Sujet Précédent Sujet Suivant

Infection trojans

h -  
 h -
Bonjour,

mon ordinateur est infecté.J'effectue en ce moment un scan avec avira antivir.Il a detecté plusieurs trojans.Je ne peux pas installer spybot search and destroy, les maj de avg et malwarebytes sont impossible.Et lorsque je tape le nom d'un antivirus ou autre dans la barre de recherche google il m'ouvre une autre page.
Je n'arrive pas non plus a supprimer les fichiers infectés.
Aidez moi svp!
Merci d'avance...

6 réponses

Réponse 1 / 6
Narco!4 Messages postés 2446 Statut Contributeur 467
 
Bonjour
Télécharge GenProc http://www.genproc.com/GenProc.exe

double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
0
Réponse 2 / 6
h
 
Voici mes différents rapports:

Rapport TB

-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU E2180 @ 2.00GHz )
BIOS : BIOS Date: 05/23/08 16:37:53 Ver: 08.00.15
USER : adil ( Administrator )
BOOT : Fail-safe boot
Antivirus : avast! antivirus 4.7.1043 [VPS 000000-0] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:144 Go (Free:16 Go)
D:\ (Local Disk) - NTFS - Total:144 Go (Free:143 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 31/08/2009|19:14 )

[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...

[Service] ASKService
[Service] ASKUpgrade
C:\Users\adil\AppData\Local\Temp\NERO14754\Toolbar.exe
C:\Program Files\AskBarDis
C:\Program Files\AskBarDis\bar
C:\Program Files\AskBarDis\unins000.dat
C:\Program Files\AskBarDis\unins000.exe
C:\Program Files\AskBarDis\bar\bin
C:\Program Files\AskBarDis\bar\Settings
C:\Program Files\AskBarDis\bar\bin\askBar.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
C:\Program Files\AskBarDis\bar\bin\AskService.exe
C:\Program Files\AskBarDis\bar\bin\AskSplash.exe
C:\Program Files\AskBarDis\bar\bin\AskTBApp.exe
C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
C:\Program Files\AskBarDis\bar\bin\psvince.dll
C:\Program Files\AskBarDis\bar\Settings\AskLogo.ico
C:\Program Files\AskBarDis\bar\Settings\config.dat
C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@contentcatalog.hotbar[1].txt
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@hotbar[2].txt
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@kazaa[1].txt
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@www.kazaa[1].txt
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Bin
C:\Program Files\ShoppingReport\Uninst.exe
C:\Program Files\ShoppingReport\Bin\2.5.0
C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\SmartShopper
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@cs.lp.smartshopper[1].txt
C:\Program Files\Smart-Shopper
C:\Program Files\Smart-Shopper\Bin
C:\Program Files\Smart-Shopper\Uninst.exe
C:\Program Files\Smart-Shopper\Bin\2.6.43
C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
C:\Users\adil\FAVORI~1\µTorrent Search.url
C:\Windows\Prefetch\ZANGOSA.EXE-04729FE4.pf
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Zango
C:\Users\adil\AppData\Roaming\MICROS~1\Windows\Cookies\adil@hosted.zango[2].txt
C:\Program Files\Zango
C:\Program Files\Zango\bin
C:\Program Files\Zango\bin\10.3.85.0
C:\Program Files\Zango\bin\10.3.85.0\arrow.ico
C:\Program Files\Zango\bin\10.3.85.0\CntntCntr.dll
C:\Program Files\Zango\bin\10.3.85.0\copyright.txt
C:\Program Files\Zango\bin\10.3.85.0\CoreSrv.dll
C:\Program Files\Zango\bin\10.3.85.0\firefox
C:\Program Files\Zango\bin\10.3.85.0\HostIE.dll
C:\Program Files\Zango\bin\10.3.85.0\HostOE.dll
C:\Program Files\Zango\bin\10.3.85.0\HostOL.dll
C:\Program Files\Zango\bin\10.3.85.0\link.ico
C:\Program Files\Zango\bin\10.3.85.0\OEAddOn.exe
C:\Program Files\Zango\bin\10.3.85.0\Srv.exe
C:\Program Files\Zango\bin\10.3.85.0\Toolbar.dll
C:\Program Files\Zango\bin\10.3.85.0\Wallpaper.dll
C:\Program Files\Zango\bin\10.3.85.0\Weather.exe
C:\Program Files\Zango\bin\10.3.85.0\WeSkin.dll
C:\Program Files\Zango\bin\10.3.85.0\ZangoSA.exe
C:\Program Files\Zango\bin\10.3.85.0\ZangoSAAX.dll
C:\Program Files\Zango\bin\10.3.85.0\ZangoSADF.exe
C:\Program Files\Zango\bin\10.3.85.0\ZangoSAHook.dll
C:\Program Files\Zango\bin\10.3.85.0\ZangoUninstaller.exe
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\chrome.manifest
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\components
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\install.rdf
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\plugins
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\components\npclntax.xpt
C:\Program Files\Zango\bin\10.3.85.0\firefox\extensions\plugins\npclntax_ZangoSA.dll
C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
C:\Windows\iun6002.exe
C:\Users\adil\AppData\Local\Temp\nseB78C.tmp
C:\Users\adil\AppData\Local\Temp\nsg61F2.tmp
C:\Users\adil\AppData\Local\Temp\nskC05C.tmp
C:\Users\adil\AppData\Local\Temp\nsl5C93.tmp
C:\Users\adil\AppData\Local\Temp\nsr2897.tmp
C:\Users\adil\AppData\Local\Temp\nss1E7A.tmp
C:\Users\adil\AppData\Local\Temp\nsx28A7.tmp
C:\Users\adil\AppData\Local\Temp\nsx9EF5.tmp
C:\Users\adil\AppData\Local\Temp\nsyDDE6.tmp

