Sujet Précédent Sujet Suivant

Probleme page internet

july -  
 july -
Bonjour,
j'ai un probleme , je suis sous firefox 2.0.0.17 et des pages de pubs n'arette pas de s'afficher
j'ai bitdefender 2009 mais rien n'i fais cela continu , aidez moi s'il vous plait
merci.
A voir également:

7 réponses

Réponse 1 / 7
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Bonjour

Télécharge le fichier d’installation d’Hijackthis en cliquant sur ce lien

http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

* Enregistre HJTInstall.exe sur ton bureau.

* Double-clique sur HJTInstall.exe pour lancer le programme

Tuto : https://www.malekal.com/tutoriel-hijackthis/
http://pagesperso-orange.fr/rginformatique/section%20virus/Hijenr.gif
http://pagesperso-orange.fr/rginformatique/section%20virus/demohijack.htm

* Accepte la license en cliquant sur le bouton "I Accept"
* Choisis l'option "Do a system scan and save a log file"
* Clique sur "Save log" pour enregistrer le rapport qui s'ouvrira avec le bloc-note
* Clique sur "Edition -> Sélectionner tout", puis sur "Edition -> Copier" pour copier tout le contenu du rapport

* Colle le rapport que tu viens de copier sur ce forum

0
july
 
merci je te met mon rapport
0
Réponse 2 / 7
july
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:06:37, on 02/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18241)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Labtec\WebCam10\WebCam10.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {069F09CB-B3FA-454F-8D52-2F18605E45A6} - (no file)
O2 - BHO: (no name) - {100DB513-44C9-44E2-B1B1-1A368A60D69C} - (no file)
O2 - BHO: (no name) - {131D5188-ABD8-4BB4-91A8-2B684E595349} - (no file)
O2 - BHO: (no name) - {16C8D95D-9721-40BF-9014-F0B7EFE8BBE6} - C:\WINDOWS\system32\xxyawtRI.dll (file missing)
O2 - BHO: (no name) - {1C550385-6AB2-4A90-8B09-52D324B8C1B0} - (no file)
O2 - BHO: (no name) - {2DDAB18C-9D4C-4F42-BF66-259ED05C741B} - (no file)
O2 - BHO: (no name) - {4E6E4EA4-51B7-4D54-B0EA-18521E29FA5E} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {987899AB-2D01-464C-96B3-5F5B224DD0CF} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {C172EE08-12DB-4324-B80E-E3A3B9BED003} - (no file)
O2 - BHO: (no name) - {DF62E272-D74F-4EC3-BC5F-5E461805220A} - (no file)
O2 - BHO: (no name) - {E668CD07-1D0D-4061-8BFB-9128E3FE6143} - (no file)
O2 - BHO: (no name) - {E6D5A191-15B6-4714-A8C5-AF8A7A7E9889} - C:\WINDOWS\system32\vtUooPfc.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [IS CfgWiz] c:\Program Files\Norton Internet Security\cfgwiz.exe /GUID {F073BDC9-0D67-4ff0-879E-27241C843828} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10.exe" /hide
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\RunOnce: [IERESETATTRIB] %SystemRoot%\system32\cmd.exe /d /q /c %SystemRoot%\system32\ieudinit.exe -ResetFileAttributes
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Sign Two] C:\DOCUME~1\july\APPLIC~1\NEWMEE~1\Hope Blue.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - AppInit_DLLs: upysef.dll yhdxrp.dll hkqhaq.dll sccvoj.dll jrelox.dll gqoalo.dll
O20 - Winlogon Notify: xxyawtRI - xxyawtRI.dll (file missing)
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
0
Réponse 3 / 7
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Télécharge Lop S&D.exe sur ton Bureau.

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)

Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
0
july
 
voila :
--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) M CPU 420 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : july ( Administrator )
BOOT : Normal boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
C:\ (Local Disk) - NTFS - Total:68 Go (Free:54 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 02/11/2008|14:13 )

