Pc super lent tout d un coup
fredo1968
Messages postés
287
Date d'inscription
Statut
Membre
Dernière intervention
-
Narco!4 Messages postés 2446 Statut Contributeur -
Narco!4 Messages postés 2446 Statut Contributeur -
Bonjour , qq un peut m aider s il vous plait??
j ai mon pc qui est soudain devenu lent
j ai du mal a surfer
les choses que je faisais avant prennent 4 fois plus de temps maintenant
j ai nettoyé avec easy cleaner avec c cleaner mais tjrs pareil
je joins mon log hijackthis a tout hasard
merci d avance
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:30:54, on 18/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -s
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4343 bytes
j ai mon pc qui est soudain devenu lent
j ai du mal a surfer
les choses que je faisais avant prennent 4 fois plus de temps maintenant
j ai nettoyé avec easy cleaner avec c cleaner mais tjrs pareil
je joins mon log hijackthis a tout hasard
merci d avance
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:30:54, on 18/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -s
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4343 bytes
Configuration: Windows XP Firefox 3.0.11
4 réponses
-
-
-
-
c bon ca a marche je te poste donc les rapports toolbars&d lop s&d et hijack this
merci beaucoup pour ton aide . s il y a des trucs a supprimer ds le pc tu peux me le dire stp ??
merci encore et a bientot
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A05
USER : Propriétaire ( Administrator )
BOOT : Fail-safe boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
Firewall : COMODO Firewall Pro 3.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:70 Go (Free:47 Go)
D:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 19/06/2009| 0:40 )
-----------\\ SUPPRESSION
Supprime! - C:\Program Files\Multi_Media_France\INSTALL.LOG
Supprime! - C:\Program Files\MultiMedia France Toolbar\INSTALL.LOG
Supprime! - C:\Program Files\MultiMedia France Toolbar\Multi_Media_France.exe
Supprime! - C:\Program Files\MultiMedia France Toolbar\Multi_Media_France.xpi
Supprime! - C:\Program Files\MultiMedia France Toolbar\UNWISE.EXE
Supprime! - C:\Program Files\Multi_Media_France
Supprime! - C:\Program Files\MultiMedia France Toolbar
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(frederic dupont) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.orange.fr/portail"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 19/06/2009| 0:41 - Option : [2]
-----------\\ Fin du rapport a 0:41:46,45
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A05
USER : Propriétaire ( Administrator )
BOOT : Fail-safe boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
Firewall : COMODO Firewall Pro 3.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:70 Go (Free:47 Go)
D:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 19/06/2009| 0:43 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
Supprime! - C:\Program Files\Viewpoint
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[30/11/2004|18:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\AOL
[28/10/2004|21:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[28/10/2004|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Jasc Software Inc
[19/12/2005|19:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Leadertech
[28/10/2004|21:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[28/10/2004|22:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sonic
[28/10/2004|22:32] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[28/10/2004|22:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver
[22/01/2008|23:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/11/2004|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[03/10/2005|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[07/01/2008|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[10/02/2008|17:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cadsoft
[01/12/2007|17:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[28/10/2004|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[27/12/2006|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/10/2005|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[29/09/2005|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft(2)
[06/10/2005|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Anti-Virus Personal
[15/02/2008|00:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[27/01/2008|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[28/05/2005|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MCA2E.tmp
