Virus !!! HELP
KLYKLO
-
KLYKLO -
KLYKLO -
Bonjour, a tous
je viens vous demander votre aide car mon portable sony rame
j ai ete attaqué par "antispyware soft" qui m a annoncé que mon ordi ete attaqué
j ai vite compris que c etait pour que j achete leur antivirus, le probleme est que ca ma bloquer mon IE et aussi impossible d acceder a "configuration des programmes ou quoi que se soit...
j ai quand meme reussis a faire une restauration du systeme mais qui n est pas aller jusqu au bout.
apres redemarage plus d annonce de "antispyware soft" mais impossible de se connecter a IE plus de mise a jour AVAST , plus de connexion internet avec REALPLAYER.
J ai installé FIREFOX qui lui fonctionne .
J ai aussi un probleme avec mon lecteur CD (mais ca depuis bien longtemps)donc je ne peux pas demarer avec le cd XP !
j ai fais quelques scan en ligne don je vous poste les rapports
Si vous pouvez me venir en aide Merci!!!!!!!!
scan hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:13:15, on 19/05/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\JEANFAYE\Mes documents\Téléchargements\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [PDService.exe] C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
O4 - HKLM\..\Run: [VAIO Update 3] "C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe" /Stationary
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Version Cue CS2] "C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [Whisher] C:/Program Files/Whisher/whisher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ChromeGoogle] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKLM\..\Run: [AdobePreferences13805] c:\program files\adobe\adobe bridge\resources\pt\openeradobe6672.exe
O4 - HKLM\..\Run: [JUpdateJavaTM] c:\program files\fichiers communs\java\update\base images\jre1.6.0.b105\patch-jre1.6.0_07.b06\visualplatform.exe
O4 - HKLM\..\Run: [UpdateSoftwareUpdateFilesLocalized] c:\program files\apple software update\softwareupdatefiles.resources\en.lproj\applesoftwareupdatefileslocalized.exe
O4 - HKLM\..\Run: [VersionAdobe2000] c:\program files\adobe\adobe version cue cs2\plugins\com.adobe.versioncue.systemintegration_2.0.0\os\win32\x86\systemintegrationversion2000.exe
O4 - HKLM\..\Run: [fprkrbhr] C:\Documents and Settings\NetworkService\Local Settings\Application Data\olgwhbaxu\oewureutssd.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunServices: [setupChrome] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKLM\..\RunServices: [Chromesetup] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLhelper/version7/dlhelper.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NIHardwareService - Unknown owner - C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
--
End of file - 14831 bytes
SCAN PANDA:
Exporter vers :
Menaces avec désinfection gratuite (0)
Menaces (20)
Niveau de risque faible (20)
Cookie/Apmebf Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@apmebf[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@apmebf[1].txt
Cookie/Xiti Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@xiti[1].txt
Cookie/Webtren... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@statse.webtrendslive[2].txt
Cookie/Mediapl... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@mediaplex[2].txt
Cookie/Statcou... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@statcounter[1].txt
Cookie/Adtech Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[5].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[4].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[3].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[2].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[1].txt
Cookie/Smartad... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[6].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[4].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[3].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[2].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[1].txt
adware/memoryw... Adware (logiciel publicitaire) Latent(e) Masquer
+Infos
1. hkey_classes_root\vbrad.trayicon
Cookie/YieldMa... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[3].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[2].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[1].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[4].txt
Cookie/Serving... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@serving-sys[2].txt
Cookie/Questio... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@questionmarket[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@questionmarket[1].txt
Cookie/Weboram... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[9].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[8].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[7].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[6].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[5].txt
6. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[4].txt
7. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[3].txt
8. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[2].txt
9. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[10].txt
10. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[1].txt
Cookie/Adviva Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@adviva[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@adviva[1].txt
Cookie/Tradedo... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@tradedoubler[1].txt
Cookie/Adverti... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@advertising[2].txt
Cookie/RealMed... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@247realmedia[1].txt
Cookie/Atlas D... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[6].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[5].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[4].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[3].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[1].txt
Cookie/Bluestr... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[7].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[6].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[5].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[4].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[3].txt
6. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[2].txt
7. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[1].txt
Cookie/Doublec... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@doubleclick[2].txt
Cookie/MetriWe... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@metriweb[1].txt
Derniere info je ne peux pas non plus faire le Scan en ligne "SECUSER" qui bloque avec la connexion internet......
je viens vous demander votre aide car mon portable sony rame
j ai ete attaqué par "antispyware soft" qui m a annoncé que mon ordi ete attaqué
j ai vite compris que c etait pour que j achete leur antivirus, le probleme est que ca ma bloquer mon IE et aussi impossible d acceder a "configuration des programmes ou quoi que se soit...
j ai quand meme reussis a faire une restauration du systeme mais qui n est pas aller jusqu au bout.
apres redemarage plus d annonce de "antispyware soft" mais impossible de se connecter a IE plus de mise a jour AVAST , plus de connexion internet avec REALPLAYER.
J ai installé FIREFOX qui lui fonctionne .