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://fr.yahoo.com/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"

--------------------\\ Recherche d'autres infections

--------------------\\ KoobFace !

C:\Windows\mmsmark2.dat

--------------------\\ Cracks & Keygens ..

C:\Users\adil\AppData\Roaming\uTorrent\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8.torrent
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\LOADER exe
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\READ ME!!!.txt
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\01. MARIAH CAREY FEAT. GUCCI MANE - OBSESSED (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\02. MYA FEAT. BUN B - SHOW ME SOMETHING.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\03. TREY SONGZ FEAT. DRAKE - INVENTED SEX.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\03am_8_web_small.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\04. R. KELLY - SHORTY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\05. THE DREAM - HIT IT ON THE ROAD.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\06. RYAN LESLIE FEAT. PUSHA T - SOMETHING THAT I LIKE.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\07. KOMIKA FEAT. UNCLE MURDA - CAN WE GET IT.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\08. JEREMIH - I'M A STAR (EVERYWHERE WE ARE).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\09. LEE CARR FEAT. YUNG JOC - PATRON.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\10. NINA SKY FEAT. FLO-RIDA & PITBULL - GET UP ON THIS.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\11. CHRIS BROWN - SMASH.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\12. RIHANNA - TE AMO (I LOVE YOU).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\13. JAMIE FOXX FEAT. DRAKE, KANYE WEST & THE DREAM - DIGITAL GIRL (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\14. TYRESE - TAKE ME AWAY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\15. DJ DIAMOND KUTS FEAT. RON BROWZ, LATIF & NICKI MINAJ - STRIPPIN IN THE CLUB.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\16. MARIO - DANCIN' ON ME.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\17. TREY SONGZ - KEYS.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\18. BOBBY VALENTINO - AVERAGE CHICK.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\19. JOHNTA AUSTIN FEAT. LUDACRIS - CANT LIVE WITHOUT YOU.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\20. NEYO - MISS YOU CRAZY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\21. LYFE JENNINGS FEAT. FABOLOUS - WORK.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\22. RAZAH - HIGHER.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\23. THE DREAM FEAT. R. KELLY - KELLY'S 12 PLAY (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\AlbumArtSmall.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\Folder.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\Mixfiend Logo.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\[Torrent Tracked at Mixfiend.com & Mixtapetorrent.com].txt
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ 5150 And B.G. - Chopper City 2009-MIXFIEND\2. Break It Down(Prod by Cracktracks)-MF.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ 5150 And B.G. - Chopper City 2009-MIXFIEND\7. Hood News(Prod by Cracktracks)-MF.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ_1Mic_And_Slaughterhouse-The_Severed_Heads_Collection_Vol._2-2009-MIXFIEND\17. Joell Ortiz - Crack A Bottle.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Dub Floyd, Jay Z, Eminem & Miami Kaos - Renegades\28. Eminem ft. Dr. Dre & 50 Cent - Crack A Bottle (Prod. by Djay Cas).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Exclusive Tunes 91 - Biggy Jiggy Mixtapes\25 JR Writer - Pure Crack (Feat. Tom Gist).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Notorious BIG - Happy Birthday (Hosted By DJ Whoo Kid)-2009-MIXFIEND\10 BIG - 10 Crack Commandments.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Notorious BIG, Frank Sinatra - Blue Eyes Meets Bed Stuy\10 - Notorious BIG, Frank Sinatra - 10 Crack Commandments - Fools Rush In.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\September 7th Presents ONE NATION (Final Version)\06 6-Hell Razah - Crack Baby Cradles (Prod. by Shroomz).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\VA-DJ Drama & Cookin Soul - The Notorious B.I.G. Tribute-2009-MIXFIEND\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
C:\Users\adil\Documents\LimeWire\Saved\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3
C:\Users\adil\Downloads\Dr Dre - The Detox Chroniclez Vol2\06) EMINEM ONE-2- Crackpipes From Baghdad DETOX EXC.mp3
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM\CiM.nfo
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM\Keygen.exe
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\patch_ssc.exe
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\register.reg