--------------------\\ Listing des dossiers dans APPLIC~1

[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/11/2008|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/10/2008|11:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[01/11/2008|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[12/10/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[11/10/2008|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/10/2008|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[21/10/2008|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/11/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
[02/11/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[02/11/2008|09:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/10/2008|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[14/10/2008|21:23] C:\DOCUME~1\july\APPLIC~1\Adobe
[21/10/2008|11:56] C:\DOCUME~1\july\APPLIC~1\AdobeUM
[02/11/2008|10:20] C:\DOCUME~1\july\APPLIC~1\BitDefender
[11/10/2008|11:46] C:\DOCUME~1\july\APPLIC~1\Google
[23/10/2008|19:29] C:\DOCUME~1\july\APPLIC~1\Help
[11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Identities
[11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Macromedia
[22/10/2008|21:32] C:\DOCUME~1\july\APPLIC~1\Microsoft
[11/10/2008|11:38] C:\DOCUME~1\july\APPLIC~1\Mozilla
[01/11/2008|21:32] C:\DOCUME~1\july\APPLIC~1\New Meet Memo
[01/11/2008|20:40] C:\DOCUME~1\july\APPLIC~1\Samsung
[11/10/2008|21:42] C:\DOCUME~1\july\APPLIC~1\Sun
[12/10/2008|09:55] C:\DOCUME~1\july\APPLIC~1\Talkback
[02/11/2008|11:54] C:\DOCUME~1\july\APPLIC~1\TuneUp Software
[28/10/2008|20:28] C:\DOCUME~1\july\APPLIC~1\uTorrent
[12/10/2008|21:27] C:\DOCUME~1\july\APPLIC~1\WinRAR

[02/11/2008|09:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[12/10/2008|10:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/11/2008 11:54][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
[02/11/2008 14:00][--ah-----] C:\WINDOWS\tasks\AE76284E9185D902.job
[02/11/2008 11:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 22:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( AE76284E9185D902.job )=( c:\docume~1\july\applic~1\newmee~1\cornscrjoy.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[11/10/2008|07:08] C:\Program Files\Adobe
[21/10/2008|20:27] C:\Program Files\Alwil Software
[02/11/2008|10:20] C:\Program Files\BitDefender
[01/11/2008|18:37] C:\Program Files\Circle Developement
[19/08/2006|04:18] C:\Program Files\ComPlus Applications
[11/10/2008|07:08] C:\Program Files\CONEXANT
[01/11/2008|21:45] C:\Program Files\Digital Guitar Tuner
[22/10/2008|18:30] C:\Program Files\DivX
[02/11/2008|10:10] C:\Program Files\Download Direct
[02/11/2008|11:49] C:\Program Files\Fichiers communs
[02/11/2008|13:22] C:\Program Files\FolderVault
[12/10/2008|10:46] C:\Program Files\Google
[26/10/2008|08:54] C:\Program Files\Guitar Pro 5
[11/10/2008|07:09] C:\Program Files\Hewlett-Packard
[11/10/2008|07:10] C:\Program Files\HP
[10/10/2008|22:21] C:\Program Files\HPQ
[01/11/2008|21:24] C:\Program Files\InstallShield Installation Information
[11/10/2008|07:10] C:\Program Files\Intel
[02/11/2008|12:05] C:\Program Files\Internet Explorer
[11/10/2008|07:10] C:\Program Files\Java
[25/10/2008|14:41] C:\Program Files\Labtec
[01/11/2008|23:31] C:\Program Files\Lavasoft
[16/10/2008|16:42] C:\Program Files\Messenger
[12/10/2008|17:40] C:\Program Files\Messenger Plus! Live
[12/10/2008|10:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/10/2008|07:10] C:\Program Files\microsoft frontpage
[11/10/2008|07:10] C:\Program Files\Microsoft Office
[11/10/2008|07:11] C:\Program Files\Microsoft Works
[16/10/2008|08:30] C:\Program Files\Movie Maker
[02/11/2008|11:27] C:\Program Files\Mozilla Firefox
[02/11/2008|11:00] C:\Program Files\MSBuild
[11/10/2008|07:11] C:\Program Files\MSN
[11/10/2008|07:11] C:\Program Files\MSN Gaming Zone
[12/10/2008|10:41] C:\Program Files\MSXML 4.0
[16/10/2008|08:29] C:\Program Files\NetMeeting
[11/10/2008|07:11] C:\Program Files\NetWaiting
[01/11/2008|21:31] C:\Program Files\New Meet Memo
[11/10/2008|07:11] C:\Program Files\Online Services
[16/10/2008|08:29] C:\Program Files\Outlook Express
[23/10/2008|22:18] C:\Program Files\Power Tab Software
[02/11/2008|10:59] C:\Program Files\Reference Assemblies
[01/11/2008|20:40] C:\Program Files\SAMSUNG
[11/10/2008|07:11] C:\Program Files\Services en ligne
[11/10/2008|07:12] C:\Program Files\Sonic
[20/10/2008|20:24] C:\Program Files\Spybot - Search & Destroy
[12/10/2008|17:24] C:\Program Files\StuffPlug3
[11/10/2008|07:12] C:\Program Files\Synaptics
[02/11/2008|14:04] C:\Program Files\Trend Micro
[02/11/2008|11:58] C:\Program Files\TuneUp Utilities 2008
[19/10/2008|16:12] C:\Program Files\tuxguitar-1.0
[19/08/2006|04:18] C:\Program Files\Uninstall Information
[12/10/2008|11:01] C:\Program Files\uTorrent
[11/10/2008|11:44] C:\Program Files\Windows Live
[26/10/2008|10:26] C:\Program Files\Windows Live Safety Center
[02/11/2008|09:22] C:\Program Files\Windows Media Connect 2
[02/11/2008|09:22] C:\Program Files\Windows Media Player
[16/10/2008|08:29] C:\Program Files\Windows NT
[19/08/2006|04:18] C:\Program Files\WindowsUpdate
[12/10/2008|21:23] C:\Program Files\WinRAR
[11/10/2008|07:12] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[11/10/2008|07:08] C:\Program Files\Fichiers communs\Adobe
[02/11/2008|10:20] C:\Program Files\Fichiers communs\BitDefender
[11/10/2008|07:08] C:\Program Files\Fichiers communs\HP
[11/10/2008|07:08] C:\Program Files\Fichiers communs\InstallShield
[11/10/2008|07:08] C:\Program Files\Fichiers communs\Java
[25/10/2008|14:42] C:\Program Files\Fichiers communs\Labtec
[25/10/2008|14:41] C:\Program Files\Fichiers communs\LogiShrd
[11/10/2008|11:36] C:\Program Files\Fichiers communs\Microsoft Shared
[11/10/2008|07:09] C:\Program Files\Fichiers communs\MSSoap
[11/10/2008|07:09] C:\Program Files\Fichiers communs\ODBC
[11/10/2008|07:09] C:\Program Files\Fichiers communs\Services
[11/10/2008|07:09] C:\Program Files\Fichiers communs\Sonic Shared
[11/10/2008|07:09] C:\Program Files\Fichiers communs\SpeechEngines
[11/10/2008|07:09] C:\Program Files\Fichiers communs\SureThing Shared
[21/10/2008|21:25] C:\Program Files\Fichiers communs\Symantec Shared
[16/10/2008|08:29] C:\Program Files\Fichiers communs\System
[11/10/2008|07:09] C:\Program Files\Fichiers communs\TiVo Shared
[11/10/2008|11:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[02/11/2008|11:49] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 51 Processes )

