Probleme page internet

july -  
 july -
Bonjour,
j'ai un probleme , je suis sous firefox 2.0.0.17 et des pages de pubs n'arette pas de s'afficher
j'ai bitdefender 2009 mais rien n'i fais cela continu , aidez moi s'il vous plait
merci.
Configuration: Windows XP
Firefox 2.0.0.17

7 réponses

  1. toptitbal Messages postés 5341 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
     
    Bonjour

    Télécharge le fichier d’installation d’Hijackthis en cliquant sur ce lien

    http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

    * Enregistre HJTInstall.exe sur ton bureau.

    * Double-clique sur HJTInstall.exe pour lancer le programme

    Tuto : https://www.malekal.com/tutoriel-hijackthis/
    http://pagesperso-orange.fr/rginformatique/section%20virus/Hijenr.gif
    http://pagesperso-orange.fr/rginformatique/section%20virus/demohijack.htm

    * Accepte la license en cliquant sur le bouton "I Accept"
    * Choisis l'option "Do a system scan and save a log file"
    * Clique sur "Save log" pour enregistrer le rapport qui s'ouvrira avec le bloc-note
    * Clique sur "Edition -> Sélectionner tout", puis sur "Edition -> Copier" pour copier tout le contenu du rapport

    * Colle le rapport que tu viens de copier sur ce forum

    0
    1. july
       
      merci je te met mon rapport
      0
  2. july
     
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:06:37, on 02/11/2008
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18241)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
    C:\Program Files\Labtec\WebCam10\WebCam10.exe
    C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
    C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
    C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: (no name) - {069F09CB-B3FA-454F-8D52-2F18605E45A6} - (no file)
    O2 - BHO: (no name) - {100DB513-44C9-44E2-B1B1-1A368A60D69C} - (no file)
    O2 - BHO: (no name) - {131D5188-ABD8-4BB4-91A8-2B684E595349} - (no file)
    O2 - BHO: (no name) - {16C8D95D-9721-40BF-9014-F0B7EFE8BBE6} - C:\WINDOWS\system32\xxyawtRI.dll (file missing)
    O2 - BHO: (no name) - {1C550385-6AB2-4A90-8B09-52D324B8C1B0} - (no file)
    O2 - BHO: (no name) - {2DDAB18C-9D4C-4F42-BF66-259ED05C741B} - (no file)
    O2 - BHO: (no name) - {4E6E4EA4-51B7-4D54-B0EA-18521E29FA5E} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {987899AB-2D01-464C-96B3-5F5B224DD0CF} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: (no name) - {C172EE08-12DB-4324-B80E-E3A3B9BED003} - (no file)
    O2 - BHO: (no name) - {DF62E272-D74F-4EC3-BC5F-5E461805220A} - (no file)
    O2 - BHO: (no name) - {E668CD07-1D0D-4061-8BFB-9128E3FE6143} - (no file)
    O2 - BHO: (no name) - {E6D5A191-15B6-4714-A8C5-AF8A7A7E9889} - C:\WINDOWS\system32\vtUooPfc.dll (file missing)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
    O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
    O4 - HKLM\..\Run: [IS CfgWiz] c:\Program Files\Norton Internet Security\cfgwiz.exe /GUID {F073BDC9-0D67-4ff0-879E-27241C843828} /MODE CfgWiz /CMDLINE "REBOOT"
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10.exe" /hide
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
    O4 - HKLM\..\RunOnce: [IERESETATTRIB] %SystemRoot%\system32\cmd.exe /d /q /c %SystemRoot%\system32\ieudinit.exe -ResetFileAttributes
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Sign Two] C:\DOCUME~1\july\APPLIC~1\NEWMEE~1\Hope Blue.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O20 - AppInit_DLLs: upysef.dll yhdxrp.dll hkqhaq.dll sccvoj.dll jrelox.dll gqoalo.dll
    O20 - Winlogon Notify: xxyawtRI - xxyawtRI.dll (file missing)
    O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
    O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
    0
  3. toptitbal Messages postés 5341 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
     
    Télécharge Lop S&D.exe sur ton Bureau.

    https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

    * Double-clique dessus pour lancer l'installation
    * Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
    * Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
    * Patiente jusqu'à la fin du scan
    * Poste le rapport généré (C:\lopR.txt)

    Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
    0
    1. july
       
      voila :
      --------------------\\ Lop S&D 4.2.4-9c XP/Vista

      Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
      X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) M CPU 420 @ 1.60GHz )
      BIOS : Ver 1.00PARTTBL
      USER : july ( Administrator )
      BOOT : Normal boot
      Antivirus : BitDefender Antivirus 12.0 (Activated)
      Firewall : BitDefender Firewall 12.0 (Activated)
      C:\ (Local Disk) - NTFS - Total:68 Go (Free:54 Go)
      D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
      E:\ (CD or DVD)

      "C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
      Option : [1] ( 02/11/2008|14:13 )

      --------------------\\ Listing des dossiers dans APPLIC~1

      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
      [02/11/2008|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
      [11/10/2008|11:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
      [01/11/2008|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
      [12/10/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
      [11/10/2008|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
      [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
      [20/10/2008|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
      [21/10/2008|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
      [02/11/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
      [01/11/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
      [02/11/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
      [02/11/2008|09:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
      [11/10/2008|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

      [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
      [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
      [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

      [14/10/2008|21:23] C:\DOCUME~1\july\APPLIC~1\Adobe
      [21/10/2008|11:56] C:\DOCUME~1\july\APPLIC~1\AdobeUM
      [02/11/2008|10:20] C:\DOCUME~1\july\APPLIC~1\BitDefender
      [11/10/2008|11:46] C:\DOCUME~1\july\APPLIC~1\Google
      [23/10/2008|19:29] C:\DOCUME~1\july\APPLIC~1\Help
      [11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Identities
      [11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Macromedia
      [22/10/2008|21:32] C:\DOCUME~1\july\APPLIC~1\Microsoft
      [11/10/2008|11:38] C:\DOCUME~1\july\APPLIC~1\Mozilla
      [01/11/2008|21:32] C:\DOCUME~1\july\APPLIC~1\New Meet Memo
      [01/11/2008|20:40] C:\DOCUME~1\july\APPLIC~1\Samsung
      [11/10/2008|21:42] C:\DOCUME~1\july\APPLIC~1\Sun
      [12/10/2008|09:55] C:\DOCUME~1\july\APPLIC~1\Talkback
      [02/11/2008|11:54] C:\DOCUME~1\july\APPLIC~1\TuneUp Software
      [28/10/2008|20:28] C:\DOCUME~1\july\APPLIC~1\uTorrent
      [12/10/2008|21:27] C:\DOCUME~1\july\APPLIC~1\WinRAR

      [02/11/2008|09:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

      [12/10/2008|10:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

      --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

      [02/11/2008 11:54][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
      [02/11/2008 14:00][--ah-----] C:\WINDOWS\tasks\AE76284E9185D902.job
      [02/11/2008 11:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
      [05/08/2004 22:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

      ( AE76284E9185D902.job )=( c:\docume~1\july\applic~1\newmee~1\cornscrjoy.exe )