[ UAC => 1 ]

1 - "C:\ToolBar SD\TB_1.txt" - 31/08/2009|19:14 - Option : [1]

-----------\\ Fin du rapport a 19:14:57,19

Rapport Hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:24:10, on 31/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18248)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Zango\bin\10.3.85.0\OEAddOn.exe
C:\Program Files\Zango\bin\10.3.85.0\ZangoSA.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
C:\Users\adil\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP3SWK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Deenero\deenerosvr_1,0,2,0.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Zango\bin\10.3.85.0\Srv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Zango\bin\10.3.85.0\Srv.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
C:\Windows\System32\rserver30\FamItrfc.Exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Smart-Shopper - {4A7C84E2-E95C-43C6-8DD3-03ABCD0EB60E} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.85.0\HostIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Shareaza MediaBar - {196C3A46-4758-433D-A600-802C804AF39C} - C:\Program Files\Shareaza Applications\Shareaza MediaBar\ShareazaMediaBar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.85.0\HostIE.dll
O3 - Toolbar: Deenero - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - C:\Program Files\Deenero\deenero_1,0,2,0.dll
O4 - HKLM\..\Run: [CAP3ON] C:\Windows\system32\spool\drivers\w32x86\3\CAP3ONN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ZangoOE] C:\Program Files\Zango\bin\10.3.85.0\OEAddOn.exe
O4 - HKLM\..\Run: [ZangoSA] "C:\Program Files\Zango\bin\10.3.85.0\ZangoSA.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [sysldtray] C:\Windows\ld14.exe
O4 - HKLM\..\Run: [Sysmstray] C:\Windows\mstre21.exe
O4 - HKLM\..\Run: [pp] C:\Windows\pp11.exe
O4 - HKLM\..\Run: [sysfbtray] C:\Windows\freddy61.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Notification de cadeaux MSN.lnk = adil\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Fenêtre d'état de Canon LASER SHOT LBP-1120.LNK = C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: SmartShopper - Compare product prices - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEBF} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O9 - Extra button: SmartShopper - Compare travel rates - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O13 - Gopher Prefix:
O16 - DPF: {361E6B79-4A69-4376-B0F2-3D1EBEE9D7E2} (RtspVaPgCtrl Class) - http://192.168.1.12:8080/RtspVaPgDec.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: D-Link IP servellience Launcher (D-Link_ST3402) - D-Link - D:\camera ip surveillance\Launcher_DL.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Radmin Server V3 (RServer3) - Famatech International Corp. - C:\Windows\System32\rserver30\rserver3.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
0
Réponse 3 / 6
Narco!4 Messages postés 2446 Statut Contributeur 467
 
suit ces manips
0
Réponse 4 / 6
h
 
les manip sont exactement les memes que lors du 1er rapport Genproc.Est ce que je dois recommencer sachant que desormais j'arrive a installer spybot, le net fonctionne mieux et depuis le redémarrage de l'ordinateur Avira Antivir n'a rien détecter?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
Narco!4 Messages postés 2446 Statut Contributeur 467
 
option2 de Toolbar-S&D
puis c'est pas fini en plus
0
Réponse 6 / 6
h
 
D'accord merci.Voici donc mes nouveau rapport

rapport TB

-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU E2180 @ 2.00GHz )
BIOS : BIOS Date: 05/23/08 16:37:53 Ver: 08.00.15
USER : adil ( Administrator )
BOOT : Fail-safe boot
Antivirus : avast! antivirus 4.7.1043 [VPS 000000-0] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:144 Go (Free:19 Go)
D:\ (Local Disk) - NTFS - Total:144 Go (Free:143 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [2] ( 31/08/2009|20:18 )

