AU SECOURS !!!
Dernière réponse : dans Sécurité
Bonjour,
Mon ordi rame, plein de pub cid, alerte virus bidon...
J'ai défragmenté, spyboter etc...
Je n'en peux plus
Merciiiiiiiiiiiiiii
J'ai vu sur votre forum qu'il fallait faire un hijack ben voilà mais comme j'y connais rien![:sweat:]( ":sweat:")
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:59:56, on 09/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\Program Files\Creative\PC-CAM Center\CAMTRAY.EXE
C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\PowerArchiver\PASTARTER.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\PC-CAM Center\CAMTRAY.EXE
O4 - HKLM\..\Run: [Pop-Up Stopper] "C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe"
O4 - HKLM\..\Run: [Stupid Data Dart Wave] C:\Documents and Settings\All Users\Application Data\flag ace stupid data\pop amen.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Grey send] C:\DOCUME~1\MICHLE~1\APPLIC~1\MEDIAG~1\Warndrawproc.exe
O4 - HKCU\..\Run: [PowerArchiver Tray] C:\Program Files\PowerArchiver\PASTARTER.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 8952 bytes
Mon ordi rame, plein de pub cid, alerte virus bidon...
J'ai défragmenté, spyboter etc...
Je n'en peux plus
Merciiiiiiiiiiiiiii
J'ai vu sur votre forum qu'il fallait faire un hijack ben voilà mais comme j'y connais rien
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:59:56, on 09/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\Program Files\Creative\PC-CAM Center\CAMTRAY.EXE
C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\PowerArchiver\PASTARTER.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\PC-CAM Center\CAMTRAY.EXE
O4 - HKLM\..\Run: [Pop-Up Stopper] "C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe"
O4 - HKLM\..\Run: [Stupid Data Dart Wave] C:\Documents and Settings\All Users\Application Data\flag ace stupid data\pop amen.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Grey send] C:\DOCUME~1\MICHLE~1\APPLIC~1\MEDIAG~1\Warndrawproc.exe
O4 - HKCU\..\Run: [PowerArchiver Tray] C:\Program Files\PowerArchiver\PASTARTER.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 8952 bytes
Autres pages sur : secours
Lassé par la pub ? Créez un compte
Bonsoir,
Télécharge Lop S&D.exe (d’ Eric 71) sur ton bureau.
Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
Patiente jusqu'à la fin du scan
Poste le rapport généré (C:\lopR.txt)
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
Télécharge Lop S&D.exe (d’ Eric 71) sur ton bureau.
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
XmichouX a dit :
Bonsoir,Télécharge Lop S&D.exe (d’ Eric 71) sur ton bureau.
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
Bonjour,
voici le rapport
-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : MichŠle ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 14/07/2008 | 19:33:18,06 ] [ PC : MICHELE-0ZUWOV4 ]
[ MAJ : 09-07-2008 | 21:02 ]
-------------[ Listing des dossiers dans Application Data ]------------
[21/06/2008|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/07/2008|23:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[04/07/2008|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[09/07/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ConeXware
[28/10/2007|16:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[20/06/2006|17:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[22/04/2008|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[27/06/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
[21/04/2008|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[20/06/2006|21:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Anti-Virus Personal Pro
[29/08/2006|19:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[23/05/2007|20:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/07/2007|02:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/11/2006|01:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[10/12/2006|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MotiveSysIDs