J ai aussi un probleme avec mon lecteur CD (mais ca depuis bien longtemps)donc je ne peux pas demarer avec le cd XP !
j ai fais quelques scan en ligne don je vous poste les rapports
Si vous pouvez me venir en aide Merci!!!!!!!!
scan hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:13:15, on 19/05/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\JEANFAYE\Mes documents\Téléchargements\HiJackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [PDService.exe] C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
O4 - HKLM\..\Run: [VAIO Update 3] "C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe" /Stationary
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Version Cue CS2] "C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [Whisher] C:/Program Files/Whisher/whisher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ChromeGoogle] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKLM\..\Run: [AdobePreferences13805] c:\program files\adobe\adobe bridge\resources\pt\openeradobe6672.exe
O4 - HKLM\..\Run: [JUpdateJavaTM] c:\program files\fichiers communs\java\update\base images\jre1.6.0.b105\patch-jre1.6.0_07.b06\visualplatform.exe
O4 - HKLM\..\Run: [UpdateSoftwareUpdateFilesLocalized] c:\program files\apple software update\softwareupdatefiles.resources\en.lproj\applesoftwareupdatefileslocalized.exe
O4 - HKLM\..\Run: [VersionAdobe2000] c:\program files\adobe\adobe version cue cs2\plugins\com.adobe.versioncue.systemintegration_2.0.0\os\win32\x86\systemintegrationversion2000.exe
O4 - HKLM\..\Run: [fprkrbhr] C:\Documents and Settings\NetworkService\Local Settings\Application Data\olgwhbaxu\oewureutssd.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunServices: [setupChrome] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKLM\..\RunServices: [Chromesetup] C:\DOCUME~1\JEANFAYE\LOCALS~1\Temp\uUOt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLhelper/version7/dlhelper.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NIHardwareService - Unknown owner - C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
--
End of file - 14831 bytes
SCAN PANDA:
Exporter vers :
Menaces avec désinfection gratuite (0)
Menaces (20)
Niveau de risque faible (20)
Cookie/Apmebf Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@apmebf[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@apmebf[1].txt
Cookie/Xiti Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@xiti[1].txt
Cookie/Webtren... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@statse.webtrendslive[2].txt
Cookie/Mediapl... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@mediaplex[2].txt
Cookie/Statcou... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@statcounter[1].txt
Cookie/Adtech Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[5].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[4].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[3].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[2].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@adtech[1].txt
Cookie/Smartad... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[6].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[4].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[3].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[2].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@smartadserver[1].txt
adware/memoryw... Adware (logiciel publicitaire) Latent(e) Masquer
+Infos
1. hkey_classes_root\vbrad.trayicon
Cookie/YieldMa... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[3].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[2].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[1].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@ad.yieldmanager[4].txt
Cookie/Serving... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@serving-sys[2].txt
Cookie/Questio... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@questionmarket[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@questionmarket[1].txt
Cookie/Weboram... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[9].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[8].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[7].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[6].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[5].txt
6. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[4].txt
7. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[3].txt
8. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[2].txt
9. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[10].txt
10. c:\documents and settings\jeanfaye\cookies\jeanfaye@weborama[1].txt
Cookie/Adviva Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@adviva[2].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@adviva[1].txt
Cookie/Tradedo... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@tradedoubler[1].txt
Cookie/Adverti... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@advertising[2].txt
Cookie/RealMed... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@247realmedia[1].txt
Cookie/Atlas D... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[6].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[5].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[4].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[3].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@atdmt[1].txt
Cookie/Bluestr... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[7].txt
2. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[6].txt
3. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[5].txt
4. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[4].txt
5. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[3].txt
6. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[2].txt
7. c:\documents and settings\jeanfaye\cookies\jeanfaye@bluestreak[1].txt
Cookie/Doublec... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@doubleclick[2].txt
Cookie/MetriWe... Cookie de surveillance Latent(e) Masquer
+Infos
1. c:\documents and settings\jeanfaye\cookies\jeanfaye@metriweb[1].txt
Derniere info je ne peux pas non plus faire le Scan en ligne "SECUSER" qui bloque avec la connexion internet......
A voir également:
- Virus !!! HELP
- Virus mcafee - Accueil - Piratage
- Comment détruire un virus informatique - Guide
- Powershell.exe virus - Guide
- Undisclosed-recipients virus - Guide
- Impossible de terminer l'opération car le fichier contient un virus - Forum Virus
1 réponse
Je ne suis pas de taille à analyser ton Hijackthis (mais en attendant une main plus secourable?) cependant, pour avoir vécu la chose sur l'ordi de ma fille, je te livre la manip qui a solutionné le problème.
Démarrage sans échec avec connexion au réseau
Lancer Malwarebytes (que j'avais pris la précaution de lui installer auparavant; si tu ne l'as pas, cherche le ici:
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
Lancer le scan de malwarebytes.
Identification des malwares
Eradication proposée par le logiciel
A noter qu'il faudra désactiver la fonction "Point de restauration", et la ré-activer ensuite, sinon les malwares seront encore présents et prêts à "reprendre du service"!
Démarrage sans échec avec connexion au réseau
Lancer Malwarebytes (que j'avais pris la précaution de lui installer auparavant; si tu ne l'as pas, cherche le ici:
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
Lancer le scan de malwarebytes.
Identification des malwares
Eradication proposée par le logiciel
A noter qu'il faudra désactiver la fonction "Point de restauration", et la ré-activer ensuite, sinon les malwares seront encore présents et prêts à "reprendre du service"!
KLYKLO
Merci de ton aide lap1bis j attends encore un peu pour voir si quelqu un peut analyser mon Hijackthis. et apres je suivrai tes conseils......
