envahi par despublicité !!! [résolue] - Sécurité - Virus
TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !
 

Ajouter une réponse



Mot :   Pseudo :  
 
Bas de page
Auteur
 Sujet : envahi par despublicité !!! [résolue]
 
mimi18_37
Profil : IDNaute
Plus d'informations
n°314119
08-06-2008 à 19:23:47

okokok

j'ai un gros problème! y'a tout le temps des fenètre de pub qui s'ouvre meme quand internet et fermmé! la plus part sont signé CiD!

je suis vraiment vraiment null en informatique
j'ai windows vista , comme antivirus j'ai avast

et s'il quelqu'un pouvait me sauvé a vie je lui en serait éternellement reconnaissante!

(au faite si y'a une manoeuvre trop compliquer à faireje croit que je suis fichu!)


Message édité par mimi18_37 le 12-06-2008 à 18:15:45
Liens sponsorisés


Inscrivez-vous ou connectez-vous pour masquer ceci.

Angeldark
Profil : Helper
Plus d'informations
n°314208
09-06-2008 à 14:13:13

Un bonjour ?

Télécharge Lop S&D.exe (Eric_71) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de LopS&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré (C:\lopR.txt*)


(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
* le nom de la partition peut changer


---------------
Prévention & Protection|Les logiciels gratuits|L'homme du FLCCF
mimi18_37
Profil : IDNaute
Plus d'informations
n°314368
10-06-2008 à 15:23:41

en faite je viens d'apprendre que ma petite soeur avez télécharger msn+ que j'ai supprimer. du coup je n'est plus de pub CiD mais d'autre pub beaucoup moins nombreuse dont une qui reviens souvent : "spyware secure" (je crois) et qui me demande de télécharger quelque chose de payant est-ce que je doit qu'en meme faire ce que tu as dit?

Angeldark
Profil : Helper
Plus d'informations
n°314389
10-06-2008 à 17:11:03
IDfix666
Profil : IDNaute
Plus d'informations
n°314440
10-06-2008 à 19:34:29

Voilou alors je lisais par-ci par-là les problèmes déjà rencontrés en j'ai en effet une saleté de spyware dans le n'ordinateur ... J'en ai déjà eu un que j'avais déjà réussi à enlever, j'ai ad aware, spybot search and destroy, et spyware, tous les trois n'ayant pas réussi à me trouver ce spyware ... Tout comme mimi 18 j'ai régulièrement une pub spyware secure qui apparaît comme ça alors que je navigue sur internet (et d'autres adresses, parfois une page qu'il ne me trouve même pas, des voyages ...) et j'ai donc fait que tu as dit angel dark et le rapport est le suivant ...
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Julien ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 10/06/2008 | 19:27:45,23 ] [ PC : PERSONNE-MM8KU2 ]
[ MAJ : 07-06-2008 | 22:15 ]