[09/12/2006|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[23/06/2007|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[20/06/2006|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism
[20/06/2006|21:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[20/06/2006|23:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[27/01/2007|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[20/06/2006|17:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[20/06/2006|17:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[06/03/2007|17:19] C:\DOCUME~1\Eric\APPLIC~1\Adobe
[11/07/2008|13:57] C:\DOCUME~1\Eric\APPLIC~1\AdobeUM
[12/07/2008|09:45] C:\DOCUME~1\Eric\APPLIC~1\Apple Computer
[07/09/2006|19:34] C:\DOCUME~1\Eric\APPLIC~1\BitTorrent
[28/10/2007|16:53] C:\DOCUME~1\Eric\APPLIC~1\Creative
[20/06/2006|17:58] C:\DOCUME~1\Eric\APPLIC~1\desktop.ini
[31/08/2006|22:43] C:\DOCUME~1\Eric\APPLIC~1\Google
[02/05/2007|19:27] C:\DOCUME~1\Eric\APPLIC~1\Help
[20/06/2006|22:24] C:\DOCUME~1\Eric\APPLIC~1\Identities
[06/03/2007|17:19] C:\DOCUME~1\Eric\APPLIC~1\Leadertech
[22/06/2006|17:21] C:\DOCUME~1\Eric\APPLIC~1\Macromedia
[03/07/2008|01:21] C:\DOCUME~1\Eric\APPLIC~1\Media great ball
[27/05/2008|18:50] C:\DOCUME~1\Eric\APPLIC~1\Microsoft
[08/09/2007|18:37] C:\DOCUME~1\Eric\APPLIC~1\Motive
[14/08/2006|18:50] C:\DOCUME~1\Eric\APPLIC~1\Mozilla
[23/06/2007|14:34] C:\DOCUME~1\Eric\APPLIC~1\NMM-MetaData.db
[23/06/2007|12:59] C:\DOCUME~1\Eric\APPLIC~1\Nokia
[23/06/2007|12:59] C:\DOCUME~1\Eric\APPLIC~1\PC Suite
[04/09/2007|04:18] C:\DOCUME~1\Eric\APPLIC~1\SMov
[11/09/2006|17:36] C:\DOCUME~1\Eric\APPLIC~1\Sun
[23/06/2006|17:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[13/11/2006|22:30] C:\DOCUME~1\MICHLE~1\APPLIC~1\Adobe
[21/06/2008|11:00] C:\DOCUME~1\MICHLE~1\APPLIC~1\AdobeUM
[10/07/2008|23:48] C:\DOCUME~1\MICHLE~1\APPLIC~1\Apple Computer
[04/10/2007|23:53] C:\DOCUME~1\MICHLE~1\APPLIC~1\BitDownload
[12/09/2006|23:11] C:\DOCUME~1\MICHLE~1\APPLIC~1\BitTorrent
[17/12/2006|20:11] C:\DOCUME~1\MICHLE~1\APPLIC~1\Creative
[20/06/2006|17:58] C:\DOCUME~1\MICHLE~1\APPLIC~1\desktop.ini
[10/09/2006|22:55] C:\DOCUME~1\MICHLE~1\APPLIC~1\Google
[23/06/2006|18:12] C:\DOCUME~1\MICHLE~1\APPLIC~1\Help
[20/06/2006|17:48] C:\DOCUME~1\MICHLE~1\APPLIC~1\Identities
[03/12/2006|13:19] C:\DOCUME~1\MICHLE~1\APPLIC~1\Leadertech
[05/05/2007|19:55] C:\DOCUME~1\MICHLE~1\APPLIC~1\Macromedia
[03/07/2008|01:42] C:\DOCUME~1\MICHLE~1\APPLIC~1\Media great ball
[12/02/2008|17:54] C:\DOCUME~1\MICHLE~1\APPLIC~1\Microsoft
[30/08/2007|04:27] C:\DOCUME~1\MICHLE~1\APPLIC~1\Motive
[27/07/2006|23:10] C:\DOCUME~1\MICHLE~1\APPLIC~1\Mozilla
[04/01/2008|22:13] C:\DOCUME~1\MICHLE~1\APPLIC~1\MSN6
[22/04/2008|19:50] C:\DOCUME~1\MICHLE~1\APPLIC~1\Nokia
[23/06/2007|23:42] C:\DOCUME~1\MICHLE~1\APPLIC~1\PC Suite
[15/07/2006|22:46] C:\DOCUME~1\MICHLE~1\APPLIC~1\Sun
[03/12/2007|01:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[14/07/2008 19:00][--ah-----] C:\WINDOWS\tasks\B0826345906A1369.job
[14/07/2008 19:00][--ah-----] C:\WINDOWS\tasks\A0DAE59691859D4A.job
[14/07/2008 19:22][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[14/07/2008 13:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 14:00][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
A0DAE59691859D4A.job <--> c:\docume~1\eric\applic~1\mediag~1\Bagsidolerror.exe
B0826345906A1369.job <--> c:\docume~1\michle~1\applic~1\mediag~1\Bagsidolerror.exe
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[29/08/2007|12:37] C:\Program Files\802.11g USB2.0 Adapter
[13/11/2006|22:26] C:\Program Files\Adobe
[10/07/2008|23:45] C:\Program Files\Apple Software Update
[24/06/2006|10:49] C:\Program Files\Asus
[24/06/2006|10:18] C:\Program Files\ATI Multimedia
