Pub CID qui ne fait qu'apparaitre

Bonjour a tous en fait je reçois a chaque fois que je me connecte sur internet des pub portant le nom de CID :s

Es-ce que quelqu'un pourrait m'aider ??

Merci d'avance

Répondre

Inscrivez-vous ou connectez-vous pour masquer ceci.

Bonjour,

Télécharge Lop S&D.zip.
Dézippe-le sur ton Bureau uniquement.
Ouvre le dossier Lop S&D puis double-clique sur Scan.bat. Tape sur "R" puis valide en appuyant sur "Entrée".
Un rapport sera généré, poste son contenu ici.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

Voici le rapport que tu m'a demandé :

-------------------------------[ Lop S&D 1.1 ]------------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Filipe\Bureau\Lop S&D"

Rapport crée : Le 06/10/2007 à 15:39:46,60 PC : XPSP2-EEAF8AD3B

! Faire analyser le rapport par un Helper avant intervention !

---------------------[ Listing des dossiers dans Applications Data ]--------------------

C:\Documents and Settings\Administrateur\Application Data\desktop.ini
C:\Documents and Settings\Administrateur\Application Data\Microsoft

C:\Documents and Settings\All Users\Application Data\LiteAntiMoreAtom
C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
C:\Documents and Settings\All Users\Application Data\Apple
C:\Documents and Settings\All Users\Application Data\TomTom
C:\Documents and Settings\All Users\Application Data\Symantec
C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
C:\Documents and Settings\All Users\Application Data\VideoEgg
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Autodesk
C:\Documents and Settings\All Users\Application Data\Sony Ericsson
C:\Documents and Settings\All Users\Application Data\Yahoo!
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
C:\Documents and Settings\All Users\Application Data\nView_Profiles
C:\Documents and Settings\All Users\Application Data\desktop.ini

C:\Documents and Settings\Default User\Application Data\desktop.ini
C:\Documents and Settings\Default User\Application Data\Microsoft

C:\Documents and Settings\Filipe\Application Data\U3
C:\Documents and Settings\Filipe\Application Data\idol time
C:\Documents and Settings\Filipe\Application Data\InstallShield
C:\Documents and Settings\Filipe\Application Data\Microsoft
C:\Documents and Settings\Filipe\Application Data\TransRender
C:\Documents and Settings\Filipe\Application Data\teamspeak2
C:\Documents and Settings\Filipe\Application Data\Styler
C:\Documents and Settings\Filipe\Application Data\Ahead
C:\Documents and Settings\Filipe\Application Data\VideoEgg
C:\Documents and Settings\Filipe\Application Data\Google
C:\Documents and Settings\Filipe\Application Data\ConvertTemp
C:\Documents and Settings\Filipe\Application Data\Temporary
C:\Documents and Settings\Filipe\Application Data\Samsung
C:\Documents and Settings\Filipe\Application Data\InternetCalls
C:\Documents and Settings\Filipe\Application Data\Notepad++
C:\Documents and Settings\Filipe\Application Data\Sun
C:\Documents and Settings\Filipe\Application Data\Adobe
C:\Documents and Settings\Filipe\Application Data\InterTrust
C:\Documents and Settings\Filipe\Application Data\Mozilla
C:\Documents and Settings\Filipe\Application Data\Symantec
C:\Documents and Settings\Filipe\Application Data\ArcSoft
C:\Documents and Settings\Filipe\Application Data\Macromedia
C:\Documents and Settings\Filipe\Application Data\Apple Computer
C:\Documents and Settings\Filipe\Application Data\desktop.ini
C:\Documents and Settings\Filipe\Application Data\Identities

C:\Documents and Settings\Invit‚\Application Data\Microsoft
C:\Documents and Settings\Invit‚\Application Data\Macromedia
C:\Documents and Settings\Invit‚\Application Data\Google
C:\Documents and Settings\Invit‚\Application Data\Identities
C:\Documents and Settings\Invit‚\Application Data\desktop.ini

C:\Documents and Settings\LocalService\Application Data\Microsoft

C:\Documents and Settings\NetworkService\Application Data\Microsoft

C:\Documents and Settings\sergio\Application Data\uTorrent
C:\Documents and Settings\sergio\Application Data\Mozilla
C:\Documents and Settings\sergio\Application Data\Microsoft
C:\Documents and Settings\sergio\Application Data\Macromedia
C:\Documents and Settings\sergio\Application Data\Google
C:\Documents and Settings\sergio\Application Data\Identities
C:\Documents and Settings\sergio\Application Data\desktop.ini