-------------[ Listing des dossiers dans Application Data ]------------

[20/08/2007|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
[28/07/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[21/08/2007|11:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[02/03/2008|00:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[02/03/2008|00:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[08/06/2008|13:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[28/07/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[19/01/2002|01:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[19/12/2007|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
[30/04/2008|10:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[13/08/2007|21:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[25/05/2008|21:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[13/08/2007|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[05/03/2008|22:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[05/06/2008|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[03/11/2007|18:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[08/06/2008|15:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[26/04/2008|20:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[03/10/2007|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[09/06/2008|22:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[10/06/2008|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[09/06/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[12/08/2007|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[14/08/2007|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/03/2008|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2007|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[19/01/2002|01:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[19/01/2002|01:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[27/08/2007|16:52] C:\DOCUME~1\Julien\APPLIC~1\Adobe
[03/09/2007|10:36] C:\DOCUME~1\Julien\APPLIC~1\AdobeUM
[02/03/2008|00:44] C:\DOCUME~1\Julien\APPLIC~1\Apple Computer
[28/07/2007|22:42] C:\DOCUME~1\Julien\APPLIC~1\CyberLink
[19/01/2002|01:18] C:\DOCUME~1\Julien\APPLIC~1\desktop.ini
[20/03/2008|21:06] C:\DOCUME~1\Julien\APPLIC~1\EPSON
[07/06/2008|13:31] C:\DOCUME~1\Julien\APPLIC~1\fretsonfire
[20/01/2008|13:31] C:\DOCUME~1\Julien\APPLIC~1\GDIPFONTCACHEV1.DAT
[13/08/2007|21:46] C:\DOCUME~1\Julien\APPLIC~1\Google
[30/04/2008|10:40] C:\DOCUME~1\Julien\APPLIC~1\Identities
[12/01/2008|20:25] C:\DOCUME~1\Julien\APPLIC~1\InstallShield
[19/12/2007|18:56] C:\DOCUME~1\Julien\APPLIC~1\Lavasoft
[08/06/2008|22:52] C:\DOCUME~1\Julien\APPLIC~1\LimeWire
[14/08/2007|17:04] C:\DOCUME~1\Julien\APPLIC~1\Macromedia
[28/07/2007|23:38] C:\DOCUME~1\Julien\APPLIC~1\Micro Application
[24/03/2008|19:24] C:\DOCUME~1\Julien\APPLIC~1\Microsoft
[13/08/2007|21:50] C:\DOCUME~1\Julien\APPLIC~1\Mozilla
[06/06/2008|17:49] C:\DOCUME~1\Julien\APPLIC~1\MSN6
[08/06/2008|15:30] C:\DOCUME~1\Julien\APPLIC~1\PlayFirst
[24/01/2008|23:16] C:\DOCUME~1\Julien\APPLIC~1\Skype
[13/08/2007|21:45] C:\DOCUME~1\Julien\APPLIC~1\Sun
[06/01/2008|23:35] C:\DOCUME~1\Julien\APPLIC~1\teamspeak2
[08/02/2008|18:56] C:\DOCUME~1\Julien\APPLIC~1\TuxPaint
[02/03/2008|00:46] C:\DOCUME~1\Julien\APPLIC~1\vlc
[14/08/2007|12:04] C:\DOCUME~1\Julien\APPLIC~1\WinRAR
[30/04/2008|10:40] C:\DOCUME~1\Julien\APPLIC~1\Zylom

