Virus CiD fenetre pop up [Résolu]

annie123 9Messages postés 12 juillet 2008Date d'inscription - Dernière réponse le 16 juil. 2008 à 09:35

Bonjour,
Des fenetres Pop-up s'ouvrent sur mon ordinateur, souvent marquées "CID ...".
J'ai fait un rapport Hijackthis que vous trouverez ci-dessous. Quelqu'un peut-il m'aider à remettre de l'ordre ?
Merci d'avance de votre aide
Annie
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:19:24, on 11/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 1 pour HiJackThis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [Part browse safe hold] C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\long amen.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [draw global] C:\DOCUME~1\COMPAQ~1\APPLIC~1\01THIS~1\Readme Load.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Virus CiD fenetre pop up »

Suggestions

Virus CiD fenetre pop up
Virus et fenêtres Pop-Up » Forum
Probleme fenetre pop up CID incessantes (Résolu) » Forum
Des fenetre pop up nomme cid (Résolu) » Forum
[virus] fenetre pop up + lenteur de l'odi (Résolu) » Forum
Virus fenêtre pop-up qui s'ouvre toute seule (Résolu) » Forum

Plus

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 12 juil. 2008 à 15:24

bonjour

tu télécharge Lop S&D.exe sur ton Bureau.http://eric.71.mespages.googlepages.com/LopSD.exe

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)

Ajouter un commentaire

annie123- 12 juil. 2008 à 15:34

bonjour Gil. Merci beaucoup de m'aider

Voici le rapport généré :
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 11/08/2008 | 15:27:07,35 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[21/06/2008|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[23/07/2007|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[21/06/2008|22:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\01thisdate
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 15:00][--ah-----] C:\WINDOWS\tasks\ABFA0B9D91FD807D.job
[11/08/2008 14:45][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 09:45][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

ABFA0B9D91FD807D.job <--> c:\docume~1\compaq~1\applic~1\01this~1\MeetDupeIntra.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[21/06/2008|22:38] C:\Program Files\01thisdate
[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[11/08/2008|11:15] C:\Program Files\Circle Developement
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[05/01/2008|19:32] C:\Program Files\Messenger Plus! Live
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|15:23] C:\Program Files\Mozilla Firefox
[25/05/2006|14:33] C:\Program Files\MSN
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[22/04/2008|10:44] C:\Program Files\MSN Messenger
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[28/12/2007|23:07] C:\Program Files\Windows Live Favorites
[28/12/2007|23:07] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[22/04/2008|10:52] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

iexplore.exe ~ [1692]
iexplore.exe ~ [2052]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse\long amen.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ayfmlfbm.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Logostupidcurbthird.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Meet Dupe Intra.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Readme Load.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ssbqkjuy.exe
C:\Program Files\01this~1
C:\Program Files\Circle Developement
C:\WINDOWS\Prefetch\LONG AMEN.EXE-06F9EE62.pf
C:\WINDOWS\Prefetch\AYFMLFBM.EXE-10EF0B92.pf
C:\WINDOWS\Prefetch\MEET DUPE INTRA.EXE-35D54046.pf
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[2].txt
C:\WINDOWS\Tasks\ABFA0B9D91FD807D.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"draw global"="C:\\DOCUME~1\\COMPAQ~1\\APPLIC~1\\01THIS~1\\Readme Load.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Part browse safe hold"="C:\\Documents and Settings\\All Users\\Application Data\\Audio 4 part browse\\long amen.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 15:31:04
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a

[F:47][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:32][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:647][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 15:32:36,45 ]----------------------

annie123- 12 juil. 2008 à 16:00

Personne pour m'aider ?

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 12 juil. 2008 à 16:25

Relance Lop S&D

* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

pour les pub cid le probléme vient souvent du sponsor de messengerplus!
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle le sponsor messengerplus!

Ajouter un commentaire

annie123- 12 juil. 2008 à 17:05

Voilà c'est fait. Et voici le nouveau rapport :

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 11/08/2008 | 16:56:09,54 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse\long amen.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ayfmlfbm.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Logostupidcurbthird.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Meet Dupe Intra.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\Readme Load.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1\ssbqkjuy.exe
Supprime! - C:\WINDOWS\Prefetch\LONG AMEN.EXE-06F9EE62.pf
Supprime! - C:\WINDOWS\Prefetch\AYFMLFBM.EXE-10EF0B92.pf
Supprime! - C:\WINDOWS\Prefetch\MEET DUPE INTRA.EXE-35D54046.pf
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[2].txt
Supprime! - C:\WINDOWS\Tasks\ABFA0B9D91FD807D.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\01this~1
Supprime! - C:\Program Files\01this~1
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans APPLIC~1 ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 16:45][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 09:45][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[11/08/2008|16:54] C:\Program Files\Messenger Plus! Live
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|15:23] C:\Program Files\Mozilla Firefox
[25/05/2006|14:33] C:\Program Files\MSN
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[22/04/2008|10:44] C:\Program Files\MSN Messenger
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[28/12/2007|23:07] C:\Program Files\Windows Live Favorites
[28/12/2007|23:07] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[22/04/2008|10:52] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

iexplore.exe ~ [3612]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 17:00:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a

