Aiode pour nettoyage avec Hijack
Space girl
-
jfkpresident Messages postés 13877 Statut Contributeur sécurité -
jfkpresident Messages postés 13877 Statut Contributeur sécurité -
Bonjour,
J'aimerais avoir de l'aide pour nettoyer mon PC avec HiJack!
Voici le log, j'aimerais savoir ce que je dois suprimer!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:42:18, on 2007-12-16
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Fichiers communs\ConfidentUser\strpmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Insider\Insider.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\SOFTWA~1\soproc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mega-poudlard.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Fichiers communs\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Salestart] "C:\Program Files\Fichiers communs\ConfidentUser\strpmon.exe" dm=http://confidentuser.com ad=http://confidentuser.com sd=http://inspaid.confidentuser.com
O4 - HKCU\..\Run: [SOProc_RegSoAlertWxSzNn] rundll32 shell32.dll,ShellExec_RunDLL C:\PROGRA~1\SOFTWA~1\soproc.exe -pack RegSoAlertWxSzNn
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [Insider] C:\Program Files\Insider\Insider.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAccessVerisign/ie/bridge-c18.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540013} (CInstall Class) - http://adserver.sharewareonline.com/adserver/Install.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} (ActiveReceiver Control) - http://www.meetstream.com/activex/28019/activereceiver.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} (ActiveID Control) - http://www.meetstream.com/activex/activeid1003/activeid.cab
O20 - Winlogon Notify: pmnmjjk - pmnmjjk.dll (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
J'aimerais avoir de l'aide pour nettoyer mon PC avec HiJack!
Voici le log, j'aimerais savoir ce que je dois suprimer!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:42:18, on 2007-12-16
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Fichiers communs\ConfidentUser\strpmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Insider\Insider.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\SOFTWA~1\soproc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mega-poudlard.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Fichiers communs\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Salestart] "C:\Program Files\Fichiers communs\ConfidentUser\strpmon.exe" dm=http://confidentuser.com ad=http://confidentuser.com sd=http://inspaid.confidentuser.com
O4 - HKCU\..\Run: [SOProc_RegSoAlertWxSzNn] rundll32 shell32.dll,ShellExec_RunDLL C:\PROGRA~1\SOFTWA~1\soproc.exe -pack RegSoAlertWxSzNn
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [Insider] C:\Program Files\Insider\Insider.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAccessVerisign/ie/bridge-c18.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540013} (CInstall Class) - http://adserver.sharewareonline.com/adserver/Install.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} (ActiveReceiver Control) - http://www.meetstream.com/activex/28019/activereceiver.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} (ActiveID Control) - http://www.meetstream.com/activex/activeid1003/activeid.cab
O20 - Winlogon Notify: pmnmjjk - pmnmjjk.dll (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
A voir également:
- Aiode pour nettoyage avec Hijack
- Nettoyage pc lent - Guide
- Nettoyage - Guide
- Nettoyage mac - Guide
- Nettoyage de disque - Guide
- Nettoyage windows update - Guide
3 réponses
salut,
tu peux virer ceux la:
C:\PROGRA~1\SOFTWA~1\soproc.exe
C:\Program Files\Insider\Insider.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAccessVerisign/ie/bridge-c18.cab
O20 - Winlogon Notify: pmnmjjk - pmnmjjk.dll (file missing)
fais aussi un scan en ligne bitdefender:
E - Scan online avec BitDefender
Fais ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X;
la barre anti-popup du SP2 (en haut) va se mettre à clignoter,
clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
Copie/Colle le rapport
http://www.malekal.com/tutorial_BitDefender_AntiSpyware.php