IEXPLORE.EXE ~ [PID:2284]
IEXPLORE.EXE ~ [PID:2520]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\Grey Type.exe
C:\DOCUME~1\july\APPLIC~1\newmee~1
C:\DOCUME~1\july\APPLIC~1\newmee~1\corn scr joy.exe
C:\DOCUME~1\july\APPLIC~1\newmee~1\ghvnjjyx.exe
C:\DOCUME~1\july\APPLIC~1\newmee~1\Hope Blue.exe
C:\DOCUME~1\july\APPLIC~1\newmee~1\Itch Wave Bolt Multi.exe
C:\Program Files\newmee~1
C:\Program Files\Circle Developement
C:\DOCUME~1\july\Cookies\july@adopt.euroclick[2].txt
C:\WINDOWS\Tasks\AE76284E9185D902.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sign Two"="C:\\DOCUME~1\\july\\APPLIC~1\\NEWMEE~1\\Hope Blue.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-02 14:25:32
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 131

--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\cfPooUtv.ini
C:\WINDOWS\system32\cfPooUtv.ini2
[b]==> VUNDO <==/b

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL
C:\DOCUME~1\july\Mes documents\logiciel\Craagle_1.7_Par_Mafalian\Craagle 1.7\Keygen & Crack
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\EgyDown [Download Full Free Software].url
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\FolderVault.exe
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\desktop.ini
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fv.ini
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fvmobile.pbin
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\


[F:217][D:25]-> C:\DOCUME~1\july\LOCALS~1\Temp
[F:57][D:0]-> C:\DOCUME~1\july\Cookies
[F:411][D:12]-> C:\DOCUME~1\july\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 02/11/2008|14:30 - Option : [1]

--------------------\\ Fin du rapport a 14:30:32
0
Réponse 4 / 7
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Commence par supprimer tous tes cracks :

C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL
C:\DOCUME~1\july\Mes documents\logiciel\Craagle_1.7_Par_Mafalian\Craagle 1.7\Keygen & Crack
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\EgyDown [Download Full Free Software].url
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\FolderVault.exe
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\desktop.ini
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fv.ini
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\fvmobile.pbin
C:\DOCUME~1\july\Mes documents\logiciel\fv\Crack\LockVault\

sinon, la désinfection ne servira pas à grand chose....