[23/01/2008|19:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[17/09/2006|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/01/2005|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[21/11/2004|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[28/10/2004|22:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[29/09/2005|19:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[28/10/2004|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[04/08/2005|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[19/12/2006|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[01/12/2007|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[17/03/2008|18:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[16/02/2008|21:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CanonBJ
[16/02/2008|14:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\comodo
[15/03/2008|22:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kaspersky Lab Setup Files
[29/11/2008|18:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[23/05/2008|20:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[21/02/2008|21:40] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[15/02/2008|01:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
[15/02/2008|14:11] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[15/02/2008|23:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion
[30/11/2004|18:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\AOL
[28/10/2004|21:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[28/10/2004|22:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Jasc Software Inc
[28/10/2004|21:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[28/10/2004|22:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sonic
[28/10/2004|22:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[28/10/2004|22:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver
[15/02/2008|01:26] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft
[28/12/2007|00:29] C:\DOCUME~1\FREDER~1\APPLIC~1\Adobe
[22/01/2008|23:14] C:\DOCUME~1\FREDER~1\APPLIC~1\AdobeUM
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\AOL
[09/11/2006|22:45] C:\DOCUME~1\FREDER~1\APPLIC~1\AVG7
[04/03/2005|14:04] C:\DOCUME~1\FREDER~1\APPLIC~1\Checkflow
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\CyberLink
[14/12/2006|17:30] C:\DOCUME~1\FREDER~1\APPLIC~1\DivX
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\eConf
[27/12/2006|00:40] C:\DOCUME~1\FREDER~1\APPLIC~1\Google
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\Help
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\Identities
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\InterTrust
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\Jasc Software Inc
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\Lavasoft
[06/11/2004|01:35] C:\DOCUME~1\FREDER~1\APPLIC~1\Leadertech
[05/11/2004|20:08] C:\DOCUME~1\FREDER~1\APPLIC~1\Macromedia
[19/12/2006|08:59] C:\DOCUME~1\FREDER~1\APPLIC~1\Microsoft
[30/11/2004|19:30] C:\DOCUME~1\FREDER~1\APPLIC~1\Mozilla
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\MSN6
[10/03/2006|14:57] C:\DOCUME~1\FREDER~1\APPLIC~1\Registry Booster
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\SlipStream
[06/11/2004|01:35] C:\DOCUME~1\FREDER~1\APPLIC~1\Sonic
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\spweng
[28/10/2004|22:32] C:\DOCUME~1\FREDER~1\APPLIC~1\Sun
[16/11/2006|17:17] C:\DOCUME~1\FREDER~1\APPLIC~1\Symantec
[02/12/2004|13:50] C:\DOCUME~1\FREDER~1\APPLIC~1\Template
[30/12/2006|20:15] C:\DOCUME~1\FREDER~1\APPLIC~1\vlc
[09/02/2008|14:36] C:\DOCUME~1\FREDER~1\APPLIC~1\WholeSecurity
[12/11/2006|20:55] C:\DOCUME~1\FREDER~1\APPLIC~1\You've Got Pictures Screensaver
[03/10/2005|20:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[18/11/2004|20:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[09/12/2004|21:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[03/10/2005|21:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[30/05/2008|19:33] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[03/10/2005|21:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[15/02/2008|01:26] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[21/02/2007|18:00] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver
[18/02/2008|20:05] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Adobe
