|19:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
[08/03/2007|19:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[09/04/2007|13:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Vivendi Universal Games
[28/05/2006|21:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[05/10/2008|13:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller

[15/07/2005|16:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[01/12/2007|18:09] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[05/10/2008|15:17] C:\DOCUME~1\HESTIN\APPLIC~1\Adobe
[22/04/2007|12:59] C:\DOCUME~1\HESTIN\APPLIC~1\AdobeUM
[22/12/2006|19:46] C:\DOCUME~1\HESTIN\APPLIC~1\Apple Computer
[07/05/2008|23:36] C:\DOCUME~1\HESTIN\APPLIC~1\Atari
[12/07/2006|22:53] C:\DOCUME~1\HESTIN\APPLIC~1\BitDefender
[08/12/2006|18:18] C:\DOCUME~1\HESTIN\APPLIC~1\BitTorrent
[11/04/2007|20:30] C:\DOCUME~1\HESTIN\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium
[04/04/2007|18:52] C:\DOCUME~1\HESTIN\APPLIC~1\Command & Conquer 3 Tiberium Wars Demo
[10/07/2006|11:32] C:\DOCUME~1\HESTIN\APPLIC~1\CyberLink
[18/04/2006|22:58] C:\DOCUME~1\HESTIN\APPLIC~1\Dev-Cpp
[03/02/2007|16:26] C:\DOCUME~1\HESTIN\APPLIC~1\DivX
[17/09/2008|13:31] C:\DOCUME~1\HESTIN\APPLIC~1\EoRezo
[11/03/2007|23:16] C:\DOCUME~1\HESTIN\APPLIC~1\Google
[24/05/2008|12:56] C:\DOCUME~1\HESTIN\APPLIC~1\Hamachi
[29/04/2006|16:20] C:\DOCUME~1\HESTIN\APPLIC~1\Help
[04/04/2006|18:37] C:\DOCUME~1\HESTIN\APPLIC~1\Identities
[12/08/2008|11:33] C:\DOCUME~1\HESTIN\APPLIC~1\InstallShield
[10/07/2006|10:25] C:\DOCUME~1\HESTIN\APPLIC~1\Jasc
[26/10/2006|09:34] C:\DOCUME~1\HESTIN\APPLIC~1\Lavasoft
[05/10/2008|14:38] C:\DOCUME~1\HESTIN\APPLIC~1\Leadertech
[18/04/2006|18:46] C:\DOCUME~1\HESTIN\APPLIC~1\Macromedia
[05/11/2006|21:35] C:\DOCUME~1\HESTIN\APPLIC~1\MAGIX
[17/09/2008|18:06] C:\DOCUME~1\HESTIN\APPLIC~1\Malwarebytes
[01/09/2008|15:45] C:\DOCUME~1\HESTIN\APPLIC~1\Microsoft
[21/07/2008|14:27] C:\DOCUME~1\HESTIN\APPLIC~1\Mozilla
[18/04/2006|23:04] C:\DOCUME~1\HESTIN\APPLIC~1\Notepad++
[22/09/2008|20:31] C:\DOCUME~1\HESTIN\APPLIC~1\OpenOffice.org2
[01/02/2007|10:32] C:\DOCUME~1\HESTIN\APPLIC~1\Real
[22/07/2007|12:53] C:\DOCUME~1\HESTIN\APPLIC~1\ReGet Junior
[15/04/2007|18:52] C:\DOCUME~1\HESTIN\APPLIC~1\Screenshot Sender
[11/04/2007|20:26] C:\DOCUME~1\HESTIN\APPLIC~1\SecuROM
[25/08/2008|09:50] C:\DOCUME~1\HESTIN\APPLIC~1\skypePM
[27/05/2006|11:44] C:\DOCUME~1\HESTIN\APPLIC~1\Sun
[18/04/2006|18:45] C:\DOCUME~1\HESTIN\APPLIC~1\Talkback
[16/06/2008|12:26] C:\DOCUME~1\HESTIN\APPLIC~1\teamspeak2
[15/12/2007|20:18] C:\DOCUME~1\HESTIN\APPLIC~1\TomTom
[01/04/2008|18:34] C:\DOCUME~1\HESTIN\APPLIC~1\uTorrent
[13/09/2008|16:09] C:\DOCUME~1\HESTIN\APPLIC~1\Xfire

[15/07/2005|16:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[31/03/2006|17:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

[13/07/2006|09:14] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\BitDefender
[15/07/2006|10:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/11/2007|10:28] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Xfire