Ensuite :

Relance Lop S&D

* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
july
 
voila ::
--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) M CPU 420 @ 1.60GHz )
BIOS : Ver 1.00PARTTBL
USER : july ( Administrator )
BOOT : Normal boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
C:\ (Local Disk) - NTFS - Total:68 Go (Free:54 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 02/11/2008|14:39 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\Grey Type.exe
Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\corn scr joy.exe
Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\ghvnjjyx.exe
Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\Hope Blue.exe
Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1\Itch Wave Bolt Multi.exe
Supprime! - C:\DOCUME~1\july\Cookies\july@adopt.euroclick[2].txt
Supprime! - C:\WINDOWS\Tasks\AE76284E9185D902.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
Supprime! - C:\DOCUME~1\july\APPLIC~1\newmee~1
Supprime! - C:\Program Files\newmee~1
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/11/2008|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/10/2008|11:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[01/11/2008|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[12/10/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[11/10/2008|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[11/10/2008|07:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/10/2008|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[21/10/2008|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/11/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[02/11/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[02/11/2008|09:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/10/2008|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[11/10/2008|07:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[14/10/2008|21:23] C:\DOCUME~1\july\APPLIC~1\Adobe
[21/10/2008|11:56] C:\DOCUME~1\july\APPLIC~1\AdobeUM
[02/11/2008|10:20] C:\DOCUME~1\july\APPLIC~1\BitDefender
[11/10/2008|11:46] C:\DOCUME~1\july\APPLIC~1\Google
[23/10/2008|19:29] C:\DOCUME~1\july\APPLIC~1\Help
[11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Identities
[11/10/2008|07:06] C:\DOCUME~1\july\APPLIC~1\Macromedia
[22/10/2008|21:32] C:\DOCUME~1\july\APPLIC~1\Microsoft
[11/10/2008|11:38] C:\DOCUME~1\july\APPLIC~1\Mozilla
[01/11/2008|20:40] C:\DOCUME~1\july\APPLIC~1\Samsung
[11/10/2008|21:42] C:\DOCUME~1\july\APPLIC~1\Sun
[12/10/2008|09:55] C:\DOCUME~1\july\APPLIC~1\Talkback
[02/11/2008|11:54] C:\DOCUME~1\july\APPLIC~1\TuneUp Software
[28/10/2008|20:28] C:\DOCUME~1\july\APPLIC~1\uTorrent
[12/10/2008|21:27] C:\DOCUME~1\july\APPLIC~1\WinRAR