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\A3A1E783918664E7.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Filipe.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

--------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Alcohol Soft
C:\Program Files\Altiris
C:\Program Files\Analog Devices
C:\Program Files\Apple Software Update
C:\Program Files\Ashampoo
C:\Program Files\ASUS
C:\Program Files\Autodesk
C:\Program Files\AviSynth 2.5
C:\Program Files\CDBurnerXP Pro 3
C:\Program Files\ComPlus Applications
C:\Program Files\Dial-Messenger
C:\Program Files\DIFX
C:\Program Files\Electronic Arts
C:\Program Files\eMule
C:\Program Files\Everest Ultimate Edition 2006
C:\Program Files\Fichiers communs
C:\Program Files\Free Audio Pack
C:\Program Files\GameSpy Arcade
C:\Program Files\Google
C:\Program Files\Hercules
C:\Program Files\Hewlett-Packard
C:\Program Files\hp deskjet 940c series
C:\Program Files\idol time
C:\Program Files\Intel
C:\Program Files\Internet Explorer
C:\Program Files\iPod
C:\Program Files\iTunes
C:\Program Files\Java
C:\Program Files\Lavasoft
C:\Program Files\Marvell
C:\Program Files\Messenger Plus! Live
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft.NET
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\msn gaming zone
C:\Program Files\MSN Messenger
C:\Program Files\MSXML 4.0
C:\Program Files\Nero
C:\Program Files\netmeeting
C:\Program Files\Norton Internet Security
C:\Program Files\Outlook Express
C:\Program Files\Philips Flat Panel Adjust
C:\Program Files\PhotoFiltre Studio
C:\Program Files\pspvideo9
C:\Program Files\QuickTime
C:\Program Files\Samsung
C:\Program Files\Services en ligne
C:\Program Files\Skype
C:\Program Files\Softick
C:\Program Files\Sony Ericsson
C:\Program Files\Stardock
C:\Program Files\Steam
C:\Program Files\Styler
C:\Program Files\Symantec
C:\Program Files\Teamspeak2_RC2
C:\Program Files\Thoosje Vista Sidebar v1.7.8
C:\Program Files\TomTom DesktopSuite
C:\Program Files\TomTom HOME
C:\Program Files\totalcmd
C:\Program Files\Ulead Systems
C:\Program Files\Valve
C:\Program Files\VideoEgg
C:\Program Files\Windows Live
C:\Program Files\Windows Media Connect 2
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\xerox
C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]-----

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\Apple
C:\Program Files\Fichiers communs\ArcSoft
C:\Program Files\Fichiers communs\DESIGNER
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\Symantec Shared
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Teleca Shared

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"more atom free mapi"="C:\\Documents and Settings\\All Users\\Application Data\\LiteAntiMoreAtom\\Grim Flap.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"Trans Mail"="C:\\DOCUME~1\\Filipe\\APPLIC~1\\IDOLTI~1\\Beep axis.exe"

-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

C:\Documents and settings\All Users\Application Data\LiteAntiMoreAtom
C:\Documents and settings\Filipe\Application Data\IDOLTI~1
C:\Program Files\IDOLTI~1
C:\WINDOWS\Prefetch\GRIM FLAP.EXE-22259356.pf
C:\WINDOWS\tasks\A3A1E783918664E7.job

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : MODIFIE

127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

--------------------[ Recherche d'autres infections ]---------------------

--------------------[ Fin du rapport à 15:40:00,51 ]----------------------

Répondre à rpzt_guesh

Re,

On passe à la suppression

Ouvre le dossier Lop S&D puis double-clique sur Scan.bat. Tape sur "S" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

re voici ce que tu ma demandé :

-------------------------------[ Lop S&D 1.1 ]------------------------------

Version : Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

Lancé depuis : "C:\Documents and Settings\Filipe\Bureau\Lop S&D"

Rapport crée : Le 06/10/2007 à 15:47:17,79 PC : XPSP2-EEAF8AD3B

! Faire analyser le rapport par un Helper avant intervention !