[16/02/2008|14:17] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Comodo
[15/02/2008|01:55] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Help
[15/02/2008|01:35] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Identities
[18/02/2008|20:05] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\InterTrust
[15/02/2008|14:48] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Leadertech
[14/06/2008|20:43] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\LimeWire
[16/02/2008|00:37] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\ma-config.com
[15/02/2008|14:15] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Macromedia
[23/05/2008|20:59] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Malwarebytes
[04/11/2008|19:00] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Microsoft
[21/10/2008|20:49] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\mIRC
[26/08/2008|19:52] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Mozilla
[07/04/2008|17:24] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\MSN6
[03/01/2009|22:56] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\OpenOffice.org
[15/02/2008|14:50] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Sonic
[17/02/2008|19:29] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Sun
[16/02/2008|21:38] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\Template
[15/02/2008|14:53] C:\DOCUME~1\PROPRI~1.AJA\APPLIC~1\vlc
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[19/06/2009 00:38][--ah-----] C:\WINDOWS\tasks\SA.DAT
[22/07/2003 18:44][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[22/01/2008|23:10] C:\Program Files\Adobe
[10/11/2006|13:11] C:\Program Files\ADSL Autoconnect
[19/12/2005|20:29] C:\Program Files\ahead
[15/02/2008|23:01] C:\Program Files\Analog Devices
[10/09/2005|17:04] C:\Program Files\ATS2
[17/03/2008|18:45] C:\Program Files\Avira
[15/02/2008|02:09] C:\Program Files\Broadcom
[10/02/2008|17:40] C:\Program Files\Cadsoft
[01/12/2007|17:19] C:\Program Files\Canon
[01/12/2007|17:13] C:\Program Files\CanonBJ
[21/02/2009|22:43] C:\Program Files\CCleaner
[03/03/2005|21:56] C:\Program Files\CheckFlow
[14/02/2008|13:04] C:\Program Files\Common Files
[16/02/2008|14:17] C:\Program Files\COMODO
[28/10/2004|21:58] C:\Program Files\ComPlus Applications
[28/10/2004|22:37] C:\Program Files\Dell
[28/10/2004|22:38] C:\Program Files\Dell Computer
[15/02/2008|18:59] C:\Program Files\directx
[21/01/2005|16:04] C:\Program Files\Disney Interactive
[22/06/2007|22:06] C:\Program Files\DivX
[21/11/2004|19:32] C:\Program Files\DivXCodec
[25/03/2006|23:04] C:\Program Files\eBay
[18/06/2009|23:17] C:\Program Files\eMule
[24/04/2009|19:38] C:\Program Files\Fichiers communs
[21/11/2004|19:32] C:\Program Files\Gabest
[21/11/2004|19:46] C:\Program Files\GDiVX Player
[27/12/2006|00:40] C:\Program Files\Google
[21/11/2004|19:32] C:\Program Files\GordianKnot
[15/10/2007|17:09] C:\Program Files\Grisoft
[29/09/2005|19:21] C:\Program Files\Grisoft(2)
[18/04/2008|18:31] C:\Program Files\Incomplete
[15/06/2008|09:34] C:\Program Files\InstallShield Installation Information
[15/09/2006|17:51] C:\Program Files\interMute
[10/06/2009|07:29] C:\Program Files\Internet Explorer
[10/09/2007|21:35] C:\Program Files\Inventel
[28/10/2004|22:39] C:\Program Files\Jasc Software Inc
[11/01/2009|16:20] C:\Program Files\Java
[03/01/2009|22:53] C:\Program Files\JRE
[24/02/2009|22:27] C:\Program Files\Lavasoft
[28/10/2004|22:41] C:\Program Files\Learn2.com
[16/02/2008|21:55] C:\Program Files\Logitech
[15/02/2008|18:51] C:\Program Files\ma-config.com
[27/04/2009|15:36] C:\Program Files\Malwarebytes' Anti-Malware
[11/09/2008|17:06] C:\Program Files\Messenger
[13/12/2005|21:22] C:\Program Files\Microsoft AntiSpyware
[11/05/2007|20:41] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/10/2004|21:58] C:\Program Files\microsoft frontpage
[23/06/2007|19:44] C:\Program Files\Microsoft Office
[16/02/2008|21:37] C:\Program Files\Microsoft Works
[28/12/2006|15:13] C:\Program Files\MMTVConfig
[09/09/2008|16:20] C:\Program Files\Movie Maker
[19/06/2009|00:37] C:\Program Files\Mozilla Firefox
[28/10/2004|21:58] C:\Program Files\MSN
[28/10/2004|21:58] C:\Program Files\MSN Gaming Zone
[15/02/2009|10:57] C:\Program Files\MSN Messenger
[09/09/2008|16:16] C:\Program Files\NetMeeting
[28/05/2005|22:19] C:\Program Files\NimoCodec Pack
[03/01/2009|22:53] C:\Program Files\OpenOffice.org 3
[09/09/2008|16:16] C:\Program Files\Outlook Express