[02/11/2008|09:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[12/10/2008|10:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/11/2008 11:54][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
[02/11/2008 11:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 22:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[11/10/2008|07:08] C:\Program Files\Adobe
[21/10/2008|20:27] C:\Program Files\Alwil Software
[02/11/2008|10:20] C:\Program Files\BitDefender
[19/08/2006|04:18] C:\Program Files\ComPlus Applications
[11/10/2008|07:08] C:\Program Files\CONEXANT
[01/11/2008|21:45] C:\Program Files\Digital Guitar Tuner
[22/10/2008|18:30] C:\Program Files\DivX
[02/11/2008|10:10] C:\Program Files\Download Direct
[02/11/2008|11:49] C:\Program Files\Fichiers communs
[02/11/2008|13:22] C:\Program Files\FolderVault
[12/10/2008|10:46] C:\Program Files\Google
[26/10/2008|08:54] C:\Program Files\Guitar Pro 5
[11/10/2008|07:09] C:\Program Files\Hewlett-Packard
[11/10/2008|07:10] C:\Program Files\HP
[10/10/2008|22:21] C:\Program Files\HPQ
[01/11/2008|21:24] C:\Program Files\InstallShield Installation Information
[11/10/2008|07:10] C:\Program Files\Intel
[02/11/2008|12:05] C:\Program Files\Internet Explorer
[11/10/2008|07:10] C:\Program Files\Java
[25/10/2008|14:41] C:\Program Files\Labtec
[01/11/2008|23:31] C:\Program Files\Lavasoft
[16/10/2008|16:42] C:\Program Files\Messenger
[12/10/2008|17:40] C:\Program Files\Messenger Plus! Live
[12/10/2008|10:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/10/2008|07:10] C:\Program Files\microsoft frontpage
[11/10/2008|07:10] C:\Program Files\Microsoft Office
[11/10/2008|07:11] C:\Program Files\Microsoft Works
[16/10/2008|08:30] C:\Program Files\Movie Maker
[02/11/2008|11:27] C:\Program Files\Mozilla Firefox
[02/11/2008|11:00] C:\Program Files\MSBuild
[11/10/2008|07:11] C:\Program Files\MSN
[11/10/2008|07:11] C:\Program Files\MSN Gaming Zone
[12/10/2008|10:41] C:\Program Files\MSXML 4.0
[16/10/2008|08:29] C:\Program Files\NetMeeting
[11/10/2008|07:11] C:\Program Files\NetWaiting
[11/10/2008|07:11] C:\Program Files\Online Services
[16/10/2008|08:29] C:\Program Files\Outlook Express
[23/10/2008|22:18] C:\Program Files\Power Tab Software
[02/11/2008|10:59] C:\Program Files\Reference Assemblies
[01/11/2008|20:40] C:\Program Files\SAMSUNG
[11/10/2008|07:11] C:\Program Files\Services en ligne
[11/10/2008|07:12] C:\Program Files\Sonic
[20/10/2008|20:24] C:\Program Files\Spybot - Search & Destroy
[12/10/2008|17:24] C:\Program Files\StuffPlug3
[11/10/2008|07:12] C:\Program Files\Synaptics
[02/11/2008|14:04] C:\Program Files\Trend Micro
[02/11/2008|11:58] C:\Program Files\TuneUp Utilities 2008
[19/10/2008|16:12] C:\Program Files\tuxguitar-1.0
[19/08/2006|04:18] C:\Program Files\Uninstall Information
[12/10/2008|11:01] C:\Program Files\uTorrent
[11/10/2008|11:44] C:\Program Files\Windows Live
[26/10/2008|10:26] C:\Program Files\Windows Live Safety Center
[02/11/2008|09:22] C:\Program Files\Windows Media Connect 2
[02/11/2008|09:22] C:\Program Files\Windows Media Player
[16/10/2008|08:29] C:\Program Files\Windows NT
[19/08/2006|04:18] C:\Program Files\WindowsUpdate
[12/10/2008|21:23] C:\Program Files\WinRAR
[11/10/2008|07:12] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[11/10/2008|07:08] C:\Program Files\Fichiers communs\Adobe
[02/11/2008|10:20] C:\Program Files\Fichiers communs\BitDefender
[11/10/2008|07:08] C:\Program Files\Fichiers communs\HP
[11/10/2008|07:08] C:\Program Files\Fichiers communs\InstallShield
[11/10/2008|07:08] C:\Program Files\Fichiers communs\Java
[25/10/2008|14:42] C:\Program Files\Fichiers communs\Labtec
[25/10/2008|14:41] C:\Program Files\Fichiers communs\LogiShrd
[11/10/2008|11:36] C:\Program Files\Fichiers communs\Microsoft Shared
[11/10/2008|07:09] C:\Program Files\Fichiers communs\MSSoap
[11/10/2008|07:09] C:\Program Files\Fichiers communs\ODBC
[11/10/2008|07:09] C:\Program Files\Fichiers communs\Services
[11/10/2008|07:09] C:\Program Files\Fichiers communs\Sonic Shared
[11/10/2008|07:09] C:\Program Files\Fichiers communs\SpeechEngines
[11/10/2008|07:09] C:\Program Files\Fichiers communs\SureThing Shared
[21/10/2008|21:25] C:\Program Files\Fichiers communs\Symantec Shared
[16/10/2008|08:29] C:\Program Files\Fichiers communs\System
[11/10/2008|07:09] C:\Program Files\Fichiers communs\TiVo Shared
[11/10/2008|11:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[02/11/2008|11:49] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 49 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-02 14:50:10
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 131

--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\cfPooUtv.ini
C:\WINDOWS\system32\cfPooUtv.ini2
[b]==> VUNDO <==/b

