Virus

golden62 Messages postés 6 Statut Membre -  
 Utilisateur anonyme -
bonjour jaimerai savoir si je sui infecté comment faire? merci

2 réponses

  1. Utilisateur anonyme
     
    Salut,

    Télécharge HijackThis:
    Téléchargement de HijackThis

    Installe le dans son propre dossier:
    -clic droit sur le bureau, choisis "nouveau dossier" puis installe le dedans.
    Lance le, clic sur "do a system scan and save logfile"
    Puis copie et colle le rapport ici stp
    0
    1. golden62 Messages postés 6 Statut Membre
       
      Logfile of HijackThis v1.99.1
      Scan saved at 16:39:29, on 18/09/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\system32\svchost.exe
      C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
      C:\Documents and Settings\-\Bureau\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.staracademy.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
      O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [StopCop] C:\Program Files\StopCop Popup Software Trial\stopcopt.exe
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
      O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O20 - AppInit_DLLs: msdtc.dll
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

      je te temercie
      0
    2. golden62 Messages postés 6 Statut Membre
       
      Logfile of HijackThis v1.99.1
      Scan saved at 16:39:29, on 18/09/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\system32\svchost.exe
      C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
      C:\Documents and Settings\-\Bureau\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.staracademy.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
      O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [StopCop] C:\Program Files\StopCop Popup Software Trial\stopcopt.exe
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
      O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
      O20 - AppInit_DLLs: msdtc.dll
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
      je te remercie
      0
      1. Utilisateur anonyme > golden62 Messages postés 6 Statut Membre
         
        ton rapport semble propre, mais tu n'as pas l'air d'avoir beaucoup de logiciels anti-spywares

        Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici
        Ewido: (reste gratuit après la période d'essai)
        Télécharger Ewido Security Suite
        0
      2. golden62 > Utilisateur anonyme
         
        ---------------------------------------------------------
        ewido anti-spyware - Scan Report
        ---------------------------------------------------------

        + Created at: 17:31:29 18/09/2006

        + Scan result:



        HKU\S-1-5-21-1220945662-842925246-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : No action taken.
        :mozilla.13:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
        :mozilla.14:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
        C:\Documents and Settings\-\Cookies\-@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@paypal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
        C:\Documents and Settings\-\Cookies\-@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
        C:\Documents and Settings\-\Cookies\-@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
        C:\Documents and Settings\-\Cookies\-@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
        C:\Documents and Settings\-\Cookies\-@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
        C:\Documents and Settings\-\Cookies\-@burstnet[1].txt -> TrackingCookie.Burstnet : No action taken.
        C:\Documents and Settings\-\Cookies\-@casinodelrio[2].txt -> TrackingCookie.Casinodelrio : No action taken.
        C:\Documents and Settings\-\Cookies\-@www.casinodelrio[2].txt -> TrackingCookie.Casinodelrio : No action taken.
        C:\Documents and Settings\-\Cookies\-@crbanner.casinopays[1].txt -> TrackingCookie.Casinopays : No action taken.
        C:\Documents and Settings\-\Cookies\-@casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
        C:\Documents and Settings\-\Cookies\-@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
        C:\Documents and Settings\-\Cookies\-@cz4.clickzs[1].txt -> TrackingCookie.Clickzs : No action taken.
        C:\Documents and Settings\-\Cookies\-@cz6.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
        C:\Documents and Settings\-\Cookies\-@cz7.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
        C:\Documents and Settings\-\Cookies\-@banner.clubdicecasino[1].txt -> TrackingCookie.Clubdicecasino : No action taken.
        C:\Documents and Settings\-\Cookies\-@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
        C:\Documents and Settings\-\Cookies\-@le62.fr.35318.fb.dbbsrv[2].txt -> TrackingCookie.Dbbsrv : No action taken.
        :mozilla.20:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
        C:\Documents and Settings\-\Cookies\-@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
        C:\Documents and Settings\-\Cookies\-@c.enhance[1].txt -> TrackingCookie.Enhance : No action taken.
        :mozilla.17:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Estat : No action taken.
        C:\Documents and Settings\-\Cookies\-@estat[1].txt -> TrackingCookie.Estat : No action taken.
        C:\Documents and Settings\-\Cookies\-@as-eu.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
        C:\Documents and Settings\-\Cookies\-@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
        C:\Documents and Settings\-\Cookies\-@ehg-ricaud.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
        C:\Documents and Settings\-\Cookies\-@ehg-systemax.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
        C:\Documents and Settings\-\Cookies\-@hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
        C:\Documents and Settings\-\Cookies\-@ilead.itrack[2].txt -> TrackingCookie.Itrack : No action taken.
        C:\Documents and Settings\-\Cookies\-@image.masterstats[1].txt -> TrackingCookie.Masterstats : No action taken.
        :mozilla.19:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
        C:\Documents and Settings\-\Cookies\-@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
        C:\Documents and Settings\-\Cookies\-@banner.newyorkcasino[1].txt -> TrackingCookie.Newyorkcasino : No action taken.
        C:\Documents and Settings\-\Cookies\-@data4.perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
        C:\Documents and Settings\-\Cookies\-@overture[1].txt -> TrackingCookie.Overture : No action taken.
        C:\Documents and Settings\-\Cookies\-@perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
        C:\Documents and Settings\-\Cookies\-@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
        C:\Documents and Settings\-\Cookies\-@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken.
        C:\Documents and Settings\-\Cookies\-@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
        C:\Documents and Settings\-\Cookies\-@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
        C:\Documents and Settings\-\Cookies\-@serving-sys[3].txt -> TrackingCookie.Serving-sys : No action taken.
        :mozilla.10:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
        :mozilla.11:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
        :mozilla.9:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
        C:\Documents and Settings\-\Cookies\-@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
        C:\Documents and Settings\-\Cookies\-@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
        :mozilla.21:C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\y49uyp5m.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
        C:\Documents and Settings\-\Cookies\-@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
        C:\Documents and Settings\-\Cookies\-@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
        C:\Documents and Settings\-\Cookies\-@yadro[2].txt -> TrackingCookie.Yadro : No action taken.
        C:\Documents and Settings\-\Cookies\-@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
        C:\Documents and Settings\-\Cookies\-@zedo[2].txt -> TrackingCookie.Zedo : No action taken.


        ::Report end
        0
      3. golden > Utilisateur anonyme
         
        je te remercie pour tes competences
        0
  2. Utilisateur anonyme
     
    Refais un scan avec Ewido et choisis "delete" une fosi qu'il a fini pour qu'il puisse tout supprimer.

    Ajoute ce logiciel et scan ton Pc entierement et supprime ce qu'il pourrait trouver

    SpyBot-Search & Destroy: (gratuit)
    Spybot Search & Destroy

    puis fait ça:

    Fais ce nettoyage: (à faire réguliérement)

    ¤Telecharges et installes ceci:
    CCleaner:
    Télécharger Ccleaner

    dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
    Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes

    ¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"

    A++
    0