[F:48][D:5]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:29][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:649][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 17:01:04,73 ]----------------------

Réponse

annie123 9Messages postés 12 juillet 2008Date d'inscription 12 juil. 2008 à 17:08

Et je viens d'avoir une fenetre CID qui vient de nouveau de s'ouvrir ...

Ajouter un commentaire

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 12 juil. 2008 à 17:32

pour les pub cid le probléme vient souvent du sponsor de messengerplus!
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle le sponsor messengerplus! ou tout simplement messengerplus!

* Pour les logiciels p2p, il faut chercher et supprimer le sponsor lié à CiD :
*tu supprime les programmes suivants si présents :
+ Cid help
+ Circle Developement
+ Adverts

relance lops S&D
tu fais option1
tu me colle le rapport

Ajouter un commentaire

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 12 juil. 2008 à 17:36

aussi supprime tes cracks

=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\DOCUME~1\COMPAQ~1\MESDOC~1\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\didi\diego rock tibo\+ùSUZANNE VEGA\Craking\01 Cracking.wma
=> C:\Documents and Settings\Compaq_Propri‚taire\Mes documents\Ma musique\iTunes\iTunes Music\Suzanne Vega\Suzanne Vega\01 Cracking.m4a

Ajouter un commentaire

annie123- 12 juil. 2008 à 18:17

Et voilà le rapport...

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 11/08/2008 | 18:09:23,48 ] [ PC : FAMILLECOLBERT ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[17/07/2006|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/08/2006|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[25/05/2006|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[28/10/2006|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[16/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/07/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/10/2007|23:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[03/11/2007|13:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/02/2008|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[27/10/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[05/01/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Runic
[20/04/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[04/01/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[26/07/2007|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[19/02/2008|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[02/11/2007|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[26/05/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[14/07/2006|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/02/2007|11:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/04/2008|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[04/07/2007|12:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\$_hpcst$.hpc
[16/07/2006|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[21/07/2006|12:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/08/2006|15:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[25/07/2006|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ATOUT p'tit CLIC Lecture
[12/04/2007|21:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\bang
[31/07/2007|11:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Beep Industries
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[19/04/2008|18:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[31/08/2004|18:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Enregistrement Hachette
[18/02/2008|17:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Fuzzy Games
[15/07/2007|16:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gaijin Ent
[19/04/2008|21:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[28/10/2006|20:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[25/05/2006|11:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[24/05/2006|19:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[04/01/2008|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterVideo
[23/07/2007|20:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\iWin
[04/01/2008|22:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Jane s Hotel
[17/07/2007|08:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu
[31/12/2007|10:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[22/05/2006|20:46] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/05/2007|14:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|19:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Magic Academy
[20/02/2008|17:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[13/04/2007|23:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[25/05/2006|14:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[28/07/2007|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\My Games
[05/01/2008|12:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[29/04/2006|15:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[27/10/2007|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sandlot Games
[28/12/2007|17:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SecuROM
[04/08/2008|11:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[05/08/2006|14:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[27/05/2006|21:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[21/02/2008|22:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Super-Cow
[30/04/2006|09:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[13/04/2007|23:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[01/05/2006|16:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[19/07/2007|19:58] C:\DOCUME~1\COMPAQ~1\APPLIC~1\wklnhst.dat
[20/04/2008|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom

[01/01/2007|16:59] C:\DOCUME~1\COMPAQ~2\APPLIC~1\Macromedia

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[04/01/2006|18:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[10/04/2007|08:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[24/05/2006|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[04/01/2006|18:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/08/2008 15:07][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/08/2008 18:02][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2006|18:00] C:\Program Files\Adobe
[27/05/2006|11:00] C:\Program Files\Alwil Software
[04/01/2006|18:00] C:\Program Files\ATI Technologies
[07/08/2006|13:29] C:\Program Files\AvantGo Connect
[11/08/2008|09:27] C:\Program Files\CCleaner
[07/08/2006|13:29] C:\Program Files\Common Files
[04/01/2006|18:00] C:\Program Files\ComPlus Applications
[19/04/2008|18:42] C:\Program Files\DivX
[29/07/2008|17:59] C:\Program Files\Dofus
[07/04/2007|09:45] C:\Program Files\Dofus-Arena
[04/07/2007|12:55] C:\Program Files\EA GAMES
[28/12/2007|17:25] C:\Program Files\EA SPORTS
[25/02/2007|13:25] C:\Program Files\Electronic Arts
[19/04/2008|18:37] C:\Program Files\eMule
[22/04/2008|10:43] C:\Program Files\Fichiers communs
[27/10/2007|17:04] C:\Program Files\Google
[04/01/2006|18:01] C:\Program Files\Hewlett-Packard
[04/01/2006|18:02] C:\Program Files\Hp
[03/11/2007|17:37] C:\Program Files\IKEA HomePlanner
[28/12/2007|17:46] C:\Program Files\InstallShield Installation Information
[22/06/2008|03:08] C:\Program Files\Internet Explorer
[04/01/2006|18:02] C:\Program Files\InterVideo
[01/08/2006|15:08] C:\Program Files\iPod
[01/08/2006|15:09] C:\Program Files\iTunes
[11/04/2007|22:45] C:\Program Files\Java
[28/07/2007|14:46] C:\Program Files\LimeWire
[04/01/2006|18:02] C:\Program Files\Messenger
[04/07/2007|12:32] C:\Program Files\Microsoft ActiveSync
[13/05/2007|10:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[04/01/2006|18:02] C:\Program Files\microsoft frontpage
[04/01/2006|18:03] C:\Program Files\Microsoft Office
[04/01/2006|18:02] C:\Program Files\Microsoft Works
[04/01/2006|18:03] C:\Program Files\Movie Maker
[11/08/2008|18:02] C:\Program Files\Mozilla Firefox
[04/01/2006|18:03] C:\Program Files\MSN Gaming Zone
[20/11/2006|23:14] C:\Program Files\MSXML 4.0
[04/01/2006|18:03] C:\Program Files\NetMeeting
[16/02/2008|10:46] C:\Program Files\NRJ
[03/11/2007|12:51] C:\Program Files\OrangeHSS
[16/06/2007|10:20] C:\Program Files\Outlook Express
[04/01/2006|18:03] C:\Program Files\PC-Doctor 5 for Windows
[25/07/2006|14:34] C:\Program Files\Picasa2
[01/08/2006|15:10] C:\Program Files\QuickTime
[04/01/2006|18:04] C:\Program Files\Real
[03/11/2007|13:11] C:\Program Files\SAGEM
[29/04/2006|19:12] C:\Program Files\Services en ligne
[26/07/2007|15:20] C:\Program Files\Skype
[04/01/2006|18:04] C:\Program Files\Sonic
[22/07/2007|22:13] C:\Program Files\Sunbelt Software
[26/05/2006|16:34] C:\Program Files\Symantec
[31/07/2006|18:27] C:\Program Files\Trust
[04/01/2006|18:05] C:\Program Files\Uninstall Information
[03/11/2007|13:01] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
[19/05/2007|11:42] C:\Program Files\Wanadoo
[22/04/2008|10:43] C:\Program Files\Windows Live
[11/08/2008|18:08] C:\Program Files\Windows Live Toolbar
[13/04/2007|23:23] C:\Program Files\Windows Media Connect 2
[13/04/2007|23:23] C:\Program Files\Windows Media Player
[04/01/2006|18:05] C:\Program Files\Windows NT
[04/01/2006|18:05] C:\Program Files\WindowsUpdate
[04/01/2006|18:05] C:\Program Files\xerox
[11/08/2008|17:55] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[04/01/2006|18:00] C:\Program Files\Fichiers communs\Adobe
[29/04/2006|15:43] C:\Program Files\Fichiers communs\AOL
[22/02/2007|16:31] C:\Program Files\Fichiers communs\France Telecom
[15/08/2006|01:46] C:\Program Files\Fichiers communs\InstallShield
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Java
[22/04/2008|10:43] C:\Program Files\Fichiers communs\Microsoft Shared
[04/01/2006|18:00] C:\Program Files\Fichiers communs\MSSoap
[04/01/2006|18:00] C:\Program Files\Fichiers communs\ODBC
[13/04/2007|23:00] C:\Program Files\Fichiers communs\Real
[04/01/2006|18:00] C:\Program Files\Fichiers communs\Roxio Shared
[29/10/2007|15:04] C:\Program Files\Fichiers communs\Sandlot Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Services
[26/07/2007|15:20] C:\Program Files\Fichiers communs\Skype
[04/01/2006|18:01] C:\Program Files\Fichiers communs\Sonic Shared
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SpeechEngines
[04/01/2006|18:01] C:\Program Files\Fichiers communs\SureThing Shared
[26/05/2006|16:34] C:\Program Files\Fichiers communs\Symantec Shared
[16/06/2007|10:37] C:\Program Files\Fichiers communs\System
[04/01/2006|18:01] C:\Program Files\Fichiers communs\TiVo Shared
[22/04/2008|10:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/11/2007|17:36] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/04/2007|23:00] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 50