      --------------------\\ Listing des dossiers dans C:\Program Files

      [11/10/2008|07:08] C:\Program Files\Adobe
      [21/10/2008|20:27] C:\Program Files\Alwil Software
      [02/11/2008|10:20] C:\Program Files\BitDefender
      [01/11/2008|18:37] C:\Program Files\Circle Developement
      [19/08/2006|04:18] C:\Program Files\ComPlus Applications
      [11/10/2008|07:08] C:\Program Files\CONEXANT
      [01/11/2008|21:45] C:\Program Files\Digital Guitar Tuner
      [22/10/2008|18:30] C:\Program Files\DivX
      [02/11/2008|10:10] C:\Program Files\Download Direct
      [02/11/2008|11:49] C:\Program Files\Fichiers communs
      [02/11/2008|13:22] C:\Program Files\FolderVault
      [12/10/2008|10:46] C:\Program Files\Google
      [26/10/2008|08:54] C:\Program Files\Guitar Pro 5
      [11/10/2008|07:09] C:\Program Files\Hewlett-Packard
      [11/10/2008|07:10] C:\Program Files\HP
      [10/10/2008|22:21] C:\Program Files\HPQ
      [01/11/2008|21:24] C:\Program Files\InstallShield Installation Information
      [11/10/2008|07:10] C:\Program Files\Intel
      [02/11/2008|12:05] C:\Program Files\Internet Explorer
      [11/10/2008|07:10] C:\Program Files\Java
      [25/10/2008|14:41] C:\Program Files\Labtec
      [01/11/2008|23:31] C:\Program Files\Lavasoft
      [16/10/2008|16:42] C:\Program Files\Messenger
      [12/10/2008|17:40] C:\Program Files\Messenger Plus! Live
      [12/10/2008|10:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
      [11/10/2008|07:10] C:\Program Files\microsoft frontpage
      [11/10/2008|07:10] C:\Program Files\Microsoft Office
      [11/10/2008|07:11] C:\Program Files\Microsoft Works
      [16/10/2008|08:30] C:\Program Files\Movie Maker
      [02/11/2008|11:27] C:\Program Files\Mozilla Firefox
      [02/11/2008|11:00] C:\Program Files\MSBuild
      [11/10/2008|07:11] C:\Program Files\MSN
      [11/10/2008|07:11] C:\Program Files\MSN Gaming Zone
      [12/10/2008|10:41] C:\Program Files\MSXML 4.0
      [16/10/2008|08:29] C:\Program Files\NetMeeting
      [11/10/2008|07:11] C:\Program Files\NetWaiting
      [01/11/2008|21:31] C:\Program Files\New Meet Memo
      [11/10/2008|07:11] C:\Program Files\Online Services
      [16/10/2008|08:29] C:\Program Files\Outlook Express
      [23/10/2008|22:18] C:\Program Files\Power Tab Software
      [02/11/2008|10:59] C:\Program Files\Reference Assemblies
      [01/11/2008|20:40] C:\Program Files\SAMSUNG
      [11/10/2008|07:11] C:\Program Files\Services en ligne
      [11/10/2008|07:12] C:\Program Files\Sonic
      [20/10/2008|20:24] C:\Program Files\Spybot - Search & Destroy
      [12/10/2008|17:24] C:\Program Files\StuffPlug3
      [11/10/2008|07:12] C:\Program Files\Synaptics
      [02/11/2008|14:04] C:\Program Files\Trend Micro
      [02/11/2008|11:58] C:\Program Files\TuneUp Utilities 2008
      [19/10/2008|16:12] C:\Program Files\tuxguitar-1.0
      [19/08/2006|04:18] C:\Program Files\Uninstall Information
      [12/10/2008|11:01] C:\Program Files\uTorrent
      [11/10/2008|11:44] C:\Program Files\Windows Live
      [26/10/2008|10:26] C:\Program Files\Windows Live Safety Center
      [02/11/2008|09:22] C:\Program Files\Windows Media Connect 2
      [02/11/2008|09:22] C:\Program Files\Windows Media Player
      [16/10/2008|08:29] C:\Program Files\Windows NT
      [19/08/2006|04:18] C:\Program Files\WindowsUpdate
      [12/10/2008|21:23] C:\Program Files\WinRAR
      [11/10/2008|07:12] C:\Program Files\xerox

      --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

      [11/10/2008|07:08] C:\Program Files\Fichiers communs\Adobe
      [02/11/2008|10:20] C:\Program Files\Fichiers communs\BitDefender
      [11/10/2008|07:08] C:\Program Files\Fichiers communs\HP
      [11/10/2008|07:08] C:\Program Files\Fichiers communs\InstallShield
      [11/10/2008|07:08] C:\Program Files\Fichiers communs\Java
      [25/10/2008|14:42] C:\Program Files\Fichiers communs\Labtec
      [25/10/2008|14:41] C:\Program Files\Fichiers communs\LogiShrd
      [11/10/2008|11:36] C:\Program Files\Fichiers communs\Microsoft Shared
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\MSSoap
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\ODBC
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\Services
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\Sonic Shared
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\SpeechEngines
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\SureThing Shared
      [21/10/2008|21:25] C:\Program Files\Fichiers communs\Symantec Shared
      [16/10/2008|08:29] C:\Program Files\Fichiers communs\System
      [11/10/2008|07:09] C:\Program Files\Fichiers communs\TiVo Shared
      [11/10/2008|11:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
      [02/11/2008|11:49] C:\Program Files\Fichiers communs\Wise Installation Wizard

      --------------------\\ Process

      ( 51 Processes )

      IEXPLORE.EXE ~ [PID:2284]
      IEXPLORE.EXE ~ [PID:2520]

      --------------------\\ Recherche avec S_Lop

      Aucun fichier / dossier Lop trouvé !

