Aide virus
jeflili
Messages postés
10
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
quelqu'un peut m'aider je pense etre infecter voila mon rapport hijackthis merci
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\SRVLOAD.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\WebProxy.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavBckPT.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/search/index.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/?p=us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\^^^^^.exe
O1 - Hosts: 195.158.173.86 amateur.de
O1 - Hosts: 195.158.173.86 anal.com
O1 - Hosts: 195.158.173.86 anal.de
O1 - Hosts: 195.158.173.86 anime.com
O1 - Hosts: 195.158.173.86 anime.de
O1 - Hosts: 195.158.173.86 asian.com
O1 - Hosts: 195.158.173.86 asian.de
O1 - Hosts: 195.158.173.86 bestofchat.com
O1 - Hosts: 195.158.173.86 bestsingle.it
O1 - Hosts: 195.158.173.86 blowjob.com
O1 - Hosts: 195.158.173.86 blowjob.de
O1 - Hosts: 195.158.173.86 boldchat.com
O1 - Hosts: 195.158.173.86 bravenet.com
O1 - Hosts: 195.158.173.86 calcio.redbaron.it
O1 - Hosts: 195.158.173.86 canalchat.com
O1 - Hosts: 195.158.173.86 causerie.fr
O1 - Hosts: 195.158.173.86 chat.com
O1 - Hosts: 195.158.173.86 chat.de
O1 - Hosts: 195.158.173.86 chat.tiscali.it
O1 - Hosts: 195.158.173.86 chat.voila.fr
O1 - Hosts: 195.158.173.86 chatandco.fr
O1 - Hosts: 195.158.173.86 chatcity.de
O1 - Hosts: 195.158.173.86 chatta.it
O1 - Hosts: 195.158.173.86 chiacchierata.fr
O1 - Hosts: 195.158.173.86 cumshot.de
O1 - Hosts: 195.158.173.86 ebony.com
O1 - Hosts: 195.158.173.86 ebony.de
O1 - Hosts: 195.158.173.86 erotik.de
O1 - Hosts: 195.158.173.86 fisting.com
O1 - Hosts: 195.158.173.86 fisting.de
O1 - Hosts: 195.158.173.86 flirt-fever.de
O1 - Hosts: 195.158.173.86 friendscout24.de
O1 - Hosts: 195.158.173.86 gai.fr
O1 - Hosts: 195.158.173.86 gay.com
O1 - Hosts: 195.158.173.86 gay.de
O1 - Hosts: 195.158.173.86 gruppensex.de
O1 - Hosts: 195.158.173.86 hentai.com
O1 - Hosts: 195.158.173.86 hentai.de
O1 - Hosts: 195.158.173.86 icq.de
O1 - Hosts: 195.158.173.86 ilove.de
O1 - Hosts: 195.158.173.86 incontri.supereva.it
O1 - Hosts: 195.158.173.86 knuddels.de
O1 - Hosts: 195.158.173.86 langueauchat.com
O1 - Hosts: 195.158.173.86 latina.de
O1 - Hosts: 195.158.173.86 lesben.de
O1 - Hosts: 195.158.173.86 lesbian.com
O1 - Hosts: 195.158.173.86 livecom.fr
O1 - Hosts: 195.158.173.86 mirc.com
O1 - Hosts: 195.158.173.86 oral.com
O1 - Hosts: 195.158.173.86 oral.de
O1 - Hosts: 195.158.173.86 orale.it
O1 - Hosts: 195.158.173.86 orgie.de
O1 - Hosts: 195.158.173.86 porn.com
O1 - Hosts: 195.158.173.86 porno.de
O1 - Hosts: 195.158.173.86 pornofilme.de
O1 - Hosts: 195.158.173.86 pornostar.de
O1 - Hosts: 195.158.173.86 pornstar.com
O1 - Hosts: 195.158.173.86 schlampen.de
O1 - Hosts: 195.158.173.86 sesso.it
O1 - Hosts: 195.158.173.86 sex.com
O1 - Hosts: 195.158.173.86 sex.de
O1 - Hosts: 195.158.173.86 sexe.fr
O1 - Hosts: 195.158.173.86 spinchat.de
O1 - Hosts: 195.158.173.86 talkcity.com
O1 - Hosts: 195.158.173.86 teen.com
O1 - Hosts: 195.158.173.86 teen.de
O1 - Hosts: 195.158.173.86 titten.de
O1 - Hosts: 195.158.173.86 traumpartnerchat.de
O1 - Hosts: 195.158.173.86 webchat.de
O1 - Hosts: 195.158.173.86 weborama.fr
O1 - Hosts: 195.158.173.86 www.amateur.de
O1 - Hosts: 195.158.173.86 www.anal.com
O1 - Hosts: 195.158.173.86 www.anal.de
O1 - Hosts: 195.158.173.86 www.anime.com
