PAge IE ABOUT:BLANK s'ouvrant avec firefox

Tiens, petit com : j'ai remarqué que si je désactivais avast, firefox marchait sans prob.

salut, désactive alors l'agent webguard d'avast ou change d'anti virus :P

je conseille personnellement : Avira + Trend Micro Ad On (attention à ses faux positifs cependant)

ComboFix 11-03-27.02 - Administrateur 28/03/2011 19:07:38.2.1 - x86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1527.1105 [GMT 2:00]
Lancé depuis: d:\documents and settings\Administrateur.ORDI-XPSP2.000\Mes documents\Téléchargements\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-02-28 au 2011-03-28 ))))))))))))))))))))))))))))))))))))
.
.
2011-03-28 16:38 . 2011-03-28 16:38 -------- d-----w- d:\program files\CCleaner
2011-03-27 13:36 . 2011-03-27 13:36 491008 ----a-w- d:\windows\system32\advapi.dll
2011-03-27 12:59 . 2011-03-27 12:59 -------- d-----w- d:\documents and settings\Administrateur.ORDI-XPSP2.000\Application Data\Malwarebytes
2011-03-27 12:59 . 2010-11-29 15:42 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2011-03-27 12:59 . 2011-03-27 12:59 -------- d-----w- d:\documents and settings\All Users.WINDOWS\Application Data\Malwarebytes
2011-03-27 12:59 . 2010-11-29 15:42 20952 ----a-w- d:\windows\system32\drivers\mbam.sys
2011-03-27 12:36 . 2011-03-27 12:36 491008 ----a-w- d:\windows\system32\certdll.dll
2011-03-27 11:05 . 2011-03-27 11:05 491008 ----a-w- d:\windows\system32\w32util.dll
2011-03-27 09:54 . 2011-03-27 09:54 491008 ----a-w- d:\windows\system32\bcdprov.dll
2011-03-26 22:44 . 2011-03-26 22:44 491008 ----a-w- d:\windows\system32\bthdll.dll
2011-03-25 16:24 . 2011-03-25 16:24 491008 ----a-w- d:\windows\system32\syncclient.dll
2011-03-25 15:24 . 2011-03-25 15:24 491008 ----a-w- d:\windows\system32\mmcprov.dll
2011-03-25 13:24 . 2011-03-25 13:24 491008 ----a-w- d:\windows\system32\devutil.dll
2011-03-25 11:24 . 2011-03-25 11:24 491008 ----a-w- d:\windows\system32\authprxy.dll
2011-03-25 10:44 . 2011-03-25 10:44 98392 ----a-w- d:\windows\system32\drivers\SBREDrv.sys
2011-03-25 10:21 . 2011-03-25 10:21 491008 ----a-w- d:\windows\system32\netprov.dll
2011-03-25 09:44 . 2011-03-27 10:31 -------- d---a-w- d:\documents and settings\All Users.WINDOWS\Application Data\TEMP
2011-03-25 09:13 . 2011-03-25 09:13 491008 ----a-w- d:\windows\system32\csrui.dll
2011-03-24 20:29 . 2011-03-24 20:29 491008 ----a-w- d:\windows\system32\acpstream.dll
2011-03-24 19:30 . 2011-03-24 19:30 491008 ----a-w- d:\windows\system32\crtspl.dll
2011-03-24 18:37 . 2011-03-24 18:37 -------- d-----w- d:\documents and settings\NetworkService.AUTORITE NT.000\Bureau
2011-03-24 18:26 . 2011-03-24 18:26 491008 ----a-w- d:\windows\system32\hidcpl.dll
2011-03-23 20:53 . 2011-03-23 20:53 -------- d-----w- d:\documents and settings\LocalService.AUTORITE NT.000\Bureau
2011-03-23 20:48 . 2010-12-03 09:05 64288 ----a-w- d:\windows\system32\drivers\Lbd.sys
2011-03-23 20:47 . 2011-03-27 11:03 -------- d-----w- d:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft
2011-03-23 19:24 . 2011-03-23 19:24 -------- d-----w- d:\program files\Trend Micro
2011-03-23 18:47 . 2011-02-23 14:56 371544 ----a-w- d:\windows\system32\drivers\aswSnx.sys
2011-03-23 10:25 . 2011-03-23 10:27 -------- d-----w- d:\windows\SxsCaPendDel
2011-03-22 18:15 . 2011-03-22 18:15 489984 --sh--w- d:\windows\system32\themeutil32.dll
2011-03-22 18:15 . 2011-03-22 18:15 73216 --sh--w- d:\windows\system32\inethelp.dll
2011-03-21 20:05 . 2011-03-21 20:05 -------- d-----w- d:\windows\system32\BE4304C6D74B009FA56D3F278B1C4BD9
2011-03-02 22:27 . 2011-03-03 18:28 -------- d-----w- d:\documents and settings\Administrateur.ORDI-XPSP2.000\Local Settings\Application Data\Ahead