[14/08/2007|15:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/01/2002|01:23] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[11/04/2008 11:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/06/2008 17:48][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[28/07/2007|22:55] C:\Program Files\Adobe
[28/07/2007|22:17] C:\Program Files\Ahead
[28/07/2007|23:17] C:\Program Files\Alwil Software
[10/06/2008|18:52] C:\Program Files\AntiVir PersonalEdition Classic
[02/03/2008|00:43] C:\Program Files\Apple Software Update
[15/11/2007|21:44] C:\Program Files\AV Vcs 6.0 DIAMOND
[08/06/2008|13:41] C:\Program Files\Boonty
[09/06/2008|13:05] C:\Program Files\BoontyGames
[14/08/2007|16:46] C:\Program Files\Common Files
[19/01/2002|01:22] C:\Program Files\ComPlus Applications
[28/07/2007|22:20] C:\Program Files\CyberLink
[07/09/2007|19:53] C:\Program Files\Diddl Screenmate
[12/01/2008|20:25] C:\Program Files\DIFX
[12/09/2007|20:30] C:\Program Files\directx
[15/11/2007|17:46] C:\Program Files\eMule
[12/08/2007|18:46] C:\Program Files\EPSON
[05/03/2008|22:11] C:\Program Files\Fichiers communs
[29/07/2007|07:55] C:\Program Files\Futuremark
[14/08/2007|11:33] C:\Program Files\Google
[25/09/2007|21:10] C:\Program Files\Heroes2
[25/12/2007|01:41] C:\Program Files\HLSW
[25/05/2008|22:00] C:\Program Files\InstallShield Installation Information
[13/05/2008|21:08] C:\Program Files\Internet Explorer
[22/03/2008|19:59] C:\Program Files\Java
[27/03/2008|18:42] C:\Program Files\JoWooD
[19/12/2007|18:56] C:\Program Files\Lavasoft
[02/05/2008|16:27] C:\Program Files\LimeWire
[13/08/2007|18:58] C:\Program Files\Messenger
[31/03/2008|22:30] C:\Program Files\Messenger Plus! Live
[28/07/2007|23:08] C:\Program Files\Micro Application
[19/01/2002|01:23] C:\Program Files\microsoft frontpage
[28/07/2007|22:52] C:\Program Files\Microsoft Office
[28/07/2007|22:28] C:\Program Files\Movie Maker
[10/06/2008|19:20] C:\Program Files\Mozilla Firefox
[05/06/2008|20:34] C:\Program Files\MSN
[19/01/2002|01:21] C:\Program Files\MSN Gaming Zone
[02/12/2007|16:25] C:\Program Files\MSXML 4.0
[03/12/2007|19:54] C:\Program Files\NetMeeting
[12/08/2007|19:08] C:\Program Files\Outlook Express
[06/03/2008|15:11] C:\Program Files\Pac-Man World 2
[09/06/2008|13:09] C:\Program Files\Playfirst
[30/12/2007|20:33] C:\Program Files\Promolettres
[02/03/2008|00:43] C:\Program Files\QuickTime
[12/01/2008|20:25] C:\Program Files\Razer
[17/09/2007|18:51] C:\Program Files\Real
[15/08/2007|02:17] C:\Program Files\RngInterstitial.dll
[13/09/2007|18:57] C:\Program Files\Rockstar Games
[01/12/2007|18:17] C:\Program Files\Samsung
[19/01/2002|01:21] C:\Program Files\Services en ligne
[19/01/2002|01:36] C:\Program Files\Silicon Image
[03/10/2007|18:20] C:\Program Files\Skype
[09/06/2008|22:29] C:\Program Files\Spybot - Search & Destroy
[10/06/2008|18:14] C:\Program Files\SpywareBlaster
[10/03/2008|18:19] C:\Program Files\StuffPlug3
[14/08/2007|18:12] C:\Program Files\Teamspeak2_RC2
[10/06/2008|19:23] C:\Program Files\Trend Micro
[07/06/2008|11:12] C:\Program Files\TuxPaint
[19/01/2002|01:28] C:\Program Files\Uninstall Information
[13/08/2007|22:00] C:\Program Files\Valve
[02/03/2008|00:46] C:\Program Files\VideoLAN
[13/09/2007|17:17] C:\Program Files\Viewpoint
[17/05/2008|22:04] C:\Program Files\Windows Journal Viewer
[05/03/2008|22:11] C:\Program Files\Windows Live
[14/08/2007|15:36] C:\Program Files\Windows Media Connect 2
[14/08/2007|15:35] C:\Program Files\Windows Media Player
[28/07/2007|22:27] C:\Program Files\Windows NT
[19/01/2002|01:43] C:\Program Files\WindowsUpdate
[14/08/2007|12:04] C:\Program Files\WinRAR
[13/08/2007|21:47] C:\Program Files\WordBiz
[19/01/2002|01:23] C:\Program Files\xerox
[08/01/2008|21:06] C:\Program Files\ZNsoft Corporation
[25/05/2008|22:11] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[28/07/2007|23:09] C:\Program Files\Fichiers communs\Acronis
[28/07/2007|22:55] C:\Program Files\Fichiers communs\Adobe
[28/07/2007|22:15] C:\Program Files\Fichiers communs\Ahead
[02/03/2008|00:42] C:\Program Files\Fichiers communs\Apple
[08/06/2008|13:49] C:\Program Files\Fichiers communs\BOONTY Shared
[28/07/2007|22:52] C:\Program Files\Fichiers communs\Designer
[12/08/2007|18:47] C:\Program Files\Fichiers communs\InstallShield
[13/08/2007|21:44] C:\Program Files\Fichiers communs\Java
[26/08/2007|17:47] C:\Program Files\Fichiers communs\logishrd
[17/05/2008|22:04] C:\Program Files\Fichiers communs\Microsoft Shared
[19/01/2002|01:22] C:\Program Files\Fichiers communs\MSSoap
[19/01/2002|01:18] C:\Program Files\Fichiers communs\ODBC
[17/09/2007|18:51] C:\Program Files\Fichiers communs\Real
[19/01/2002|01:22] C:\Program Files\Fichiers communs\Services
[03/10/2007|18:20] C:\Program Files\Fichiers communs\Skype
[13/08/2007|18:39] C:\Program Files\Fichiers communs\Softwin
[19/01/2002|01:18] C:\Program Files\Fichiers communs\SpeechEngines
[12/08/2007|19:08] C:\Program Files\Fichiers communs\System
[05/03/2008|22:11] C:\Program Files\Fichiers communs\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 44

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 8749 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-10 19:28:44
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\bdxrfhu_navps.dat
C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\bdxrfhu.exe
C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\bdxrfhu.dat
C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\kimkh_navps.dat
C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\bdxrfhu_nav.dat
C:\DOCUME~1\Julien\LOCALS~1\APPLIC~1\kimkh_nav.dat
! EGDACCESS !