      --------------------\\ Recherche de Fichiers / Dossiers Lop

      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\Grey Type.exe
      C:\DOCUME~1\july\APPLIC~1\newmee~1
      C:\DOCUME~1\july\APPLIC~1\newmee~1\corn scr joy.exe
      C:\DOCUME~1\july\APPLIC~1\newmee~1\ghvnjjyx.exe
      C:\DOCUME~1\july\APPLIC~1\newmee~1\Hope Blue.exe
      C:\DOCUME~1\july\APPLIC~1\newmee~1\Itch Wave Bolt Multi.exe
      C:\Program Files\newmee~1
      C:\Program Files\Circle Developement
      C:\DOCUME~1\july\Cookies\july@adopt.euroclick[2].txt
      C:\WINDOWS\Tasks\AE76284E9185D902.job

      --------------------\\ Verification du Registre

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Sign Two"="C:\\DOCUME~1\\july\\APPLIC~1\\NEWMEE~1\\Hope Blue.exe"

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

      --------------------\\ Verification du fichier Hosts

      Fichier Hosts PROPRE


      --------------------\\ Recherche de fichiers avec Catchme

      catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-11-02 14:25:32
      Windows 5.1.2600 Service Pack 3 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 131

      --------------------\\ Recherche d'autres infections

      C:\WINDOWS\system32\cfPooUtv.ini
      C:\WINDOWS\system32\cfPooUtv.ini2
      [b]==> VUNDO <==/b

      --------------------\\ Cracks & Keygens ..

      C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL
      C:\DOCUME~1\july\Mes documents\logiciel\Craagle_1.7_Par_Mafalian\Craagle 1.7\Keygen & Crack
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\EgyDown [Download Full Free Software].url
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\FolderVault.exe
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\desktop.ini
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fv.ini
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fvmobile.pbin
      C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\


      [F:217][D:25]-> C:\DOCUME~1\july\LOCALS~1\Temp
      [F:57][D:0]-> C:\DOCUME~1\july\Cookies
      [F:411][D:12]-> C:\DOCUME~1\july\TEMPOR~1\content.IE5

      1 - "C:\Lop SD\LopR_1.txt" - 02/11/2008|14:30 - Option : [1]

      --------------------\\ Fin du rapport a 14:30:32
      0
  4. toptitbal Messages postés 5341 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
     
    Commence par supprimer tous tes cracks :

    C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL
    C:\DOCUME~1\july\Mes documents\logiciel\Craagle_1.7_Par_Mafalian\Craagle 1.7\Keygen & Crack
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\EgyDown [Download Full Free Software].url
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\FolderVault.exe
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\desktop.ini
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fv.ini
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fvmobile.pbin
    C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\

    sinon, la désinfection ne servira pas à grand chose....

    Ensuite :

    Relance Lop S&D

    * Choisis cette fois ci l'Option 2 (Suppression)
    * Ne ferme pas la fenêtre lors de la suppression !
    * Poste le rapport généré (C:\lopR.txt)

    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. july
     
    voila ::
    --------------------\\ Lop S&D 4.2.4-9c XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) M CPU 420 @ 1.60GHz )
    BIOS : Ver 1.00PARTTBL
    USER : july ( Administrator )
    BOOT : Normal boot
    Antivirus : BitDefender Antivirus 12.0 (Activated)
    Firewall : BitDefender Firewall 12.0 (Activated)
    C:\ (Local Disk) - NTFS - Total:68 Go (Free:54 Go)
    D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
    E:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
    Option : [2] ( 02/11/2008|14:39 )

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\Grey Type.exe
    Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\corn scr joy.exe
    Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\ghvnjjyx.exe
    Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\Hope Blue.exe
    Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\Itch Wave Bolt Multi.exe
    Supprime! - C:\DOCUME~1\july\Cookies\july@adopt.euroclick[2].txt
    Supprime! - C:\WINDOWS\Tasks\AE76284E9185D902.job
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
    Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1
    Supprime! - C:\Program Files\newmee~1
    Supprime! - C:\Program Files\Circle Developement