[15/07/2005|16:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/03/2006|16:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
[31/03/2006|19:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Webroot

[04/04/2006|18:20] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[20/10/2007|19:02] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Xfire

[06/11/2005|11:09] C:\DOCUME~1\UTILIS~1\APPLIC~1\Adobe
[17/09/2005|14:25] C:\DOCUME~1\UTILIS~1\APPLIC~1\Ahead
[22/03/2006|15:21] C:\DOCUME~1\UTILIS~1\APPLIC~1\Arcsoft
[23/03/2006|17:47] C:\DOCUME~1\UTILIS~1\APPLIC~1\BitDefender
[24/01/2006|21:58] C:\DOCUME~1\UTILIS~1\APPLIC~1\Dev-Cpp
[15/08/2005|14:21] C:\DOCUME~1\UTILIS~1\APPLIC~1\Help
[15/07/2005|17:06] C:\DOCUME~1\UTILIS~1\APPLIC~1\Identities
[15/07/2005|17:33] C:\DOCUME~1\UTILIS~1\APPLIC~1\InterTrust
[19/08/2005|11:25] C:\DOCUME~1\UTILIS~1\APPLIC~1\Macromedia
[25/09/2005|19:08] C:\DOCUME~1\UTILIS~1\APPLIC~1\Microsoft
[30/08/2005|13:37] C:\DOCUME~1\UTILIS~1\APPLIC~1\Microsoft Web Folders
[15/07/2005|17:24] C:\DOCUME~1\UTILIS~1\APPLIC~1\Mozilla
[01/01/2006|12:44] C:\DOCUME~1\UTILIS~1\APPLIC~1\Notepad++
[18/07/2005|10:41] C:\DOCUME~1\UTILIS~1\APPLIC~1\Symantec
[01/01/2006|23:22] C:\DOCUME~1\UTILIS~1\APPLIC~1\Talkback
[24/03/2006|20:06] C:\DOCUME~1\UTILIS~1\APPLIC~1\teamspeak2
[31/03/2006|19:17] C:\DOCUME~1\UTILIS~1\APPLIC~1\web slow math
[01/01/2006|23:28] C:\DOCUME~1\UTILIS~1\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\WINDOWS2\tasks