=> C:\Documents and Settings\Julien\Application Data\Macromedia\Flash Player\#SharedObjects\LADJ4DB3\crackle.com
=> C:\Documents and Settings\Julien\Application Data\Macromedia\Flash Player\#SharedObjects\LADJ4DB3\crackle.com\crackleSettings.sol
=> C:\Documents and Settings\Julien\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com
=> C:\Documents and Settings\Julien\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol
=> C:\Documents and Settings\Julien\Bureau\Zic\Helloween\Gambling With The Devil\01 - crack the riddle (intro).mp3
=> C:\Documents and Settings\Julien\Bureau\Zic\Ill Ni¤o\Enigma\12-ill_nino-kellogs_bombs_and_cracker_jacks.mp3
=> C:\Documents and Settings\Julien\Bureau\Zic\Scoldt\First Cut\04 - Crack Down.mp3


[F:897][D:41]-> C:\DOCUME~1\Julien\LOCALS~1\Temp
[F:6][D:0]-> C:\DOCUME~1\Julien\Cookies
[F:1319][D:32]-> C:\DOCUME~1\Julien\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 19:29:14,75 ]----------------------

IDfix666
Profil : IDNaute
Plus d'informations
n°314441
10-06-2008 à 19:34:55

En espérant que vous puissiez m'aider car mon ordi rame c'est une horreur :s

Angeldark
Profil : Helper
Plus d'informations
n°314444
10-06-2008 à 19:38:20

Re,

Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.


---------------
Prévention & Protection|Les logiciels gratuits|L'homme du FLCCF
mimi18_37
Profil : IDNaute
Plus d'informations
n°314545
11-06-2008 à 10:42:28

désolé d'avoir mis autant de temps
ca y voila le rapport:
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : ben zid ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 11/06/2008 | 10:34:00,83 ] [ PC : PC-DE-BENZID ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[22/02/2008|22:08] C:\Users\BENZID~1\AppData\Roaming\Adobe\Flash Player
[02/06/2007|20:57] C:\Users\BENZID~1\AppData\Roaming\Adobe\Acrobat


[27/08/2007|19:24] C:\Users\BENZID~1\AppData\Roaming\DivX\DivX Codec
[11/07/2007|16:31] C:\Users\BENZID~1\AppData\Roaming\DivX\DivX Player

[31/01/2008|23:47] C:\Users\BENZID~1\AppData\Roaming\EoRezo\eoDesktop
[31/01/2008|18:47] C:\Users\BENZID~1\AppData\Roaming\EoRezo\db
[31/01/2008|00:15] C:\Users\BENZID~1\AppData\Roaming\EoRezo\eoStats
[30/01/2008|23:57] C:\Users\BENZID~1\AppData\Roaming\EoRezo\EoWeather

[13/10/2007|18:15] C:\Users\BENZID~1\AppData\Roaming\EPSON\Creativity Suite
[24/08/2007|17:17] C:\Users\BENZID~1\AppData\Roaming\EPSON\ESCNDV

[30/05/2008|16:35] C:\Users\BENZID~1\AppData\Roaming\Google\Local Search History

[02/06/2007|19:11] C:\Users\BENZID~1\AppData\Roaming\Identities\{06C40E65-1BAE-4B4C-9212-EA555E97D93A}

[01/09/2007|21:20] C:\Users\BENZID~1\AppData\Roaming\InstallShield\ISEngine12.0

[02/06/2007|21:35] C:\Users\BENZID~1\AppData\Roaming\Macromedia\Flash Player


[06/06/2008|18:21] C:\Users\BENZID~1\AppData\Roaming\Microsoft\MSN Messenger
[14/05/2008|20:18] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Windows Photo Gallery
[03/09/2007|10:32] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Internet Explorer
[12/08/2007|19:43] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Crypto
[30/06/2007|14:16] C:\Users\BENZID~1\AppData\Roaming\Microsoft\IdentityCRL
[28/06/2007|12:56] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Windows Live Call
[16/06/2007|10:29] C:\Users\BENZID~1\AppData\Roaming\Microsoft\eHome
[08/06/2007|21:11] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Speech
[08/06/2007|21:08] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Windows
[02/06/2007|22:16] C:\Users\BENZID~1\AppData\Roaming\Microsoft\WLTB Custom Buttons
[02/06/2007|21:59] C:\Users\BENZID~1\AppData\Roaming\Microsoft\HTML Help
[02/06/2007|19:12] C:\Users\BENZID~1\AppData\Roaming\Microsoft\SystemCertificates
[02/06/2007|19:11] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Protect
[02/06/2007|19:10] C:\Users\BENZID~1\AppData\Roaming\Microsoft\Credentials