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

    --------------------\\ Listing des dossiers dans APPLIC~1

    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [02/11/2008|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [11/10/2008|11:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [01/11/2008|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [12/10/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [11/10/2008|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
    [20/10/2008|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [21/10/2008|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [02/11/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [02/11/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
    [02/11/2008|09:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [11/10/2008|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [14/10/2008|21:23] C:\DOCUME~1\july\APPLIC~1\Adobe
    [21/10/2008|11:56] C:\DOCUME~1\july\APPLIC~1\AdobeUM
    [02/11/2008|10:20] C:\DOCUME~1\july\APPLIC~1\BitDefender
    [11/10/2008|11:46] C:\DOCUME~1\july\APPLIC~1\Google
    [23/10/2008|19:29] C:\DOCUME~1\july\APPLIC~1\Help
    [11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Identities
    [11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Macromedia
    [22/10/2008|21:32] C:\DOCUME~1\july\APPLIC~1\Microsoft
    [11/10/2008|11:38] C:\DOCUME~1\july\APPLIC~1\Mozilla
    [01/11/2008|20:40] C:\DOCUME~1\july\APPLIC~1\Samsung
    [11/10/2008|21:42] C:\DOCUME~1\july\APPLIC~1\Sun
    [12/10/2008|09:55] C:\DOCUME~1\july\APPLIC~1\Talkback
    [02/11/2008|11:54] C:\DOCUME~1\july\APPLIC~1\TuneUp Software
    [28/10/2008|20:28] C:\DOCUME~1\july\APPLIC~1\uTorrent
    [12/10/2008|21:27] C:\DOCUME~1\july\APPLIC~1\WinRAR

    [02/11/2008|09:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [12/10/2008|10:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [02/11/2008 11:54][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
    [02/11/2008 11:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 22:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [11/10/2008|07:08] C:\Program Files\Adobe
    [21/10/2008|20:27] C:\Program Files\Alwil Software
    [02/11/2008|10:20] C:\Program Files\BitDefender
    [19/08/2006|04:18] C:\Program Files\ComPlus Applications
    [11/10/2008|07:08] C:\Program Files\CONEXANT
    [01/11/2008|21:45] C:\Program Files\Digital Guitar Tuner
    [22/10/2008|18:30] C:\Program Files\DivX
    [02/11/2008|10:10] C:\Program Files\Download Direct
    [02/11/2008|11:49] C:\Program Files\Fichiers communs
    [02/11/2008|13:22] C:\Program Files\FolderVault
    [12/10/2008|10:46] C:\Program Files\Google
    [26/10/2008|08:54] C:\Program Files\Guitar Pro 5
    [11/10/2008|07:09] C:\Program Files\Hewlett-Packard
    [11/10/2008|07:10] C:\Program Files\HP
    [10/10/2008|22:21] C:\Program Files\HPQ
    [01/11/2008|21:24] C:\Program Files\InstallShield Installation Information
    [11/10/2008|07:10] C:\Program Files\Intel
    [02/11/2008|12:05] C:\Program Files\Internet Explorer
    [11/10/2008|07:10] C:\Program Files\Java
    [25/10/2008|14:41] C:\Program Files\Labtec
    [01/11/2008|23:31] C:\Program Files\Lavasoft
    [16/10/2008|16:42] C:\Program Files\Messenger
    [12/10/2008|17:40] C:\Program Files\Messenger Plus! Live
    [12/10/2008|10:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [11/10/2008|07:10] C:\Program Files\microsoft frontpage
    [11/10/2008|07:10] C:\Program Files\Microsoft Office
    [11/10/2008|07:11] C:\Program Files\Microsoft Works
    [16/10/2008|08:30] C:\Program Files\Movie Maker
    [02/11/2008|11:27] C:\Program Files\Mozilla Firefox
    [02/11/2008|11:00] C:\Program Files\MSBuild
    [11/10/2008|07:11] C:\Program Files\MSN
    [11/10/2008|07:11] C:\Program Files\MSN Gaming Zone
    [12/10/2008|10:41] C:\Program Files\MSXML 4.0
    [16/10/2008|08:29] C:\Program Files\NetMeeting
    [11/10/2008|07:11] C:\Program Files\NetWaiting
    [11/10/2008|07:11] C:\Program Files\Online Services
    [16/10/2008|08:29] C:\Program Files\Outlook Express
    [23/10/2008|22:18] C:\Program Files\Power Tab Software
    [02/11/2008|10:59] C:\Program Files\Reference Assemblies
    [01/11/2008|20:40] C:\Program Files\SAMSUNG
    [11/10/2008|07:11] C:\Program Files\Services en ligne
    [11/10/2008|07:12] C:\Program Files\Sonic
    [20/10/2008|20:24] C:\Program Files\Spybot - Search & Destroy
    [12/10/2008|17:24] C:\Program Files\StuffPlug3
    [11/10/2008|07:12] C:\Program Files\Synaptics
    [02/11/2008|14:04] C:\Program Files\Trend Micro
    [02/11/2008|11:58] C:\Program Files\TuneUp Utilities 2008
    [19/10/2008|16:12] C:\Program Files\tuxguitar-1.0
    [19/08/2006|04:18] C:\Program Files\Uninstall Information
    [12/10/2008|11:01] C:\Program Files\uTorrent
    [11/10/2008|11:44] C:\Program Files\Windows Live
    [26/10/2008|10:26] C:\Program Files\Windows Live Safety Center
    [02/11/2008|09:22] C:\Program Files\Windows Media Connect 2
    [02/11/2008|09:22] C:\Program Files\Windows Media Player
    [16/10/2008|08:29] C:\Program Files\Windows NT
    [19/08/2006|04:18] C:\Program Files\WindowsUpdate
    [12/10/2008|21:23] C:\Program Files\WinRAR
    [11/10/2008|07:12] C:\Program Files\xerox