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-11 18:13:13
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

[F:60][D:10]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:30][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:200][D:6]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 18:14:44,92 ]----------------------

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 12 juil. 2008 à 18:31

normalement tu ne doit plus avoir de pub CID

tu poste un rapport hijackthis ftp://ftp.commentcamarche.com/download/HJTInstall.exe
tu vas sur démarrer,poste de travail, C:\Program Files\Hijackthis\HijackThis.exe,tu fais un clic droit sur HijackThis.exe puis sur renommer et inscrit par exemple gil.exe ( à la place de hijackthis.exe)
tu double-clic dessus
tu fais Do a system scan and save the log
et tu me coller le rapport
si problème voir l'aide
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

Ajouter un commentaire

Réponse

annie123 9Messages postés 12 juillet 2008Date d'inscription 13 juil. 2008 à 10:44

Pour l'instant cela à l'air d'aller. Voici le rapport de hijackthis. En tout cas merci de ton aide. Annie

ogfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:17, on 12/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\Répertoire temporaire 1 pour HiJackThis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Ajouter un commentaire

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 13 juil. 2008 à 11:08

bonjour

relance hijackthis
selectionne do a system scan only
et coches les lignes suivantes:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-156d3ee34a500e8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O21 - SSODL: drivers - {521837CD-A3A8-4970-9CEE-01DB39ACF034} - (no file)

puis clic sur le bouton "Fix Checked"
puis tu me repost un rapport hijackthis.

Ajouter un commentaire

annie123- 14 juil. 2008 à 06:07

Bonjour
j'ai fait ce que tu m'as dit. Voici le nouveau rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:04:47, on 13/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\MI-4500X WIRELESS OPTICAL MOUSE\Mouse32a.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Réponse

tribun 34629Messages postés 24 août 2007Date d'inscription 1 juin 2012Dernière intervention 14 juil. 2008 à 06:24

bonjour
va dans ajout et supprimer programme et vois si tu vois sponsor CID et désinstalei
et fait un SDfix , ça devrais régler ton problème !
et nettoie ton pc avec CCLeaner !

http://www.malekal.com/tutorial_SDFix.php

Ajouter un commentaire

Réponse

gil le fantom 2806Messages postés 18 janvier 2008Date d'inscription 17 octobre 2010Dernière intervention 14 juil. 2008 à 08:40

bonjour

comment va ton pc?

comme te dis tribun ,pour nettoyer ton pc installe ccleaner
http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner

je te conseille comme antivirus plutôt antivir, plus leger et plus performant ou avg8 free edition
http://forum.malekal.com/viewtopic.php?f=45&t=11659
http://forum.malekal.com/ftopic3528.php

si tu installe antivir applique ce qui suit:
pour désinstaller avast proprement
http://www.commentcamarche.net/faq/sujet 8172 desinstaller proprement avast

télécharge antivir
http://www.commentcamarche.net/telecharger/telecharger 55 antivir

pour bien régler antivir
http://forum.malekal.com/viewtopic.php?f=45&t=4192
http://www.malekal.com/tutorial_antivir.php

Ajouter un commentaire

annie123- 16 juil. 2008 à 09:35

Bonjour

A priori je n'ai plus de fenêtres intempestives. J'ai fait un nettoyage ccleanner, installé suivant tes conseils antivir à la place de avast, fait un scan de l'ensemble de l'ordinateur (et detecté plusieurs fichiers avec des virus que j'ai mis en quarantaine).

Merci encore une fois pour ton aide et tes conseils.

Annie

Répondre au sujet

Posez votre question

Dossier à la une

Passage au tout numérique : quel coût pour les particuliers ?

Passage au tout numérique : quel coût pour les particuliers ?

Combien cela coûte-t-il au total ? Quelles aides apportent l'état et les acteurs du marché pour alléger cette charge non choisie ? Tous les détails sur Commentçamarche.net.

Virus CiD fenetre pop up [Résolu]

Virus CiD fenetre pop up »

Passage au tout numérique : quel coût pour les particuliers ?