2011-03-02 22:24 . 2011-03-03 18:22 -------- d-----w- d:\documents and settings\Administrateur.ORDI-XPSP2.000\Application Data\Ahead
2011-03-02 22:23 . 2011-03-02 22:23 -------- d-----w- d:\documents and settings\All Users.WINDOWS\Application Data\Ahead
2011-03-02 22:20 . 2011-03-02 22:22 -------- d-----w- d:\program files\Fichiers communs\Ahead
2011-03-02 22:20 . 2011-03-02 22:20 -------- d-----w- d:\documents and settings\All Users.WINDOWS\Application Data\Nero
2011-03-02 22:19 . 2004-08-11 00:45 819200 ----a-w- d:\program files\Windows Media Player\wmsetsdk.exe
2011-03-02 22:19 . 2004-08-11 00:45 47616 ----a-w- d:\program files\Windows Media Player\msoobci.dll
2011-02-28 11:06 . 2011-02-28 11:06 -------- d-----w- d:\documents and settings\All Users.WINDOWS\Application Data\IMinent
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-23 15:04 . 2011-01-16 21:32 40648 ----a-w- d:\windows\avastSS.scr
2011-02-23 15:04 . 2011-01-16 21:32 190016 ----a-w- d:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-01-16 21:32 301528 ----a-w- d:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2011-01-16 21:32 49240 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2011-01-16 21:32 102232 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2011-02-23 14:55 . 2011-01-16 21:32 96344 ----a-w- d:\windows\system32\drivers\aswmon.sys
2011-02-23 14:55 . 2011-01-16 21:32 25432 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:54 . 2011-01-16 21:32 30680 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2011-02-23 14:54 . 2011-01-16 21:32 19544 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2011-02-20 14:44 . 2004-07-17 09:36 12400 ----a-w- d:\windows\system32\drivers\secdrv.sys
2011-01-16 20:48 . 2011-01-16 20:48 15781 ----a-w- d:\windows\system32\drivers\mdc8021x.sys
.
.
------- Sigcheck -------
.
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . d:\windows\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp3qfe\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . d:\windows\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp3gdr\tcpip.sys
[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . d:\windows\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp2gdr\tcpip.sys
[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . d:\windows\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp2qfe\tcpip.sys
[-] 2004-08-18 . 7B11118B078B88F87183FE69EDA43137 . 359040 . . [5.1.2600.2180] . . d:\windows\system32\drivers\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2011-03-27_11.20.10 )))))))))))))))))))))))))))))))))))))))))
.
- 2001-08-24 12:00 . 2011-03-27 10:09 71488 d:\windows\system32\perfc00C.dat
+ 2001-08-24 12:00 . 2011-03-28 16:53 71488 d:\windows\system32\perfc00C.dat
- 2001-08-24 12:00 . 2011-03-27 10:09 58732 d:\windows\system32\perfc009.dat
+ 2001-08-24 12:00 . 2011-03-28 16:53 58732 d:\windows\system32\perfc009.dat
+ 2001-08-24 12:00 . 2011-03-28 16:53 394018 d:\windows\system32\perfh00C.dat
- 2001-08-24 12:00 . 2011-03-27 10:09 394018 d:\windows\system32\perfh00C.dat
+ 2001-08-24 12:00 . 2011-03-28 16:53 392432 d:\windows\system32\perfh009.dat
- 2001-08-24 12:00 . 2011-03-27 10:09 392432 d:\windows\system32\perfh009.dat
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- d:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="d:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="d:\program files\Alwil Software\Avast5\avastUI.exe" [2011-02-23 3451496]
"NeroFilterCheck"="d:\program files\Fichiers communs\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ClearDocsOnExit"= 64 (0x40)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ClearDocsOnExit"= 64 (0x40)