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [11/10/2008|07:08] C:\Program Files\Fichiers communs\Adobe
    [02/11/2008|10:20] C:\Program Files\Fichiers communs\BitDefender
    [11/10/2008|07:08] C:\Program Files\Fichiers communs\HP
    [11/10/2008|07:08] C:\Program Files\Fichiers communs\InstallShield
    [11/10/2008|07:08] C:\Program Files\Fichiers communs\Java
    [25/10/2008|14:42] C:\Program Files\Fichiers communs\Labtec
    [25/10/2008|14:41] C:\Program Files\Fichiers communs\LogiShrd
    [11/10/2008|11:36] C:\Program Files\Fichiers communs\Microsoft Shared
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\MSSoap
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\ODBC
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\Services
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\Sonic Shared
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\SpeechEngines
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\SureThing Shared
    [21/10/2008|21:25] C:\Program Files\Fichiers communs\Symantec Shared
    [16/10/2008|08:29] C:\Program Files\Fichiers communs\System
    [11/10/2008|07:09] C:\Program Files\Fichiers communs\TiVo Shared
    [11/10/2008|11:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [02/11/2008|11:49] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 49 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-11-02 14:50:10
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 131

    --------------------\\ Recherche d'autres infections

    C:\WINDOWS\system32\cfPooUtv.ini
    C:\WINDOWS\system32\cfPooUtv.ini2
    [b]==> VUNDO <==/b

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL

    [F:220][D:25]-> C:\DOCUME~1\july\LOCALS~1\Temp
    [F:56][D:0]-> C:\DOCUME~1\july\Cookies
    [F:410][D:12]-> C:\DOCUME~1\july\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 02/11/2008|14:30 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 02/11/2008|14:54 - Option : [2]

    --------------------\\ Fin du rapport a 14:55:00
    0
  7. toptitbal Messages postés 5341 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
     
    Encore du keygen qui traîne, nettoie tout ça et fais un nouvel Hijackthis stp.
    0
    1. july
       
