Bonjour, Depuis quelque jours je subit des redirection lorsque je clique sur des lien google , J'ai de nombreux logicielle afin de détruire ce genre d'embêtement , mais celui-ci persiste (grrrrr). Voila un rapport RSIT Merci d'avance pour vos réponse info.txt logfile of random's system information tool 1.06 2010-02-07 23:37:20 Logfile of random's system information tool 1.06 (written by random/random) Run by drizzt do'urden at 2010-02-07 23:37:05 Microsoft Windows XP Édition familiale Service Pack 3 System drive D: has 20 GB (20%) free of 100 GB Total RAM: 3071 MB (64% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:37:18, on 07/02/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\nvsvc32.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\Explorer.EXE D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe D:\WINDOWS\system32\RUNDLL32.EXE D:\WINDOWS\RTHDCPL.EXE D:\WINDOWS\system32\LVCOMSX.EXE D:\Program Files\Logitech\Video\LogiTray.exe D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe D:\Program Files\RocketDock\RocketDock.exe D:\WINDOWS\system32\ctfmon.exe D:\Program Files\Update Notifier\updatenotifier.exe D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe D:\Program Files\LogMeIn Hamachi\hamachi-2.exe D:\Program Files\Java\jre6\bin\jqs.exe D:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe D:\Program Files\CDBurnerXP\NMSAccessU.exe D:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe D:\Program Files\Spyware Terminator\sp_rsser.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\TUProgSt.exe D:\Program Files\Tunngle\TnglCtrl.exe D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe D:\WINDOWS\system32\wbem\wmiapsrv.exe D:\WINDOWS\System32\svchost.exe D:\Program Files\Megaupload\Mega Manager\MegaManager.exe D:\Program Files\EVEMon\EVEMon.exe D:\Program Files\Windows Media Player\wmplayer.exe D:\Program Files\TuneUp Utilities 2009\Integrator.exe D:\Program Files\TuneUp Utilities 2009\ProcessManager.exe D:\Program Files\Mozilla Firefox\firefox.exe D:\Documents and Settings\drizzt do'urden\Mes documents\Téléchargements\RSIT.exe D:\Program Files\Trend Micro\HijackThis\drizzt do'urden.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - D:\PROGRA~1\Crawler\ctbr.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - D:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - D:\PROGRA~1\FlashFXP\IEFlash.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - D:\PROGRA~1\Crawler\ctbr.dll O4 - HKLM\..\Run: [JMB36X Configure] D:\WINDOWS\system32\JMRaidTool.exe boot O4 - HKLM\..\Run: [SpywareTerminator] "D:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe" O4 - HKLM\..\Run: [amd_dc_opt] D:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [LVCOMSX] D:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] D:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] D:\Program Files\Logitech\Video\LogiTray.exe O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" O4 - HKCU\..\Run: [RocketDock] "D:\Program Files\RocketDock\RocketDock.exe" O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "D:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - S-1-5-18 Startup: Update Notifier.lnk = D:\Program Files\Update Notifier\updatenotifier.exe (User 'SYSTEM') O4 - .DEFAULT Startup: Update Notifier.lnk = D:\Program Files\Update Notifier\updatenotifier.exe (User 'Default user') O4 - Startup: Update Notifier.lnk = D:\Program Files\Update Notifier\updatenotifier.exe O8 - Extra context menu item: Crawler Search - tbr:iemenu O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: d:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: d:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: d:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O10 - Unknown file in Winsock LSP: d:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - D:\PROGRA~1\Crawler\ctbr.dll O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - D:\Program Files\LogMeIn Hamachi\hamachi-2.exe O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - D:\Program Files\ma-config.com\maconfservice.exe O23 - Service: NIHardwareService - Native Instruments GmbH - D:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe O23 - Service: NMSAccessU - Unknown owner - D:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - D:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe O23 - Service: nTune Service (nTuneService) - NVIDIA - D:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - D:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - D:\WINDOWS\System32\TUProgSt.exe O23 - Service: TunngleService - Tunngle.net GmbH - D:\Program Files\Tunngle\TnglCtrl.exe

Rapport RSIT virus/trojan - Page 2

Réponse 21 / 22

drizzit34 Messages postés 4 Statut Membre

on en apprend jamais assez :) .
merci encore pour les conseille que tu ma donner , c'est cool .

Réponse 22 / 22

Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537

Re,

sûr, mieux on sait, mieux on se porte.

Et, questions conseils, tu es ton meilleur conseil (même si il est vrai que lire les conseils est une bonne chose, mais c'est toi qui agis).

Bon, à moins que tu ais d'autres questions (si c'est le cas, pas de problème, j'essayerai de répondre), on en restera là.

Bon surf.

Discussions similaires

Softonic,est-ce un virus ?

Comment supprimer le virus Trojan

Trojan impossible à supprimer!

Aide pour un virus

Désinstaller Softonic

Discussions similaires

Newsletters