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\devolo\\informer\\devinf.exe"=
"d:\\Program Files\\devolo\\easyshare\\easyshare.exe"=
"d:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"d:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"f:\\Shareaza\\Shareaza.exe"=
"f:\\Shareaza\\Shareaza\\Shareaza.exe"=
"f:\\Jeux\\age3.exe"=
"f:\\Jeux\\age3x.exe"=
.
R0 Lbd;Lbd;d:\windows\system32\drivers\Lbd.sys [23/03/2011 22:48 64288]
R1 aswSnx;aswSnx;d:\windows\system32\drivers\aswSnx.sys [23/03/2011 20:47 371544]
R1 aswSP;aswSP;d:\windows\system32\drivers\aswSP.sys [16/01/2011 23:32 301528]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [16/01/2011 23:32 19544]
R2 NPF_devolo;NetGroup Packet Filter Driver (devolo);d:\windows\system32\drivers\npf_devolo.sys [07/02/2007 18:57 35840]
R2 OPTENET_FILTER;Orange Contrôle Parental;d:\program files\Controle Parental\bin\optproxy.exe [16/01/2011 23:44 624376]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\d:\program files\Lavasoft\Ad-Aware\KernExplorer.sys --> d:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
.
Contenu du dossier 'Tâches planifiées'
.
2011-03-27 d:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1606980848-725345543-500Core.job
- d:\documents and settings\Administrateur.ORDI-XPSP2.000\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-03-24 21:12]
.
2011-03-28 d:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1202660629-1606980848-725345543-500UA.job
- d:\documents and settings\Administrateur.ORDI-XPSP2.000\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-03-24 21:12]
.
2011-03-26 d:\windows\Tasks\Maintenance en 1 clic.job
- d:\program files\TuneUp Utilities 2004\SystemOptimizer.exe [2004-04-24 22:28]
.
.
------- Examen supplémentaire -------
.
LSP: d:\program files\Controle Parental\bin\lsp.dll
TCP: {6B00F8EA-869A-49AB-BABE-62C99011A9C6} = 192.168.1.1
FF - ProfilePath - d:\documents and settings\Administrateur.ORDI-XPSP2.000\Application Data\Mozilla\Firefox\Profiles\42my5l27.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - f:\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-28 19:14
Windows 5.1.2600 Service Pack 2 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
Recherche de fichiers cachés ...
.
Scan terminé avec succès
Fichiers cachés: 0
.
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@d:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="d:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'explorer.exe'(2532)
d:\program files\Fichiers communs\Ahead\Lib\NeroSearchBar.dll
d:\program files\Fichiers communs\Ahead\Lib\MFC71U.DLL
d:\program files\Fichiers communs\Ahead\Lib\BCGCBPRO860un71.dll
d:\windows\system32\ODBC32.dll
d:\program files\Controle Parental\bin\lsp.dll
.
------------------------ Autres processus actifs ------------------------
.
d:\program files\Alwil Software\Avast5\AvastSvc.exe
f:\nero 7 premium\Nero 7\Nero BackItUp\NBService.exe
d:\program files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
d:\windows\system32\wdfmgr.exe
.
**************************************************************************
.
Heure de fin: 2011-03-28 19:17:44 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-03-28 17:17
.
Avant-CF: 2 020 302 848 octets libres
Après-CF: 2 012 975 104 octets libres
.
- - End Of File - - 808F27B11846BB3F2B08070490FA8E42

voila

il n'a rien supprimé du tout !

désinstalle ad-aware il sert à rien

pourtant mon ordi rame plus... tous les logiciels du type ad-aware et co sont désinstallés

okey :)

oups oui tu as raison ..NE surtout pas prendre les outils au pif, renseignez vous toujours...

sur conseil d un helpeur :)

^^

;-)

ouvre un nouveau sujet stp.

okééé je vais le faire avec plaisir