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////////

Supprimé - C:\WINDOWS\Prefetch\GRIM FLAP.EXE-22259356.pf
Supprimé - C:\Documents and settings\All Users\Application Data\LiteAntiMoreAtom
Supprimé - C:\Documents and settings\Filipe\Application Data\IDOLTI~1
Supprimé - C:\Program Files\IDOLTI~1
Supprimé - C:\WINDOWS\tasks\A3A1E783918664E7.job
Restauré - Fichier Hosts

\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Copié ! - [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
Copié ! - [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]
Supprimé - HKLM\Software\Microsoft\Windows\CurrentVersion\Run | more atom free mapi
Supprimé - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Trans Mail

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

---------------------[ Listing des dossiers dans Applications Data ]--------------------

C:\Documents and Settings\Administrateur\Application Data\desktop.ini
C:\Documents and Settings\Administrateur\Application Data\Microsoft

C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
C:\Documents and Settings\All Users\Application Data\Apple
C:\Documents and Settings\All Users\Application Data\TomTom
C:\Documents and Settings\All Users\Application Data\Symantec
C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
C:\Documents and Settings\All Users\Application Data\VideoEgg
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Autodesk
C:\Documents and Settings\All Users\Application Data\Sony Ericsson
C:\Documents and Settings\All Users\Application Data\Yahoo!
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
C:\Documents and Settings\All Users\Application Data\nView_Profiles
C:\Documents and Settings\All Users\Application Data\desktop.ini

C:\Documents and Settings\Default User\Application Data\desktop.ini
C:\Documents and Settings\Default User\Application Data\Microsoft

C:\Documents and Settings\Filipe\Application Data\U3
C:\Documents and Settings\Filipe\Application Data\InstallShield
C:\Documents and Settings\Filipe\Application Data\Microsoft
C:\Documents and Settings\Filipe\Application Data\TransRender
C:\Documents and Settings\Filipe\Application Data\teamspeak2
C:\Documents and Settings\Filipe\Application Data\Styler
C:\Documents and Settings\Filipe\Application Data\Ahead
C:\Documents and Settings\Filipe\Application Data\VideoEgg
C:\Documents and Settings\Filipe\Application Data\Google
C:\Documents and Settings\Filipe\Application Data\ConvertTemp
C:\Documents and Settings\Filipe\Application Data\Temporary
C:\Documents and Settings\Filipe\Application Data\Samsung
C:\Documents and Settings\Filipe\Application Data\InternetCalls
C:\Documents and Settings\Filipe\Application Data\Notepad++
C:\Documents and Settings\Filipe\Application Data\Sun
C:\Documents and Settings\Filipe\Application Data\Adobe
C:\Documents and Settings\Filipe\Application Data\InterTrust
C:\Documents and Settings\Filipe\Application Data\Mozilla
C:\Documents and Settings\Filipe\Application Data\Symantec
C:\Documents and Settings\Filipe\Application Data\ArcSoft
C:\Documents and Settings\Filipe\Application Data\Macromedia
C:\Documents and Settings\Filipe\Application Data\Apple Computer
C:\Documents and Settings\Filipe\Application Data\desktop.ini
C:\Documents and Settings\Filipe\Application Data\Identities

C:\Documents and Settings\Invit‚\Application Data\Microsoft
C:\Documents and Settings\Invit‚\Application Data\Macromedia
C:\Documents and Settings\Invit‚\Application Data\Google
C:\Documents and Settings\Invit‚\Application Data\Identities
C:\Documents and Settings\Invit‚\Application Data\desktop.ini

C:\Documents and Settings\LocalService\Application Data\Microsoft

C:\Documents and Settings\NetworkService\Application Data\Microsoft

C:\Documents and Settings\sergio\Application Data\uTorrent
C:\Documents and Settings\sergio\Application Data\Mozilla
C:\Documents and Settings\sergio\Application Data\Microsoft
C:\Documents and Settings\sergio\Application Data\Macromedia
C:\Documents and Settings\sergio\Application Data\Google
C:\Documents and Settings\sergio\Application Data\Identities
C:\Documents and Settings\sergio\Application Data\desktop.ini

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Filipe.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