      je pense que j'ai enlever tout : voila : Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 15:07:59, on 02/11/2008
      Platform: Windows XP SP3 (WinNT 5.01.2600)
      MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18241)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
      C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\WINDOWS\system32\igfxtray.exe
      C:\WINDOWS\system32\hkcmd.exe
      C:\WINDOWS\system32\igfxpers.exe
      C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      C:\Program Files\HP\QuickPlay\QPService.exe
      C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
      C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
      C:\Program Files\Labtec\WebCam10\WebCam10.exe
      C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
      C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
      C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
      C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
      C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
      C:\Program Files\Windows Live\Messenger\usnsvc.exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
      R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: (no name) - {069F09CB-B3FA-454F-8D52-2F18605E45A6} - (no file)
      O2 - BHO: (no name) - {100DB513-44C9-44E2-B1B1-1A368A60D69C} - (no file)
      O2 - BHO: (no name) - {131D5188-ABD8-4BB4-91A8-2B684E595349} - (no file)
      O2 - BHO: (no name) - {16C8D95D-9721-40BF-9014-F0B7EFE8BBE6} - C:\WINDOWS\system32\xxyawtRI.dll (file missing)
      O2 - BHO: (no name) - {1C550385-6AB2-4A90-8B09-52D324B8C1B0} - (no file)
      O2 - BHO: (no name) - {2DDAB18C-9D4C-4F42-BF66-259ED05C741B} - (no file)
      O2 - BHO: (no name) - {4E6E4EA4-51B7-4D54-B0EA-18521E29FA5E} - (no file)
      O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: (no name) - {987899AB-2D01-464C-96B3-5F5B224DD0CF} - (no file)
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
      O2 - BHO: (no name) - {C172EE08-12DB-4324-B80E-E3A3B9BED003} - (no file)
      O2 - BHO: (no name) - {DF62E272-D74F-4EC3-BC5F-5E461805220A} - (no file)
      O2 - BHO: (no name) - {E668CD07-1D0D-4061-8BFB-9128E3FE6143} - (no file)
      O2 - BHO: (no name) - {E6D5A191-15B6-4714-A8C5-AF8A7A7E9889} - C:\WINDOWS\system32\vtUooPfc.dll (file missing)
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
      O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
      O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
      O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
      O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
      O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
      O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
      O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
      O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
      O4 - HKLM\..\Run: [IS CfgWiz] c:\Program Files\Norton Internet Security\cfgwiz.exe /GUID {F073BDC9-0D67-4ff0-879E-27241C843828} /MODE CfgWiz /CMDLINE "REBOOT"
      O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
      O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10.exe" /hide
      O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
      O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
      O4 - HKLM\..\RunOnce: [IERESETATTRIB] %SystemRoot%\system32\cmd.exe /d /q /c %SystemRoot%\system32\ieudinit.exe -ResetFileAttributes
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
      O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O20 - AppInit_DLLs: upysef.dll yhdxrp.dll hkqhaq.dll sccvoj.dll jrelox.dll gqoalo.dll
      O20 - Winlogon Notify: xxyawtRI - xxyawtRI.dll (file missing)
      O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
      O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
      O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
      O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
      O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
      0
  8. toptitbal Messages postés 5341 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
     
    Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

    Télécharge Malwarebytes' Anti-Malware (MBAM) et enregistre-le sur ton Bureau à partir de ce lien :

    http://www.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware

    A la fin du téléchargement, ferme toutes les fenêtres et programmes, y compris celui-ci.

    Double-clique sur l'icône Download_mbam-setup.exe sur ton bureau pour démarrer le programme d'installation.

    Pendant l'installation, suis les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet). N'apporte aucune modification aux réglages par défaut et, en fin d'installation, vérifie que les options Update Malwarebytes' Anti-Malware et Launch Malwarebytes' Anti-Malware sont cochées.

    Redémarre ton ordinateur en mode sans échec

    Relance MBAM grâce au raccourci présent sur ton bureau.

    Dans l'onglet analyse, vérifie que "Exécuter un examen complet" est coché et clique sur le bouton Rechercher pour démarrer l'analyse.

    MBAM analyse ton ordinateur. L'analyse peut prendre un certain temps. Il suffit de vérifier de temps en temps son avancement.

    A la fin de l'analyse, un message s'affiche indiquant la fin de l'analyse. Clique sur OK pour poursuivre.

    Si des malwares ont été détectés, leur liste s'affiche.
    En cliquant sur Suppression (?) , MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

    MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Ferme le Bloc-notes. (Le rapport peut être retrouvé sous l'onglet Rapports/logs)

    Ferme MBAM en cliquant sur Quitter.

    Poste le rapport dans ta réponse
    0
    1. july
       
      j'ai fais tout ce que tu m'as dis et mon pc a planté impossible de l'allumer il redemarrait en boucle j'ai du le reformater --
      0