O1 - Hosts: 195.158.173.86 www.anime.de
O1 - Hosts: 195.158.173.86 www.asian.com
O1 - Hosts: 195.158.173.86 www.asian.de
O1 - Hosts: 195.158.173.86 www.bestofchat.com
O1 - Hosts: 195.158.173.86 www.bestsingle.it
O1 - Hosts: 195.158.173.86 www.blowjob.com
O1 - Hosts: 195.158.173.86 www.blowjob.de
O1 - Hosts: 195.158.173.86 www.boldchat.com
O1 - Hosts: 195.158.173.86 www.bravenet.com
O1 - Hosts: 195.158.173.86 www.canalchat.com
O1 - Hosts: 195.158.173.86 www.causerie.fr
O1 - Hosts: 195.158.173.86 www.chat.com
O1 - Hosts: 195.158.173.86 www.chat.de
O1 - Hosts: 195.158.173.86 www.chatandco.fr
O1 - Hosts: 195.158.173.86 www.chatcity.de
O1 - Hosts: 195.158.173.86 www.chatta.it
O1 - Hosts: 195.158.173.86 www.chiacchierata.fr
O1 - Hosts: 195.158.173.86 www.cumshot.de
O1 - Hosts: 195.158.173.86 www.ebony.com
O1 - Hosts: 195.158.173.86 www.ebony.de
O1 - Hosts: 195.158.173.86 www.erotik.de
O1 - Hosts: 195.158.173.86 www.fisting.com
O1 - Hosts: 195.158.173.86 www.fisting.de
O1 - Hosts: 195.158.173.86 www.flirt-fever.de
O1 - Hosts: 195.158.173.86 www.friendscout24.de
O1 - Hosts: 195.158.173.86 www.gai.fr
O1 - Hosts: 195.158.173.86 www.gay.com
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - (no file)
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [REGSHAVE] "C:\Program Files\REGSHAVE\REGSHAVE.EXE" /AUTORUN
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [949e035f] rundll32.exe "C:\WINDOWS\system32\pjrffmsh.dll",b
O4 - HKLM\..\Run: [BM97ad30c3] Rundll32.exe "C:\WINDOWS\system32\oneujlhf.dll",s
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: AltaVista Search - file://C:\Program Files\ALTAVISTA Toolbar\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Translate - file://C:\Program Files\ALTAVISTA Toolbar\Cache\SelectedContextTranslation.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - https://fr.yahoo.com/?p=us
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-c4fe0f1ac28c6939.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://www.tele2mail.com/static/apps/utils/AccountHelper.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: ???,
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O24 - Desktop Component 0: (no name) - https://www.linternaute.com/sortir/magazine/1358366-fond-d-ecran-gratuit-choisissez-votre-wallpaper-parmi-nos-selections/
quelqu'un peut m'aider je pense etre infecter voila mon rapport hijackthis merci
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\SRVLOAD.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\WebProxy.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavBckPT.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/search/index.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/?p=us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\^^^^^.exe
O1 - Hosts: 195.158.173.86 amateur.de
O1 - Hosts: 195.158.173.86 anal.com
O1 - Hosts: 195.158.173.86 anal.de
O1 - Hosts: 195.158.173.86 anime.com
O1 - Hosts: 195.158.173.86 anime.de
O1 - Hosts: 195.158.173.86 asian.com
O1 - Hosts: 195.158.173.86 asian.de
O1 - Hosts: 195.158.173.86 bestofchat.com
O1 - Hosts: 195.158.173.86 bestsingle.it
O1 - Hosts: 195.158.173.86 blowjob.com
O1 - Hosts: 195.158.173.86 blowjob.de
O1 - Hosts: 195.158.173.86 boldchat.com
O1 - Hosts: 195.158.173.86 bravenet.com
O1 - Hosts: 195.158.173.86 calcio.redbaron.it
O1 - Hosts: 195.158.173.86 canalchat.com
O1 - Hosts: 195.158.173.86 causerie.fr