[19/12/2005|20:22] C:\Program Files\QuickTime
[26/06/2005|01:05] C:\Program Files\QuickZip4
[21/11/2004|19:10] C:\Program Files\Real
[08/03/2005|18:59] C:\Program Files\RegCleaner
[05/11/2004|19:09] C:\Program Files\SAGEM
[14/12/2005|22:15] C:\Program Files\Samsung
[28/10/2004|21:58] C:\Program Files\Services en ligne
[10/12/2004|12:15] C:\Program Files\SLD CODEC PACK 1.5.3
[09/09/2006|12:02] C:\Program Files\Softwin
[19/12/2005|20:30] C:\Program Files\Sonic
[13/01/2006|16:02] C:\Program Files\StofWare
[13/04/2007|14:04] C:\Program Files\Symantec
[18/02/2008|22:22] C:\Program Files\Trend Micro
[14/12/2005|22:13] C:\Program Files\Uninstall Information
[28/11/2004|19:17] C:\Program Files\VideoLAN
[15/02/2008|14:31] C:\Program Files\Wanadoo
[15/02/2008|01:41] C:\Program Files\Wanadoo Messager
[15/02/2008|00:23] C:\Program Files\Windows Live Safety Center
[15/02/2008|00:22] C:\Program Files\Windows Live Toolbar
[19/12/2006|21:09] C:\Program Files\Windows Media Connect 2
[09/09/2008|16:16] C:\Program Files\Windows Media Player
[09/09/2008|16:16] C:\Program Files\Windows NT
[15/02/2008|11:53] C:\Program Files\WindowsUpdate
[27/02/2008|22:28] C:\Program Files\WinRAR
[28/10/2004|21:58] C:\Program Files\XEROX
[06/03/2005|09:55] C:\Program Files\XviD
[14/02/2008|13:03] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2005|14:35] C:\Program Files\Fichiers communs\Adobe
[30/11/2004|18:52] C:\Program Files\Fichiers communs\AOL
[07/11/2007|23:45] C:\Program Files\Fichiers communs\Atlence
[10/02/2008|17:40] C:\Program Files\Fichiers communs\Cadsoft
[25/03/2006|23:03] C:\Program Files\Fichiers communs\InstallShield
[28/10/2004|22:32] C:\Program Files\Fichiers communs\Java
[11/12/2006|22:36] C:\Program Files\Fichiers communs\Kaspersky Lab
[19/11/2006|21:14] C:\Program Files\Fichiers communs\KAV Shared Files
[09/09/2007|17:26] C:\Program Files\Fichiers communs\logishrd
[16/02/2008|21:53] C:\Program Files\Fichiers communs\Logitech
[21/02/2008|21:41] C:\Program Files\Fichiers communs\Microsoft Shared
[28/10/2004|21:58] C:\Program Files\Fichiers communs\MSSoap
[28/10/2004|22:41] C:\Program Files\Fichiers communs\Nullsoft
[28/10/2004|21:58] C:\Program Files\Fichiers communs\ODBC
[28/10/2004|22:40] C:\Program Files\Fichiers communs\Real
[28/10/2004|21:58] C:\Program Files\Fichiers communs\Services
[09/09/2006|12:02] C:\Program Files\Fichiers communs\Softwin
[19/12/2005|20:31] C:\Program Files\Fichiers communs\Sonic
[28/10/2004|21:58] C:\Program Files\Fichiers communs\SpeechEngines
[04/03/2005|22:06] C:\Program Files\Fichiers communs\STOPzilla!
[13/04/2007|17:11] C:\Program Files\Fichiers communs\Symantec Shared
[09/09/2008|16:15] C:\Program Files\Fichiers communs\System
--------------------\\ Process
( 14 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-19 00:45:23
Windows 5.1.2600 Service Pack 3 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:154][D:8]-> C:\DOCUME~1\PROPRI~1.AJA\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\PROPRI~1.AJA\Cookies
[F:6][D:4]-> C:\DOCUME~1\PROPRI~1.AJA\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 19/06/2009| 0:46 - Option : [2]
--------------------\\ Fin du rapport a 0:46:32
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:57:59, on 19/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -s
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
-
-
re narco!4
j ai demaré en mode ss echec
pas moyen de faire marcher toolbar s&d et lop s&d
ccleaner a fonctionné
je te poste mon ancien rapport genproc
merci
~~ Arguments de la procédure ~~
# Détections [1] GenProc 2.591 18/06/2009 à 23:43:22
Lop:le 18/06/2009 à 23:45:01 "C:\Program Files\Multi_Media_France"
Toolbar:le 18/06/2009 à 23:45:43 "C:\Program Files\Multi_Media_France"
# Détections [2] GenProc 2.591 18/06/2009 à 23:47:17
Lop:le 18/06/2009 à 23:48:29 "C:\Program Files\Multi_Media_France"
Toolbar:le 18/06/2009 à 23:49:11 "C:\Program Files\Multi_Media_France" -
# Etape 1/ Télécharge :
ToolsCleaner! http://pc-system.fr/ (A.Rothstein & Dj QUIOU) sur ton Bureau.
# Etape 2/
- Double-clique sur ToolsCleaner2.exe pour le lancer.
- Clique sur Recherche et laisse le scan agir.
- Clique sur Suppression pour finaliser.
- Tu peux, si tu le souhaites, te servir des Options Facultatives.
- Clique sur Quitter pour obtenir le rapport C:\TCleaner.txt
- Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
# Etape 3/
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