[23/06/2006|23:55] C:\Program Files\ATI Technologies
[18/11/2006|15:05] C:\Program Files\Audible
[04/10/2007|23:53] C:\Program Files\BitDownload
[10/07/2008|23:45] C:\Program Files\Bonjour
[29/08/2007|12:45] C:\Program Files\BroadJump
[13/06/2008|00:06] C:\Program Files\Circle Developement
[29/08/2007|14:44] C:\Program Files\Club-Internet
[02/11/2006|01:36] C:\Program Files\Common Files
[20/06/2006|17:35] C:\Program Files\ComPlus Applications
[16/04/2008|23:58] C:\Program Files\Creative
[28/10/2007|17:03] C:\Program Files\Creative Installation Information
[17/06/2008|19:43] C:\Program Files\Dictionnaire
[23/06/2007|12:58] C:\Program Files\DIFX
[23/06/2006|22:42] C:\Program Files\Drivers Headquarters
[06/07/2008|22:16] C:\Program Files\eMule
[08/02/2008|00:31] C:\Program Files\ESET
[22/04/2008|19:52] C:\Program Files\Fichiers communs
[21/04/2008|23:31] C:\Program Files\Google
[22/04/2008|19:56] C:\Program Files\InstallShield Installation Information
[12/06/2008|00:36] C:\Program Files\Internet Explorer
[10/07/2008|22:43] C:\Program Files\Java
[12/04/2008|02:39] C:\Program Files\Kiwee Toolbar2
[24/06/2006|08:12] C:\Program Files\Lavalys
[27/06/2008|19:37] C:\Program Files\Media great ball
[13/04/2008|16:33] C:\Program Files\Messenger Plus! Live
[11/12/2006|20:03] C:\Program Files\MessengerPlus! 3
[20/06/2006|17:39] C:\Program Files\microsoft frontpage
[14/04/2007|13:47] C:\Program Files\Microsoft Office
[20/06/2006|22:02] C:\Program Files\Microsoft Visual Studio
[20/06/2006|22:12] C:\Program Files\Microsoft Works
[20/06/2006|22:03] C:\Program Files\Microsoft.NET
[29/08/2007|14:28] C:\Program Files\Motive
[17/06/2008|19:43] C:\Program Files\Movie Maker
[10/07/2008|13:57] C:\Program Files\Mozilla Firefox
[14/04/2007|13:47] C:\Program Files\MSECache
[20/06/2006|17:35] C:\Program Files\MSN
[20/06/2006|17:35] C:\Program Files\MSN Gaming Zone
[13/04/2008|16:33] C:\Program Files\MSN Messenger
[18/11/2006|12:47] C:\Program Files\MSXML 4.0
[24/06/2006|00:55] C:\Program Files\NetMeeting
[22/04/2008|19:52] C:\Program Files\Nokia
[24/06/2006|11:04] C:\Program Files\NVIDIA Corporation
[20/06/2006|22:15] C:\Program Files\OfficeUpdate11
[14/06/2007|01:26] C:\Program Files\Outlook Express
[22/06/2008|01:31] C:\Program Files\Panicware
[23/06/2007|12:58] C:\Program Files\PC Connectivity Solution
[24/06/2006|09:02] C:\Program Files\PConPoint
[08/09/2007|10:27] C:\Program Files\PENTAX
[10/07/2008|23:25] C:\Program Files\PowerArchiver
[10/07/2008|23:47] C:\Program Files\Safari
[22/04/2008|19:56] C:\Program Files\Samsung
[16/10/2006|01:35] C:\Program Files\Saxo
[20/06/2006|17:37] C:\Program Files\Services en ligne
[11/02/2007|12:14] C:\Program Files\Spybot - Search & Destroy
[30/04/2008|01:18] C:\Program Files\Sun
[09/07/2008|03:53] C:\Program Files\Trend Micro
[24/06/2006|11:11] C:\Program Files\Tsunami_Filter_Pack_Mini
[10/07/2008|22:46] C:\Program Files\Tweak-XP Pro 4
[31/08/2007|03:21] C:\Program Files\Ulead Systems
[24/06/2006|23:25] C:\Program Files\Uninstall Information
[09/10/2007|18:59] C:\Program Files\Windows Live
[01/05/2007|14:02] C:\Program Files\Windows Live Favorites
[01/12/2007|02:15] C:\Program Files\Windows Live Toolbar
[04/12/2006|19:12] C:\Program Files\Windows Media Connect 2
[18/01/2007|17:15] C:\Program Files\Windows Media Player
[24/06/2006|00:55] C:\Program Files\Windows NT
[20/06/2006|21:47] C:\Program Files\WindowsUpdate
[20/06/2006|17:39] C:\Program Files\xerox
[04/07/2008|11:39] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[21/06/2008|11:04] C:\Program Files\Fichiers communs\Adobe
[24/06/2006|10:18] C:\Program Files\Fichiers communs\ATI
[24/06/2006|08:00] C:\Program Files\Fichiers communs\ATI Technologies
[28/10/2007|17:01] C:\Program Files\Fichiers communs\Creative
[20/06/2006|22:02] C:\Program Files\Fichiers communs\DESIGNER
[24/06/2006|11:02] C:\Program Files\Fichiers communs\InstallShield