--------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\Adobe
C:\Program Files\Alcohol Soft
C:\Program Files\Altiris
C:\Program Files\Analog Devices
C:\Program Files\Apple Software Update
C:\Program Files\Ashampoo
C:\Program Files\ASUS
C:\Program Files\Autodesk
C:\Program Files\AviSynth 2.5
C:\Program Files\CDBurnerXP Pro 3
C:\Program Files\ComPlus Applications
C:\Program Files\Dial-Messenger
C:\Program Files\DIFX
C:\Program Files\Electronic Arts
C:\Program Files\eMule
C:\Program Files\Everest Ultimate Edition 2006
C:\Program Files\Fichiers communs
C:\Program Files\Free Audio Pack
C:\Program Files\GameSpy Arcade
C:\Program Files\Google
C:\Program Files\Hercules
C:\Program Files\Hewlett-Packard
C:\Program Files\hp deskjet 940c series
C:\Program Files\Intel
C:\Program Files\Internet Explorer
C:\Program Files\iPod
C:\Program Files\iTunes
C:\Program Files\Java
C:\Program Files\Lavasoft
C:\Program Files\Marvell
C:\Program Files\Messenger Plus! Live
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft.NET
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\msn gaming zone
C:\Program Files\MSN Messenger
C:\Program Files\MSXML 4.0
C:\Program Files\Nero
C:\Program Files\netmeeting
C:\Program Files\Norton Internet Security
C:\Program Files\Outlook Express
C:\Program Files\Philips Flat Panel Adjust
C:\Program Files\PhotoFiltre Studio
C:\Program Files\pspvideo9
C:\Program Files\QuickTime
C:\Program Files\Samsung
C:\Program Files\Services en ligne
C:\Program Files\Skype
C:\Program Files\Softick
C:\Program Files\Sony Ericsson
C:\Program Files\Stardock
C:\Program Files\Steam
C:\Program Files\Styler
C:\Program Files\Symantec
C:\Program Files\Teamspeak2_RC2
C:\Program Files\Thoosje Vista Sidebar v1.7.8
C:\Program Files\TomTom DesktopSuite
C:\Program Files\TomTom HOME
C:\Program Files\totalcmd
C:\Program Files\Ulead Systems
C:\Program Files\Valve
C:\Program Files\VideoEgg
C:\Program Files\Windows Live
C:\Program Files\Windows Media Connect 2
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\xerox
C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]-----

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\Apple
C:\Program Files\Fichiers communs\ArcSoft
C:\Program Files\Fichiers communs\DESIGNER
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\Symantec Shared
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Teleca Shared

----------------------[ Recherche dans le Registre ]----------------------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

-----------------[ Recherche de Fichiers - Dossiers Lop ]-----------------

Aucun dossier Lop trouvé !

--------------------[ Vérification du fichier Hosts ]---------------------

Fichier Hosts : Propre

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvé !

--------------------[ Fin du rapport à 15:47:30,34 ]----------------------

Répondre à rpzt_guesh

C'est mieux ?

Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2

Message édité par Angeldark le 06-10-2007 à 15:41:02

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

voila :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:58:06, on 06/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\smax4.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Steam\steam.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Filipe\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.c [...] x_homepage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IE PopUp-Killer ; Neikeisoft - {49E0E0F0-5C30-11D4-945D-000000000003} - C:\PROGRA~1\Ashampoo\ASHAMP~1\PopUp.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ExAlien] C:\Arquivos de programas\ExAlien.exe
O4 - HKLM\..\Run: [Vistadrv] C:\WINDOWS\VIPv3\VIPhd\vsdrv.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Styler.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install [...] lisher.exe
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 9517 bytes

Répondre à rpzt_guesh

Tu peux répondre à ma question ?

Télécharge Clean.zip (de Malekal),
Décompresse-le sur ton bureau (Clique-Droit/Extraire tout), tu dois obtenir un dossier Clean.
Ouvre le dossier clean, double-clique sur clean.cmd.
Choisis l'option 1 puis patiente. Poste ensuite le contenu du rapport.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

Euhhhh ouai je pense que ca va

06/10/2007 a 16:12:20,59

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32

*** Recherche des fichiers dans C:\Program Files
*** Fin du rapport !

Répondre à rpzt_guesh

D'autres problèmes ?

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

Merci bcp

Répondre à rpzt_guesh

Na na cava !! :d: d

Répondre à rpzt_guesh

ahhh si peut etre

Tu sais pas me dire comment je pourrais faire pour augmenter ma mémoire virtuel?

Répondre à rpzt_guesh

Achète une barrette

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

Ca coute chère?

Et comment on fait pour la vidé un peu cette mémoire?

Répondre à rpzt_guesh

-> section hardware

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
Répondre à Angeldark

Ok merci de ton aide !!

Répondre à rpzt_guesh

Bonjour,

Voila moi aussi j'ai le même probleme ( fenêtres CiD qui ne cessent d'apparaître). J'ai fais un rapport avec lopxpMH2 et voici ce que j'obtient:
Rapport lopxpMH2 version 2.0 fait à 19:44:57,48 le 17/11/2007

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Message édité par chercheur_ le 19-11-2007 à 23:33:54

Répondre à kevin34070

Modération

Merci de créer votre propre sujet

===> A lire par tous avant de poster !

------------------------------ Le meilleur antivirus, c'est vous
Vous avez un problème ? Créez votre propre post !
Répondre à chercheur_

Pub CID qui ne fait qu'apparaitre

Forum Sécurité - Virus : Pub CID qui ne fait qu'apparaitre

Attention