[09/02/2008|21:17] C:\Users\BENZID~1\AppData\Roaming\Mozilla\Firefox

[30/12/2007|20:14] C:\Users\BENZID~1\AppData\Roaming\OpenOffice.org2\user

[08/06/2008|16:02] C:\Users\BENZID~1\AppData\Roaming\PC Tools\Spyware Doctor


[07/10/2007|15:37] C:\Users\BENZID~1\AppData\Roaming\Talkback\MozillaOrg


----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[02/04/2008 15:54][--a------] C:\Windows\tasks\Norton Security Scan.job
[10/06/2008 18:35][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[11/06/2008 10:33][--ah-----] C:\Windows\tasks\SA.DAT
[11/06/2008 10:32][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[06/01/2006|19:50] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/06/2008|21:36] C:\ProgramData\Avira
[02/06/2007|19:07] C:\ProgramData\Bureau
[06/01/2006|20:00] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[02/06/2007|19:07] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[12/06/2007|22:22] C:\ProgramData\Google
[10/06/2008|18:01] C:\ProgramData\Google Updater
[02/06/2007|19:15] C:\ProgramData\InstallShield
[02/06/2007|19:07] C:\ProgramData\Menu D‚marrer
[03/06/2007|09:37] C:\ProgramData\Microsoft
[02/06/2007|19:07] C:\ProgramData\ModŠles
[01/07/2007|12:40] C:\ProgramData\Mozilla
[02/11/2006|15:02] C:\ProgramData\Start Menu
[09/06/2007|10:07] C:\ProgramData\Symantec
[11/06/2008|10:33] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[03/06/2007|10:09] C:\ProgramData\UDL
[18/11/2007|16:05] C:\ProgramData\WLInstaller
[02/06/2007|20:15] C:\ProgramData\Yahoo! Companion

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[02/06/2007|20:19] C:\Program Files\ABBYY FineReader 6.0 Sprint
[02/06/2007|19:15] C:\Program Files\Acer Inc
[06/01/2006|20:04] C:\Program Files\Acer Zone
[06/01/2006|19:50] C:\Program Files\Adobe
[08/06/2008|13:24] C:\Program Files\Alwil Software
[24/12/2007|18:35] C:\Program Files\Common Files
[06/01/2006|19:59] C:\Program Files\CyberLink
[30/08/2007|11:06] C:\Program Files\desktop.ini
[25/08/2007|20:10] C:\Program Files\DivX
[01/02/2008|00:05] C:\Program Files\EoRezo
[03/06/2007|10:06] C:\Program Files\epson
[02/06/2007|19:07] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/06/2008|16:22] C:\Program Files\Google
[01/09/2007|21:21] C:\Program Files\Hercules
[12/04/2008|19:54] C:\Program Files\InstallShield Installation Information
[10/04/2008|11:03] C:\Program Files\Internet Explorer
[24/12/2007|18:38] C:\Program Files\Java
[17/06/2007|11:20] C:\Program Files\LG Electronics
[04/06/2007|12:29] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[18/11/2007|16:31] C:\Program Files\Microsoft SQL Server Compact Edition
[02/11/2006|14:42] C:\Program Files\Movie Maker
[08/06/2008|20:57] C:\Program Files\Mozilla Firefox
[31/01/2008|23:05] C:\Program Files\Mozilla Firefox 3 Beta 2
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[04/06/2007|12:28] C:\Program Files\MSXML 4.0
[06/01/2006|19:55] C:\Program Files\NewTech Infosystems
[02/04/2008|15:54] C:\Program Files\Norton Security Scan
[24/12/2007|18:42] C:\Program Files\OpenOffice.org 2.3
[14/04/2008|18:16] C:\Program Files\Picasa2
[06/01/2006|19:37] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[16/06/2007|11:00] C:\Program Files\Samsung
[10/06/2008|10:06] C:\Program Files\Spyware Doctor
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[02/02/2008|01:44] C:\Program Files\Veoh Networks
[30/08/2007|11:03] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[04/06/2007|13:11] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[28/02/2008|12:15] C:\Program Files\Windows Live
[18/11/2007|19:20] C:\Program Files\Windows Live Toolbar
[15/05/2008|10:25] C:\Program Files\Windows Mail
[14/10/2007|10:49] C:\Program Files\Windows Media Player
[02/06/2007|19:07] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[09/01/2008|16:43] C:\Program Files\Windows Sidebar
[02/06/2007|19:11] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[06/01/2006|19:50] C:\Program Files\Common Files\Adobe
[17/08/2007|14:23] C:\Program Files\Common Files\InstallShield
[24/12/2007|18:35] C:\Program Files\Common Files\Java
[06/01/2006|19:54] C:\Program Files\Common Files\LightScribe
[18/11/2007|16:20] C:\Program Files\Common Files\microsoft shared
[06/01/2006|19:55] C:\Program Files\Common Files\NewTech Infosystems
[25/08/2007|20:10] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[09/06/2007|10:09] C:\Program Files\Common Files\Symantec Shared
[13/06/2007|13:23] C:\Program Files\Common Files\System
[18/11/2007|16:20] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 43