[15/07/2006|22:41] C:\Program Files\Fichiers communs\Java
[13/09/2007|19:47] C:\Program Files\Fichiers communs\Microsoft Shared
[02/11/2006|01:36] C:\Program Files\Fichiers communs\Motive
[20/06/2006|17:36] C:\Program Files\Fichiers communs\MSSoap
[24/06/2006|11:04] C:\Program Files\Fichiers communs\NVIDIA Shared
[20/06/2006|17:58] C:\Program Files\Fichiers communs\ODBC
[20/06/2006|17:36] C:\Program Files\Fichiers communs\Services
[20/06/2006|17:58] C:\Program Files\Fichiers communs\SpeechEngines
[14/06/2007|01:26] C:\Program Files\Fichiers communs\System
---------------------------[ Process ]--------------------------
... 43
iexplore.exe ~ [2848]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\pop amen.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\wipe that.exe
C:\DOCUME~1\Eric\APPLIC~1\mediag~1
C:\DOCUME~1\Eric\APPLIC~1\mediag~1\unjlpkjg.exe
C:\DOCUME~1\MICHLE~1\APPLIC~1\mediag~1
C:\DOCUME~1\MICHLE~1\APPLIC~1\mediag~1\seystdbz.exe
C:\DOCUME~1\MICHLE~1\APPLIC~1\mediag~1\xwqeaqwk.exe
C:\DOCUME~1\MICHLE~1\APPLIC~1\mediag~1\zevkiuiu.exe
C:\Program Files\mediag~1
C:\DOCUME~1\MICHLE~1\APPLIC~1\Bitdownload
C:\DOCUME~1\MICHLE~1\APPLIC~1\Bitdownload\Data
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\BitDownload.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\Uninstall BitDownload.lnk
C:\Program Files\Bitdownload
C:\Program Files\Bitdownload\BitDownload.exe
C:\Program Files\Bitdownload\BitDownload.TRC
C:\Program Files\Bitdownload\settings.ini
C:\Program Files\Bitdownload\settings.stp
C:\Program Files\Bitdownload\SkinCrafterDll.dll
C:\Program Files\Bitdownload\Skins
C:\Program Files\Bitdownload\Support
C:\Program Files\Bitdownload\TorrentManager.dll
C:\Program Files\Bitdownload\unins000.dat
C:\Program Files\Bitdownload\unins000.exe
C:\Program Files\Bitdownload\ZM
C:\Program Files\Circle Developement
C:\WINDOWS\Prefetch\POP AMEN.EXE-00949A5D.pf
C:\DOCUME~1\MICHLE~1\Cookies\michele@adin.bigpoint[2].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@bigpoint[1].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@adopt.euroclick[2].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@pacificpoker[1].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@32vegas[1].txt
C:\DOCUME~1\MICHLE~1\Cookies\michele@banner.32vegas[2].txt
C:\WINDOWS\Tasks\A0DAE59691859D4A.job
C:\WINDOWS\Tasks\B0826345906A1369.job
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Grey send"="C:\\DOCUME~1\\MICHLE~1\\APPLIC~1\\MEDIAG~1\\Warndrawproc.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Stupid Data Dart Wave"="C:\\Documents and Settings\\All Users\\Application Data\\flag ace stupid data\\pop amen.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts MODIFIE
-> 72 ( 70 ## added by CiD )
/!\ 1 Not 127.0.0.1 !!
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-14 19:34:24
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uqsauue"="c:\\windows\\system32\\uqsauue.exe uqsauue"
C:\WINDOWS\Pack.epk
C:\WINDOWS\System32\nvs2.inf
C:\WINDOWS\System32\uqsauue.dat
C:\WINDOWS\System32\uqsauue.exe
C:\WINDOWS\System32\uqsauue_nav.dat
C:\WINDOWS\System32\uqsauue_navps.dat
C:\WINDOWS\Prefetch\UQSAUUE.EXE-1DFAC72E.pf
! EGDACCESS !
[F:741][D:41]-> C:\DOCUME~1\MICHLE~1\LOCALS~1\Temp
[F:139][D:0]-> C:\DOCUME~1\MICHLE~1\Cookies
[F:650][D:51]-> C:\DOCUME~1\MICHLE~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 19:35:58,82 ]----------------------
Merci d'avance
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumAu secours pour mon nokia c7
- ForumAu secours trojan, virus.
- ForumAu secours wininet.dll introuvable
- solutionsAu secours chanson sans titre
- downloadAu secours invasion de virus
- ForumAu secours 1and1.fr
- ForumAu secours trojan.win32.bho.abo
- ForumAu secours firefox plante
- ForumAu secours bouygues impayes
- ForumAu secours mon bureau disparait
- Voir plus