[29/08/2008 10:40][--a------] C:\WINDOWS2\tasks\AppleSoftwareUpdate.job
[05/10/2008 20:21][--ah-----] C:\WINDOWS2\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS2\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[24/04/2006|12:10] C:\Program Files\A4Tech
[13/07/2008|20:36] C:\Program Files\Adobe
[05/04/2006|14:25] C:\Program Files\Ahead
[05/10/2008|11:54] C:\Program Files\Alcohol Soft
[02/02/2006|18:11] C:\Program Files\AMD
[13/08/2008|13:49] C:\Program Files\Apple Software Update
[07/05/2008|23:30] C:\Program Files\Atari
[11/04/2008|10:42] C:\Program Files\Avira
[25/04/2006|20:57] C:\Program Files\AviSynth 2.5
[23/12/2006|13:44] C:\Program Files\AvRack
[13/09/2008|10:52] C:\Program Files\Bonjour
[04/02/2007|13:05] C:\Program Files\CCleaner
[15/07/2005|16:10] C:\Program Files\C-Media 3D Audio
[17/05/2008|10:48] C:\Program Files\Common Files
[15/04/2008|20:46] C:\Program Files\DivX
[07/11/2006|18:55] C:\Program Files\download
[16/10/2007|20:16] C:\Program Files\EA GAMES
[05/10/2008|16:01] C:\Program Files\EA Sports
[01/10/2008|09:54] C:\Program Files\eMule
[30/04/2007|13:52] C:\Program Files\EPSON
[18/09/2008|19:29] C:\Program Files\Fichiers communs
[31/10/2007|21:32] C:\Program Files\GameSpy Arcade
[30/01/2008|16:41] C:\Program Files\Gpotato.eu
[10/08/2008|19:20] C:\Program Files\GTA
[14/04/2008|10:45] C:\Program Files\Hamachi
[12/08/2005|09:21] C:\Program Files\Hercules
[15/04/2008|21:23] C:\Program Files\ICQLite
[18/08/2008|22:13] C:\Program Files\InstallShield Installation Information
[14/08/2008|23:32] C:\Program Files\internet explorer
[13/09/2008|10:53] C:\Program Files\iPod
[13/09/2008|10:53] C:\Program Files\iTunes
[26/02/2007|11:17] C:\Program Files\Java
[05/10/2008|18:33] C:\Program Files\Malwarebytes' Anti-Malware
[25/12/2007|17:35] C:\Program Files\Micro Application
[26/02/2006|17:01] C:\Program Files\microsoft frontpage
[01/09/2008|15:38] C:\Program Files\Microsoft SDKs
[19/08/2008|22:49] C:\Program Files\Microsoft Silverlight
[01/09/2008|16:31] C:\Program Files\Microsoft Visual Studio 9.0
[01/09/2008|16:28] C:\Program Files\Microsoft.NET
[12/09/2008|19:29] C:\Program Files\Movie Maker
[05/10/2008|20:58] C:\Program Files\Mozilla Firefox
[01/09/2008|15:32] C:\Program Files\MSBuild
[12/09/2008|19:29] C:\Program Files\msn
[31/03/2006|20:10] C:\Program Files\msn gaming zone
[18/11/2006|20:47] C:\Program Files\MSXML 4.0
[01/09/2008|15:29] C:\Program Files\MSXML 6.0
[05/10/2008|18:26] C:\Program Files\Navilog1
[12/09/2008|19:26] C:\Program Files\NetMeeting
[13/08/2005|11:38] C:\Program Files\Netropa
[07/11/2006|18:52] C:\Program Files\NVIDIA
[16/06/2008|19:27] C:\Program Files\OLYMPUS
[05/04/2006|14:54] C:\Program Files\OpenOffice.org 2.0
[12/08/2008|11:42] C:\Program Files\Orange
[12/09/2008|19:26] C:\Program Files\Outlook Express
[23/07/2008|21:02] C:\Program Files\Photo Viewer
[20/07/2007|18:55] C:\Program Files\Pilotes
[13/09/2008|10:51] C:\Program Files\QuickTime
[23/12/2006|13:44] C:\Program Files\Realtek AC97
[23/12/2006|13:44] C:\Program Files\Realtek Sound Manager
[01/08/2006|21:32] C:\Program Files\REALTEK_XP64_XP_2K(A377)
[01/09/2008|15:32] C:\Program Files\Reference Assemblies
[01/05/2006|20:00] C:\Program Files\RegCleaner
[12/08/2008|11:33] C:\Program Files\SAGEM
[11/06/2008|10:38] C:\Program Files\Securitoo
[08/12/2007|21:00] C:\Program Files\SilverCrest Vibration Headset
[04/01/2007|11:36] C:\Program Files\SP810
[13/08/2005|11:22] C:\Program Files\SpeedTouch USB
[17/09/2008|13:57] C:\Program Files\Spybot - Search & Destroy
[05/10/2008|17:22] C:\Program Files\Steam
[24/04/2006|21:11] C:\Program Files\Teamspeak2_RC2
[17/09/2008|13:43] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[21/02/2007|09:56] C:\Program Files\THQ
[15/12/2007|20:18] C:\Program Files\TomTom HOME 2
[13/08/2005|11:38] C:\Program Files\Touch Manager
[06/05/2008|19:56] C:\Program Files\TryMedia
[29/05/2006|20:55] C:\Program Files\Ubisoft
[02/08/2006|15:10] C:\Program Files\Ulead Systems
[15/07/2005|17:06] C:\Program Files\Uninstall Information
[24/03/2008|15:37] C:\Program Files\uTorrent
[18/08/2008|22:17] C:\Program Files\Warcraft III
[03/10/2008|17:41] C:\Program Files\Windows Live
[20/07/2007|18:56] C:\Program Files\Windows Media Connect 2
[12/09/2008|19:26] C:\Program Files\Windows Media Player
[12/09/2008|19:26] C:\Program Files\Windows NT
[04/04/2006|17:32] C:\Program Files\WindowsUpdate
[03/11/2006|21:29] C:\Program Files\WinRAR
[28/09/2008|13:10] C:\Program Files\World of Warcraft
[08/09/2008|19:23] C:\Program Files\WowCartographe
[15/07/2005|17:00] C:\Program Files\xerox
[13/09/2008|10:41] C:\Program Files\Xfire