[ UAC => 1 ]

-----------\\ SUPPRESSION

Supprime! - [Service] ASKService
Supprime! - [Service] ASKUpgrade
Supprime! - C:\Program Files\AskBarDis\bar
Supprime! - C:\Program Files\AskBarDis\unins000.dat
Supprime! - C:\Program Files\AskBarDis\unins000.exe
Supprime! - C:\Program Files\ShoppingReport\Bin
Supprime! - C:\Program Files\ShoppingReport\Uninst.exe
Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\SmartShopper
Supprime! - C:\Program Files\Smart-Shopper\Bin
Supprime! - C:\Program Files\Smart-Shopper\Uninst.exe
Supprime! - C:\Users\adil\FAVORI~1\µTorrent Search.url
Supprime! - C:\Windows\Prefetch\ZANGOSA.EXE-04729FE4.pf
Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Zango
Supprime! - C:\Program Files\Zango\bin
Supprime! - C:\Windows\iun6002.exe
Supprime! - C:\Program Files\AskBarDis
Supprime! - C:\Program Files\ShoppingReport
Supprime! - C:\Program Files\Smart-Shopper
Supprime! - C:\Program Files\Zango
Supprime! - C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"

--------------------\\ Recherche d'autres infections

--------------------\\ KoobFace !

C:\Windows\mmsmark2.dat

--------------------\\ Cracks & Keygens ..

C:\Users\adil\AppData\Roaming\uTorrent\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8.torrent
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\LOADER exe
C:\Users\adil\Documents\JOSHEE\driver\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\READ ME!!!.txt
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\01. MARIAH CAREY FEAT. GUCCI MANE - OBSESSED (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\02. MYA FEAT. BUN B - SHOW ME SOMETHING.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\03. TREY SONGZ FEAT. DRAKE - INVENTED SEX.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\03am_8_web_small.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\04. R. KELLY - SHORTY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\05. THE DREAM - HIT IT ON THE ROAD.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\06. RYAN LESLIE FEAT. PUSHA T - SOMETHING THAT I LIKE.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\07. KOMIKA FEAT. UNCLE MURDA - CAN WE GET IT.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\08. JEREMIH - I'M A STAR (EVERYWHERE WE ARE).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\09. LEE CARR FEAT. YUNG JOC - PATRON.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\10. NINA SKY FEAT. FLO-RIDA & PITBULL - GET UP ON THIS.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\11. CHRIS BROWN - SMASH.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\12. RIHANNA - TE AMO (I LOVE YOU).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\13. JAMIE FOXX FEAT. DRAKE, KANYE WEST & THE DREAM - DIGITAL GIRL (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\14. TYRESE - TAKE ME AWAY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\15. DJ DIAMOND KUTS FEAT. RON BROWZ, LATIF & NICKI MINAJ - STRIPPIN IN THE CLUB.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\16. MARIO - DANCIN' ON ME.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\17. TREY SONGZ - KEYS.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\18. BOBBY VALENTINO - AVERAGE CHICK.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\19. JOHNTA AUSTIN FEAT. LUDACRIS - CANT LIVE WITHOUT YOU.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\20. NEYO - MISS YOU CRAZY.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\21. LYFE JENNINGS FEAT. FABOLOUS - WORK.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\22. RAZAH - HIGHER.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\23. THE DREAM FEAT. R. KELLY - KELLY'S 12 PLAY (RMX).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\AlbumArtSmall.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\Folder.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\Mixfiend Logo.jpg
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\CrackAudio.com and DJ L-Gee -_- 3AM The R&B NightCap Chapter 8\[Torrent Tracked at Mixfiend.com & Mixtapetorrent.com].txt
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ 5150 And B.G. - Chopper City 2009-MIXFIEND\2. Break It Down(Prod by Cracktracks)-MF.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ 5150 And B.G. - Chopper City 2009-MIXFIEND\7. Hood News(Prod by Cracktracks)-MF.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\DJ_1Mic_And_Slaughterhouse-The_Severed_Heads_Collection_Vol._2-2009-MIXFIEND\17. Joell Ortiz - Crack A Bottle.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Dub Floyd, Jay Z, Eminem & Miami Kaos - Renegades\28. Eminem ft. Dr. Dre & 50 Cent - Crack A Bottle (Prod. by Djay Cas).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Exclusive Tunes 91 - Biggy Jiggy Mixtapes\25 JR Writer - Pure Crack (Feat. Tom Gist).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Notorious BIG - Happy Birthday (Hosted By DJ Whoo Kid)-2009-MIXFIEND\10 BIG - 10 Crack Commandments.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\Notorious BIG, Frank Sinatra - Blue Eyes Meets Bed Stuy\10 - Notorious BIG, Frank Sinatra - 10 Crack Commandments - Fools Rush In.mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\September 7th Presents ONE NATION (Final Version)\06 6-Hell Razah - Crack Baby Cradles (Prod. by Shroomz).mp3
C:\Users\adil\Documents\JOSHEE\musikkkkkkkkkk\VA-DJ Drama & Cookin Soul - The Notorious B.I.G. Tribute-2009-MIXFIEND\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
C:\Users\adil\Documents\LimeWire\Saved\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3
C:\Users\adil\Downloads\Dr Dre - The Detox Chroniclez Vol2\06) EMINEM ONE-2- Crackpipes From Baghdad DETOX EXC.mp3
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM\CiM.nfo
C:\Users\adil\Downloads\Nero 8 Ultra Edition 8.3.2.1\Nero.8.2.8.0.Keygen-CiM\Keygen.exe
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\patch_ssc.exe
C:\Users\adil\Downloads\[XTT]ALCOHOL 120 1.9.7.Build 6221(NEW-Fixed)\CRACK\register.reg