https://kerio.probb.fr/
http://pageperso.aol.fr/rginformatique/mapage/defender.htm
**si je ne répond pas de suite c'est que moi aussi j'ai un métier et une famille**
tu peux virer ceux la:
C:\PROGRA~1\SOFTWA~1\soproc.exe
C:\Program Files\Insider\Insider.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE (file missing)
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAccessVerisign/ie/bridge-c18.cab
O20 - Winlogon Notify: pmnmjjk - pmnmjjk.dll (file missing)
fais aussi un scan en ligne bitdefender:
E - Scan online avec BitDefender
Fais ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X;
la barre anti-popup du SP2 (en haut) va se mettre à clignoter,
clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
Copie/Colle le rapport
http://www.malekal.com/tutorial_BitDefender_AntiSpyware.php
https://kerio.probb.fr/
http://pageperso.aol.fr/rginformatique/mapage/defender.htm
**si je ne répond pas de suite c'est que moi aussi j'ai un métier et une famille**
BitDefender Online Scanner
Scan report generated at: Mon, Dec 17, 2007 - 12:31:33
Scan path: A:\;C:\;E:\;F:\;
Statistics
Time
01:28:09
Files
95630
Folders
4935
Boot Sectors
2
Archives
1633
Packed Files
6230
Results
Identified Viruses
11
Infected Files
15
Suspect Files
1
Warnings
0
Disinfected
2
Deleted Files
14
Engines Info
Virus Definitions
882595
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
13
Archive plugins
31
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\WINDOWS\system32\pr12\swdrv83122.exe
Infected with: Trojan.Generic.78149
C:\WINDOWS\system32\pr12\swdrv83122.exe
Disinfection failed
C:\WINDOWS\system32\pr12\swdrv83122.exe
Deleted
C:\WINDOWS\system32\ip3\qopre83122.exe
Infected with: Trojan.Generic.78149
C:\WINDOWS\system32\ip3\qopre83122.exe
Disinfection failed
C:\WINDOWS\system32\ip3\qopre83122.exe
Deleted
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Purityscan.EN
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Disinfection failed
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Deleted
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)
Update failed
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Infected with: Trojan.JSDownL.B
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Disinfection failed
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Deleted
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Infected with: Trojan.Agent.AY
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Disinfection failed
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Deleted
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Infected with: Trojan.Agent.AY
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Disinfection failed
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Infected with: Trojan.Downloader.Realtens.H
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc=>(Quarantine-2)
Infected with: W97M.Remplace.D
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc=>(Quarantine-2)
Disinfected
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc=>(Quarantine-2)
Infected with: W97M.Remplace.D
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc=>(Quarantine-2)
Disinfected
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc
Update failed
C:\Program Files\SoftwareOnline\soproc.exe
Suspected of: Generic.Malware.SFdld.B24CEFF1
C:\Program Files\SoftwareOnline\soproc.exe
Disinfection failed
C:\Program Files\SoftwareOnline\soproc.exe
Delete failed
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Infected with: Trojan.Kirsun.A
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Disinfection failed
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Deleted
C:\FOUND.121\FILE0012.CHK
Infected with: Trojan.Clicker.CM
C:\FOUND.121\FILE0012.CHK
Disinfection failed
C:\FOUND.121\FILE0012.CHK
Deleted
C:\Temp\perCa1221.exe
Infected with: MemScan:Trojan.Downloader.Small.BUY
C:\Temp\perCa1221.exe
Deleted
C:\strunner.exe
Infected with: MemScan:Trojan.Delautoexec.51272.C
C:\strunner.exe
Disinfection failed
C:\strunner.exe
Deleted
C:\esgoij.exe
Infected with: MemScan:Trojan.Delautoexec.51272.C
C:\esgoij.exe
Disinfection failed
C:\esgoij.exe
Deleted
C:\killer.bat
Infected with: Trojan.Bat.Killav.BU