O1 - Hosts: 195.158.173.86 chat.com
O1 - Hosts: 195.158.173.86 chat.de
O1 - Hosts: 195.158.173.86 chat.tiscali.it
O1 - Hosts: 195.158.173.86 chat.voila.fr
O1 - Hosts: 195.158.173.86 chatandco.fr
O1 - Hosts: 195.158.173.86 chatcity.de
O1 - Hosts: 195.158.173.86 chatta.it
O1 - Hosts: 195.158.173.86 chiacchierata.fr
O1 - Hosts: 195.158.173.86 cumshot.de
O1 - Hosts: 195.158.173.86 ebony.com
O1 - Hosts: 195.158.173.86 ebony.de
O1 - Hosts: 195.158.173.86 erotik.de
O1 - Hosts: 195.158.173.86 fisting.com
O1 - Hosts: 195.158.173.86 fisting.de
O1 - Hosts: 195.158.173.86 flirt-fever.de
O1 - Hosts: 195.158.173.86 friendscout24.de
O1 - Hosts: 195.158.173.86 gai.fr
O1 - Hosts: 195.158.173.86 gay.com
O1 - Hosts: 195.158.173.86 gay.de
O1 - Hosts: 195.158.173.86 gruppensex.de
O1 - Hosts: 195.158.173.86 hentai.com
O1 - Hosts: 195.158.173.86 hentai.de
O1 - Hosts: 195.158.173.86 icq.de
O1 - Hosts: 195.158.173.86 ilove.de
O1 - Hosts: 195.158.173.86 incontri.supereva.it
O1 - Hosts: 195.158.173.86 knuddels.de
O1 - Hosts: 195.158.173.86 langueauchat.com
O1 - Hosts: 195.158.173.86 latina.de
O1 - Hosts: 195.158.173.86 lesben.de
O1 - Hosts: 195.158.173.86 lesbian.com
O1 - Hosts: 195.158.173.86 livecom.fr
O1 - Hosts: 195.158.173.86 mirc.com
O1 - Hosts: 195.158.173.86 oral.com
O1 - Hosts: 195.158.173.86 oral.de
O1 - Hosts: 195.158.173.86 orale.it
O1 - Hosts: 195.158.173.86 orgie.de
O1 - Hosts: 195.158.173.86 porn.com
O1 - Hosts: 195.158.173.86 porno.de
O1 - Hosts: 195.158.173.86 pornofilme.de
O1 - Hosts: 195.158.173.86 pornostar.de
O1 - Hosts: 195.158.173.86 pornstar.com
O1 - Hosts: 195.158.173.86 schlampen.de
O1 - Hosts: 195.158.173.86 sesso.it
O1 - Hosts: 195.158.173.86 sex.com
O1 - Hosts: 195.158.173.86 sex.de
O1 - Hosts: 195.158.173.86 sexe.fr
O1 - Hosts: 195.158.173.86 spinchat.de
O1 - Hosts: 195.158.173.86 talkcity.com
O1 - Hosts: 195.158.173.86 teen.com
O1 - Hosts: 195.158.173.86 teen.de
O1 - Hosts: 195.158.173.86 titten.de
O1 - Hosts: 195.158.173.86 traumpartnerchat.de
O1 - Hosts: 195.158.173.86 webchat.de
O1 - Hosts: 195.158.173.86 weborama.fr
O1 - Hosts: 195.158.173.86 www.amateur.de
O1 - Hosts: 195.158.173.86 www.anal.com
O1 - Hosts: 195.158.173.86 www.anal.de
O1 - Hosts: 195.158.173.86 www.anime.com
O1 - Hosts: 195.158.173.86 www.anime.de
O1 - Hosts: 195.158.173.86 www.asian.com
O1 - Hosts: 195.158.173.86 www.asian.de
O1 - Hosts: 195.158.173.86 www.bestofchat.com
O1 - Hosts: 195.158.173.86 www.bestsingle.it
O1 - Hosts: 195.158.173.86 www.blowjob.com
O1 - Hosts: 195.158.173.86 www.blowjob.de
O1 - Hosts: 195.158.173.86 www.boldchat.com
O1 - Hosts: 195.158.173.86 www.bravenet.com
O1 - Hosts: 195.158.173.86 www.canalchat.com
O1 - Hosts: 195.158.173.86 www.causerie.fr
O1 - Hosts: 195.158.173.86 www.chat.com
O1 - Hosts: 195.158.173.86 www.chat.de
O1 - Hosts: 195.158.173.86 www.chatandco.fr
O1 - Hosts: 195.158.173.86 www.chatcity.de
O1 - Hosts: 195.158.173.86 www.chatta.it
O1 - Hosts: 195.158.173.86 www.chiacchierata.fr
O1 - Hosts: 195.158.173.86 www.cumshot.de
O1 - Hosts: 195.158.173.86 www.ebony.com
O1 - Hosts: 195.158.173.86 www.ebony.de
O1 - Hosts: 195.158.173.86 www.erotik.de
O1 - Hosts: 195.158.173.86 www.fisting.com
O1 - Hosts: 195.158.173.86 www.fisting.de
O1 - Hosts: 195.158.173.86 www.flirt-fever.de
O1 - Hosts: 195.158.173.86 www.friendscout24.de
O1 - Hosts: 195.158.173.86 www.gai.fr
O1 - Hosts: 195.158.173.86 www.gay.com