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[15/04/2008|22:16] C:\Program Files\Fichiers communs\Adobe
[15/07/2005|17:30] C:\Program Files\Fichiers communs\Ahead
[13/09/2008|10:50] C:\Program Files\Fichiers communs\Apple
[27/05/2008|16:51] C:\Program Files\Fichiers communs\Blizzard Entertainment
[24/04/2007|10:01] C:\Program Files\Fichiers communs\EPSON
[12/08/2008|11:40] C:\Program Files\Fichiers communs\France Telecom
[24/01/2006|20:08] C:\Program Files\Fichiers communs\InstallShield
[01/12/2006|22:44] C:\Program Files\Fichiers communs\Java
[02/11/2006|10:24] C:\Program Files\Fichiers communs\MAGIX Shared
[01/09/2008|16:29] C:\Program Files\Fichiers communs\Merge Modules
[03/10/2008|17:39] C:\Program Files\Fichiers communs\Microsoft Shared
[29/12/2007|10:54] C:\Program Files\Fichiers communs\Motorola Shared
[15/07/2005|16:57] C:\Program Files\Fichiers communs\MSSoap
[15/07/2005|17:50] C:\Program Files\Fichiers communs\ODBC
[07/05/2008|23:33] C:\Program Files\Fichiers communs\PocketSoft
[01/02/2007|10:32] C:\Program Files\Fichiers communs\Real
[13/01/2008|13:14] C:\Program Files\Fichiers communs\ReGet Shared
[15/07/2005|16:57] C:\Program Files\Fichiers communs\Services
[13/07/2006|12:58] C:\Program Files\Fichiers communs\Softwin
[15/07/2005|17:50] C:\Program Files\Fichiers communs\SpeechEngines
[05/10/2006|20:15] C:\Program Files\Fichiers communs\SWF Studio
[21/03/2006|08:25] C:\Program Files\Fichiers communs\Symantec Shared
[12/09/2008|19:26] C:\Program Files\Fichiers communs\System
[21/04/2006|10:38] C:\Program Files\Fichiers communs\Vbox
[09/04/2007|13:15] C:\Program Files\Fichiers communs\Vivendi Universal Games
[02/10/2008|19:15] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 38 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-05 21:30:07
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 221

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:1][D:1]-> C:\DOCUME~1\HESTIN\LOCALS~1\Temp
[F:82][D:0]-> C:\DOCUME~1\HESTIN\Cookies
[F:2541][D:8]-> C:\DOCUME~1\HESTIN\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|21:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 05/10/2008|21:31 - Option : [2]

--------------------\\ Fin du rapport a 21:31:07
0
Utilisateur anonyme
 
vas 1 peu sur le net
et dit nous si tes pubs cid sont encore la....

a+
0
Réponse 36 / 42
droide6
 
Pour l'instant je n'en ai pas encore eu. Ca m'a l'air d'être règlé, merci à vous. Si jamais j'ai encore des pubs CiD je vous ferais signe !
0
Réponse 37 / 42
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Envoie un log hijackthis pour contrôler

0
Réponse 38 / 42
droide6
 
Voila le hilackthsi que tu m'as demandé Marie :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:42:21, on 06/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS2\System32\smss.exe
C:\WINDOWS2\system32\winlogon.exe
C:\WINDOWS2\system32\services.exe
C:\WINDOWS2\system32\lsass.exe
C:\WINDOWS2\system32\svchost.exe
C:\WINDOWS2\System32\svchost.exe
C:\WINDOWS2\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS2\system32\WgaTray.exe
C:\WINDOWS2\Explorer.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS2\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\WINDOWS2\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS2\system32\wuauclt.exe
C:\Documents and Settings\HESTIN\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS2\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS2\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" -NoStart
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS2\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS2\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS2\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)
0
Réponse 39 / 42
droide6
 
Je pense que les pubs CiD sont partis : depuis 15h30 jusque maintenant je n'en ai plus eu

Merci à tous .
0
Utilisateur anonyme
 
bonsoir

reprend hijack
fait do a scan only
et fixe ces lignes:

O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)

et ensuite fai ceci:
---> Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.ccleaner.com/ccleaner/download

---> Lance-le. Va dans "Options" puis "Avancé", tu décoches la case "Effacer uniquement les fichiers etc...". Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage. Puis tu vas dans "Registre", tu fais "Chercher des erreurs". Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.

a+
0
Réponse 40 / 42
droide6
 
J'ai supprimer les ligne et fais le nettoyage. Après ça je n'avais plus d'erreur dans le registre, merci :).
0
Utilisateur anonyme
 
de rien
bonne continuation......
a+
0

Discussions similaires

Encore les CiD
doudoudim -
doudoudim -

18 réponses
apparation intempestives de pub type site de rencontre et photo dans le même ton
Crokino -
Crokino -

6 réponses
Publicités : même son coupé, elles sont à fond
Leboss104 -
loisou17 -

5 réponses
Problème de son dans les pubs
SoleneH -
fanou10 -

3 réponses
appel intrusif sur Skype
FAMATHELY -
Utilisateur anonyme -

3 réponses