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\july\Favoris\a telecherger\TuneUp Utilities 2008 v7.0.8007 avec Keygen ¯ Movizdb.com (Films,E-book,Logiciel,livre) avec [RS][MU][FREE][FF][MF].URL

[F:220][D:25]-> C:\DOCUME~1\july\LOCALS~1\Temp
[F:56][D:0]-> C:\DOCUME~1\july\Cookies
[F:410][D:12]-> C:\DOCUME~1\july\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 02/11/2008|14:30 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 02/11/2008|14:54 - Option : [2]

--------------------\\ Fin du rapport a 14:55:00
0
Réponse 6 / 7
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Encore du keygen qui traîne, nettoie tout ça et fais un nouvel Hijackthis stp.
0
july
 
je pense que j'ai enlever tout : voila : Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:07:59, on 02/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18241)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Labtec\WebCam10\WebCam10.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {069F09CB-B3FA-454F-8D52-2F18605E45A6} - (no file)
O2 - BHO: (no name) - {100DB513-44C9-44E2-B1B1-1A368A60D69C} - (no file)
O2 - BHO: (no name) - {131D5188-ABD8-4BB4-91A8-2B684E595349} - (no file)
O2 - BHO: (no name) - {16C8D95D-9721-40BF-9014-F0B7EFE8BBE6} - C:\WINDOWS\system32\xxyawtRI.dll (file missing)
O2 - BHO: (no name) - {1C550385-6AB2-4A90-8B09-52D324B8C1B0} - (no file)
O2 - BHO: (no name) - {2DDAB18C-9D4C-4F42-BF66-259ED05C741B} - (no file)
O2 - BHO: (no name) - {4E6E4EA4-51B7-4D54-B0EA-18521E29FA5E} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {987899AB-2D01-464C-96B3-5F5B224DD0CF} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {C172EE08-12DB-4324-B80E-E3A3B9BED003} - (no file)
O2 - BHO: (no name) - {DF62E272-D74F-4EC3-BC5F-5E461805220A} - (no file)
O2 - BHO: (no name) - {E668CD07-1D0D-4061-8BFB-9128E3FE6143} - (no file)
O2 - BHO: (no name) - {E6D5A191-15B6-4714-A8C5-AF8A7A7E9889} - C:\WINDOWS\system32\vtUooPfc.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [IS CfgWiz] c:\Program Files\Norton Internet Security\cfgwiz.exe /GUID {F073BDC9-0D67-4ff0-879E-27241C843828} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10.exe" /hide
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\RunOnce: [IERESETATTRIB] %SystemRoot%\system32\cmd.exe /d /q /c %SystemRoot%\system32\ieudinit.exe -ResetFileAttributes
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - AppInit_DLLs: upysef.dll yhdxrp.dll hkqhaq.dll sccvoj.dll jrelox.dll gqoalo.dll
O20 - Winlogon Notify: xxyawtRI - xxyawtRI.dll (file missing)
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
0
Réponse 7 / 7
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

Télécharge Malwarebytes' Anti-Malware (MBAM) et enregistre-le sur ton Bureau à partir de ce lien :

http://www.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware

A la fin du téléchargement, ferme toutes les fenêtres et programmes, y compris celui-ci.

Double-clique sur l'icône Download_mbam-setup.exe sur ton bureau pour démarrer le programme d'installation.

Pendant l'installation, suis les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet). N'apporte aucune modification aux réglages par défaut et, en fin d'installation, vérifie que les options Update Malwarebytes' Anti-Malware et Launch Malwarebytes' Anti-Malware sont cochées.

Redémarre ton ordinateur en mode sans échec

Relance MBAM grâce au raccourci présent sur ton bureau.

Dans l'onglet analyse, vérifie que "Exécuter un examen complet" est coché et clique sur le bouton Rechercher pour démarrer l'analyse.

MBAM analyse ton ordinateur. L'analyse peut prendre un certain temps. Il suffit de vérifier de temps en temps son avancement.

A la fin de l'analyse, un message s'affiche indiquant la fin de l'analyse. Clique sur OK pour poursuivre.

Si des malwares ont été détectés, leur liste s'affiche.
En cliquant sur Suppression (?) , MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Ferme le Bloc-notes. (Le rapport peut être retrouvé sous l'onglet Rapports/logs)

Ferme MBAM en cliquant sur Quitter.

Poste le rapport dans ta réponse
0
july
 
j'ai fais tout ce que tu m'as dis et mon pc a planté impossible de l'allumer il redemarrait en boucle j'ai du le reformater --
0