C:\killer.bat
Disinfection failed
C:\killer.bat
Deleted
Scan report generated at: Mon, Dec 17, 2007 - 12:31:33
Scan path: A:\;C:\;E:\;F:\;
Statistics
Time
01:28:09
Files
95630
Folders
4935
Boot Sectors
2
Archives
1633
Packed Files
6230
Results
Identified Viruses
11
Infected Files
15
Suspect Files
1
Warnings
0
Disinfected
2
Deleted Files
14
Engines Info
Virus Definitions
882595
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
13
Archive plugins
31
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\WINDOWS\system32\pr12\swdrv83122.exe
Infected with: Trojan.Generic.78149
C:\WINDOWS\system32\pr12\swdrv83122.exe
Disinfection failed
C:\WINDOWS\system32\pr12\swdrv83122.exe
Deleted
C:\WINDOWS\system32\ip3\qopre83122.exe
Infected with: Trojan.Generic.78149
C:\WINDOWS\system32\ip3\qopre83122.exe
Disinfection failed
C:\WINDOWS\system32\ip3\qopre83122.exe
Deleted
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Infected with: Trojan.Downloader.Purityscan.EN
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Disinfection failed
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)=>zlib_nsis0002
Deleted
C:\Documents and Settings\Amelie\Local Settings\Temp\yazzsnet.exe=>(NSIS o)
Update failed
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Infected with: Trojan.JSDownL.B
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Disinfection failed
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\E54XOLEL\prompt_ie_win[1].js
Deleted
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Infected with: Trojan.Agent.AY
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Disinfection failed
C:\Program Files\Fichiers communs\anmubfss\rpemcueu\fbcluuan.exe
Deleted
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Infected with: Trojan.Agent.AY
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Disinfection failed
C:\Program Files\Fichiers communs\anmubfss\aubmedomtu\sdcnupceq.exe
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Infected with: Trojan.Downloader.Realtens.H
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton AntiVirus\Quarantine\175E5F6F=>(Quarantine-2)
Deleted
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc=>(Quarantine-2)
Infected with: W97M.Remplace.D
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc=>(Quarantine-2)
Disinfected
C:\Program Files\Norton AntiVirus\Quarantine\17833D46.doc
Update failed
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc=>(Quarantine-2)
Infected with: W97M.Remplace.D
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc=>(Quarantine-2)
Disinfected
C:\Program Files\Norton AntiVirus\Quarantine\18404075.doc
Update failed
C:\Program Files\SoftwareOnline\soproc.exe
Suspected of: Generic.Malware.SFdld.B24CEFF1
C:\Program Files\SoftwareOnline\soproc.exe
Disinfection failed
C:\Program Files\SoftwareOnline\soproc.exe
Delete failed
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Infected with: Trojan.Kirsun.A
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Disinfection failed
C:\HarryPotterScript2.5\Harry Potter Script 2.0.exe
Deleted
C:\FOUND.121\FILE0012.CHK
Infected with: Trojan.Clicker.CM
C:\FOUND.121\FILE0012.CHK
Disinfection failed
C:\FOUND.121\FILE0012.CHK
Deleted
C:\Temp\perCa1221.exe
Infected with: MemScan:Trojan.Downloader.Small.BUY
C:\Temp\perCa1221.exe
Deleted
C:\strunner.exe
Infected with: MemScan:Trojan.Delautoexec.51272.C
C:\strunner.exe
Disinfection failed
C:\strunner.exe
Deleted
C:\esgoij.exe
Infected with: MemScan:Trojan.Delautoexec.51272.C
C:\esgoij.exe
Disinfection failed
C:\esgoij.exe
Deleted
C:\killer.bat
Infected with: Trojan.Bat.Killav.BU
C:\killer.bat
Disinfection failed
C:\killer.bat
Deleted
re,
hooooo lala !!!eh ben t'es pas gaté sur ce coup la!
bon...télécharge smitfraufix ici:http://www.commentcamarche.net/telecharger/telechargement 230 smitfraudfix
tuto:https://www.zebulon.fr/dossiers/tutoriaux/66-smitfraudfix.html
poste le rapport ici.
hooooo lala !!!eh ben t'es pas gaté sur ce coup la!
bon...télécharge smitfraufix ici:http://www.commentcamarche.net/telecharger/telechargement 230 smitfraudfix
tuto:https://www.zebulon.fr/dossiers/tutoriaux/66-smitfraudfix.html
poste le rapport ici.