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - (no file)
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [REGSHAVE] "C:\Program Files\REGSHAVE\REGSHAVE.EXE" /AUTORUN
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [949e035f] rundll32.exe "C:\WINDOWS\system32\pjrffmsh.dll",b
O4 - HKLM\..\Run: [BM97ad30c3] Rundll32.exe "C:\WINDOWS\system32\oneujlhf.dll",s
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: AltaVista Search - file://C:\Program Files\ALTAVISTA Toolbar\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Translate - file://C:\Program Files\ALTAVISTA Toolbar\Cache\SelectedContextTranslation.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - https://fr.yahoo.com/?p=us
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-c4fe0f1ac28c6939.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://www.tele2mail.com/static/apps/utils/AccountHelper.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: ???,
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\DiskeeperLite\DKService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O24 - Desktop Component 0: (no name) - https://www.linternaute.com/sortir/magazine/1358366-fond-d-ecran-gratuit-choisissez-votre-wallpaper-parmi-nos-selections/
A voir également:
- Aide virus
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
1 réponse
Téléchargez Ccleaner http://www.commentcamarche.net/telecharger/telechargement 168 ccleaner
• Fermez toutes les applications
• Lancer CCLeaner
S'il n'est pas en Français cliquer sur Options, Setting, Language
et sélectionnez Français
• cocher dans le menu Nettoyeur - onglet Windows :
Internet Explorer: Fichiers Internet Temporaires, Cookies
• Système: Vider la Poubelle, Fichiers Temporaires, Presse-papiers
• Avancé: Vieilles données du Prefetch
• Décocher dans le menu Options - sous-menu Avancé :
Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures
• Cocher dans le menu Nettoyeur - onglet Applications : Internet: Sun Java
• Cocher , si cela est possible, dans le menu Nettoyeur - onglet Applications :
Firefox/Mozilla: Cache Internet, Cookies
• Cliquez sur Analyse
• Cliquez sur le bouton Lancer le nettoyage dans le menu Nettoyeur.
• Cliquez sur Registre
• Sélectionner tout
• Cliquez sur Chercher des erreurs (En bas)
Une fois le scan terminé sélectionner tout
• Cliquez sur Réparer les erreurs sélectionnées
Source: https://tjrlapourtaider.kanak.fr/
• Fermez toutes les applications
• Lancer CCLeaner
S'il n'est pas en Français cliquer sur Options, Setting, Language
et sélectionnez Français
• cocher dans le menu Nettoyeur - onglet Windows :
Internet Explorer: Fichiers Internet Temporaires, Cookies
• Système: Vider la Poubelle, Fichiers Temporaires, Presse-papiers
• Avancé: Vieilles données du Prefetch
• Décocher dans le menu Options - sous-menu Avancé :
Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures
• Cocher dans le menu Nettoyeur - onglet Applications : Internet: Sun Java
• Cocher , si cela est possible, dans le menu Nettoyeur - onglet Applications :
Firefox/Mozilla: Cache Internet, Cookies
• Cliquez sur Analyse
• Cliquez sur le bouton Lancer le nettoyage dans le menu Nettoyeur.
• Cliquez sur Registre
• Sélectionner tout
• Cliquez sur Chercher des erreurs (En bas)
Une fois le scan terminé sélectionner tout
• Cliquez sur Réparer les erreurs sélectionnées
Source: https://tjrlapourtaider.kanak.fr/