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

C:\Users\BENZID~1\AppData\Local\Temp\bisAEF6.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@www.adserver5[2].txt
C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@banner.cotedazurpalace[2].txt
C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@cotedazurpalace[2].txt
C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@adopt.euroclick[1].txt
C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@2xmoinscher[2].txt
C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@www.2xmoinscher[1].txt

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-11 10:34:39
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Windows\system32\nvs2.inf
C:\Users\BENZID~1\AppData\Local\geyimu_navps.dat
C:\Users\BENZID~1\AppData\Local\geyimu.exe
C:\Users\BENZID~1\AppData\Local\geyimu.dat
C:\Users\BENZID~1\AppData\Local\geyimu_nav.dat
! EGDACCESS !

=> C:\Users\ben zid\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XWZ5Z2UK\crackle.com
=> C:\Users\ben zid\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\XWZ5Z2UK\crackle.com\crackleSettings.sol
=> C:\Users\ben zid\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com
=> C:\Users\ben zid\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol
=> C:\Users\ben zid\AppData\Roaming\Microsoft\Windows\Cookies\Low\ben_zid@crackle[2].txt


[F:3717][D:101]-> C:\Users\BENZID~1\AppData\Local\Temp
[F:1304][D:1]-> C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:314][D:9]-> C:\Users\BENZID~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:691][D:32]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 10:38:06,72 ]----------------------

Angeldark
Profil : Helper
Plus d'informations
n°314568
11-06-2008 à 12:31:23

Euh j'ai dit option 2.


---------------
Prévention & Protection|Les logiciels gratuits|L'homme du FLCCF
mimi18_37
Profil : IDNaute
Plus d'informations
n°314583
11-06-2008 à 13:04:10

euh désolé le 1er rapport ce n'était pas le mien mais celui de quelqu'un d'autre
mais bon j'ai fait l'option 2 et voila mon 2ème rapport! :)


-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : ben zid ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 11/06/2008 | 12:56:40,19 ] [ PC : PC-DE-BENZID ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@www.adserver5[2].txt
Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@cotedazurpalace[2].txt
Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@adopt.euroclick[1].txt
Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@2xmoinscher[2].txt
Supprimé! - C:\Users\BENZID~1\AppData\Roaming\MICROS~1\Windows\Cookies\ben_zid@www.2xmoinscher[1].txt
Supprimé! - C:\Users\BENZID~1\AppData\Local\Temp\bisAEF6.exe
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[22/02/2008|22:08] C:\Users\BENZID~1\AppData\Roaming\Adobe\Flash Player
[02/06/2007|20:57] C:\Users\BENZID~1\AppData\Roaming\Adobe\Acrobat


[27/08/2007|19:24] C:\Users\BENZID~1\AppData\Roaming\DivX\DivX Codec
[11/07/2007|16:31] C:\Users\BENZID~1\AppData\Roaming\DivX\DivX Player

[31/01/2008|23:47] C:\Users\BENZID~1\AppData\Roaming\EoRezo\eoDesktop
[31/01/2008|18:47] C:\Users\BENZID~1\AppData\Roaming\EoRezo\db
[31/01/2008|00:15] C:\Users\BENZID~1\AppData\Roaming\EoRezo\