[ UAC => 1 ]

1 - "C:\ToolBar SD\TB_1.txt" - 31/08/2009|19:14 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 31/08/2009|20:20 - Option : [2]

-----------\\ Fin du rapport a 20:20:47,75

rapport Hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:24:10, on 31/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18248)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Zango\bin\10.3.85.0\OEAddOn.exe
C:\Program Files\Zango\bin\10.3.85.0\ZangoSA.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
C:\Users\adil\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP3SWK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Deenero\deenerosvr_1,0,2,0.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Zango\bin\10.3.85.0\Srv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Zango\bin\10.3.85.0\Srv.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
C:\Windows\System32\rserver30\FamItrfc.Exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Smart-Shopper - {4A7C84E2-E95C-43C6-8DD3-03ABCD0EB60E} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.85.0\HostIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Shareaza MediaBar - {196C3A46-4758-433D-A600-802C804AF39C} - C:\Program Files\Shareaza Applications\Shareaza MediaBar\ShareazaMediaBar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.85.0\HostIE.dll
O3 - Toolbar: Deenero - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - C:\Program Files\Deenero\deenero_1,0,2,0.dll
O4 - HKLM\..\Run: [CAP3ON] C:\Windows\system32\spool\drivers\w32x86\3\CAP3ONN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ZangoOE] C:\Program Files\Zango\bin\10.3.85.0\OEAddOn.exe
O4 - HKLM\..\Run: [ZangoSA] "C:\Program Files\Zango\bin\10.3.85.0\ZangoSA.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [sysldtray] C:\Windows\ld14.exe
O4 - HKLM\..\Run: [Sysmstray] C:\Windows\mstre21.exe
O4 - HKLM\..\Run: [pp] C:\Windows\pp11.exe
O4 - HKLM\..\Run: [sysfbtray] C:\Windows\freddy61.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Notification de cadeaux MSN.lnk = adil\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Fenêtre d'état de Canon LASER SHOT LBP-1120.LNK = C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: SmartShopper - Compare product prices - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEBF} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O9 - Extra button: SmartShopper - Compare travel rates - {3CC3D8FE-F0E0-4dd1-A69A-8C56BCC7BEC0} - C:\Program Files\Smart-Shopper\Bin\2.6.43\Smrt-Shpr.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O13 - Gopher Prefix:
O16 - DPF: {361E6B79-4A69-4376-B0F2-3D1EBEE9D7E2} (RtspVaPgCtrl Class) - http://192.168.1.12:8080/RtspVaPgDec.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: D-Link IP servellience Launcher (D-Link_ST3402) - D-Link - D:\camera ip surveillance\Launcher_DL.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Radmin Server V3 (RServer3) - Famatech International Corp. - C:\Windows\System32\rserver30\rserver3.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
0

Discussions similaires

infection
gladiator1952 -
gladiator1952 -

6 réponses
Infection pc
Nanie24 -
Nanie24 -

22 réponses
[pnkbstra]infection
swazolie -
billou631 -

9 réponses
infection virus
Utilisateur anonyme -
Utilisateur anonyme -

3 réponses
Infection Bloom ?
ccm81 -
fabul -

8 réponses