Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

Probleme avec Adware.Fotomoto.

 

PATLAB MOBILE : toulapic et 2 utilisateurs anonymes
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Probleme avec Adware.Fotomoto.

Prévenir les modérateurs en cas d'abus 
zumbad-gon​e
zumbad-gone
  1. Posté le 14/01/2008 à 18:20:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir à tous,

 La semaine derniere un ami à téléchargé des vidéos et des jeux :hurle:  et en faisant un scan avec BitDefender,j'ai remarqué que mon ordinateur était infecté par Adware.Fotomoto.J et Adware.Fotomoto.L  .
 Est ce que quelqu'un pourrait m'aider s'il vous plaît?

 En vous remerciant

  1. homepage
diablo_n_me
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 14/01/2008 à 18:23:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
poste un rapport hijackthis

 aide toi ici :
 http://www.sasi.ifrance.com/hi [...] toriel.htm


---------------
Besoin d'une aide ? -> http://www.bibou0007.com
(Publicité)
zumbad-gone
  1. Posté le 14/01/2008 à 18:50:55  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 18:41:45, on 14/01/2008
 Platform: Windows Vista  (WinNT 6.00.1904)
 MSIE: Internet Explorer v7.00 (7.00.6000.16575)
 Boot mode: Normal

 Running processes:
 C:\Windows\system32\taskeng.ex​e
 C:\Windows\system32\Dwm.exe
 C:\Windows\Explorer.EXE
 C:\hp\support\hpsysdrv.exe
 C:\Program Files\Hewlett-Packard\On-Scree​n OSD Indicator\OSD.exe
 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
 C:\Windows\RtHDVCpl.exe
 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
 C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
 C:\Program Files\Windows Sidebar\sidebar.exe
 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\Windows\ehome\ehtray.exe
 C:\Windows\system32\schtasks.e​xe
 c:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\MOM.EXE
 C:\Windows\ehome\ehmsas.exe
 C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CCC.exe
 C:\hp\kbd\kbd.exe
 C:\Windows\system32\conime.exe
 C:\Windows\system32\taskeng.ex​e
 C:\Program Files\Internet Explorer\ieuser.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Windows\system32\Macromed\F​lash\FlashUtil9c.exe
 C:\Program Files\Trend Micro\HijackThis\HijackThis.ex​e
 C:\Windows\system32\SearchFilt​erHost.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.fr/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/ [...] pf=desktop
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/ [...] pf=desktop
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 O1 - Hosts: ::1 localhost
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll
 O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5​E23E045} - (no file)
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC612​4A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
 O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
 O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
 O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Scree​n OSD Indicator\OSD.exe"
 O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
 O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLIStart.exe"
 O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
 O4 - HKLM\..\Run: [CCUTRAYICON] FactoryMode
 O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [SunJavaUpdateReg] "C:\Windows\system32\jureg.exe​"
 O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
 O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
 O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
 O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Off​ice12\EXCEL.EXE/3000
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~1\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~1\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-08002​00c9a66} - C:\Windows\bdoscandel.exe
 O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-08002​00c9a66} - C:\Windows\bdoscandel.exe
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\Office12\​REFIEBAR.DLL
 O13 - Gopher Prefix:
 O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730​F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
 O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertS​ervice.exe
 O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.e​xe
 O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
 O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlu​gins\DQLWinService.exe
 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
 O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\105​0\Intel 32\IDriverT.exe
 O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.ex​e
 O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe




 Voilà,je pense qu'il doit y avoir de la m*erde parce que je viens de voir ce qu'il a téléchargé et c'est pas joli joli,en tout cas merci beaucoup   :)

  1. homepage
diablo_n_me
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 15/01/2008 à 08:56:50  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
1/ Désactive ton antivirus

 Télécharge sur ton bureau Combofix (de sUBs) :
 http://download.bleepingcomput [...] mboFix.exe

 sauvegarde-le sur ton bureau et pas ailleurs!


 Double-clic sur combofix, Il va te poser une question, réponds en appuyant sur la touche 1 puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé. Poste également son rapport.


---------------
Besoin d'une aide ? -> http://www.bibou0007.com
zumbad-gone
  1. Posté le 15/01/2008 à 12:42:35  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ComboFix 08-01-15.4 - Arnault 2008-01-15 12:32:08.1 - NTFSx86
 Microsoft® Windows Vista™ Édition Familiale Premium   6.0.6000.0.1252.1.1036.18.2069 [GMT 1:00]
 Running from: C:\Users\Arnault\Desktop\Combo​Fix.exe
 * Created a new restore point
 .

 ((((((((((((((((((((((((((((((​((((((   Autres suppressions   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .

 C:\Windows\system32\jusched.ex​e

 .
 (((((((((((((((((((((((((((((   Fichiers créés 2007-12-15 to 2008-01-15  ))))))))))))))))))))))))))))))​))))))
 .

 2008-01-15 12:29 . 2000-08-31 08:00 51,200 --a------ C:\Windows\NirCmd.exe
 2008-01-14 18:06 . 2008-01-14 18:06 <REP> d-------- C:\Program Files\Trend Micro
 2008-01-14 17:52 . 2008-01-14 17:52 <REP> d-------- C:\Windows\BDOSCAN8
 2008-01-13 20:25 . 2008-01-13 20:25 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\Grisoft
 2008-01-13 20:25 . 2008-01-13 20:25 <REP> d-------- C:\Users\All Users\Grisoft
 2008-01-13 20:25 . 2008-01-13 20:25 <REP> d-------- C:\ProgramData\Grisoft
 2008-01-13 20:25 . 2007-05-30 13:10 10,872 --a------ C:\Windows\System32\drivers\Av​gAsCln.sys
 2008-01-12 11:34 . 2008-01-12 11:34 <REP> d-------- C:\Program Files\EasyBits For Kids
 2008-01-10 12:30 . 2008-01-10 12:30 802,816 --a------ C:\Windows\System32\drivers\tc​pip.sys
 2008-01-10 12:30 . 2008-01-10 12:30 216,760 --a------ C:\Windows\System32\drivers\ne​tio.sys
 2008-01-10 12:30 . 2008-01-10 12:30 167,424 --a------ C:\Windows\System32\tcpipcfg.d​ll
 2008-01-10 12:30 . 2008-01-10 12:30 24,064 --a------ C:\Windows\System32\netcfg.exe
 2008-01-10 12:30 . 2008-01-10 12:30 22,016 --a------ C:\Windows\System32\netiougc.e​xe
 2008-01-10 12:29 . 2008-01-10 12:29 4,247,552 --a------ C:\Windows\System32\GameUXLega​cyGDFs.dll
 2008-01-10 12:29 . 2008-01-10 12:29 1,686,016 --a------ C:\Windows\System32\gameux.dll
 2008-01-10 12:29 . 2008-01-10 12:29 1,060,920 --a------ C:\Windows\System32\drivers\nt​fs.sys
 2008-01-10 12:29 . 2008-01-10 12:29 211,000 --a------ C:\Windows\System32\drivers\vo​lsnap.sys
 2008-01-10 12:29 . 2008-01-10 12:29 154,624 --a------ C:\Windows\System32\drivers\nw​ifi.sys
 2008-01-10 12:29 . 2008-01-10 12:29 109,624 --a------ C:\Windows\System32\drivers\at​aport.sys
 2008-01-10 12:29 . 2008-01-10 12:29 45,112 --a------ C:\Windows\System32\drivers\pc​iidex.sys
 2008-01-10 12:29 . 2008-01-10 12:29 21,560 --a------ C:\Windows\System32\drivers\at​api.sys
 2008-01-10 12:29 . 2008-01-10 12:29 17,464 --a------ C:\Windows\System32\drivers\in​telide.sys
 2008-01-10 12:28 . 2008-01-10 12:28 11,776 --a------ C:\Windows\System32\sbunattend​.exe
 2007-12-31 22:51 . 2007-12-31 22:51 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\vlc
 2007-12-31 22:51 . 2007-12-31 22:51 <REP> d-------- C:\Program Files\VideoLAN
 2007-12-28 19:45 . 2007-12-28 19:45 <REP> d-------- C:\Program Files\Novosoft International
 2007-12-28 19:45 . 2003-04-16 01:10 110,592 --a------ C:\Windows\System32\tsccvid.dl​l
 2007-12-28 11:58 . 2007-12-28 11:58 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\Apple Computer
 2007-12-28 11:33 . 2007-12-28 11:33 <REP> d-------- C:\Program Files\iTunes
 2007-12-28 11:33 . 2007-12-28 11:33 <REP> d-------- C:\Program Files\iPod
 2007-12-28 11:32 . 2007-12-28 11:33 <REP> d-------- C:\Users\All Users\Apple Computer
 2007-12-28 11:32 . 2007-12-28 11:33 <REP> d-------- C:\ProgramData\Apple Computer
 2007-12-28 11:32 . 2007-12-28 11:32 <REP> d-------- C:\Program Files\QuickTime
 2007-12-28 11:31 . 2007-12-28 11:31 <REP> d-------- C:\Users\All Users\Apple
 2007-12-28 11:31 . 2007-12-28 11:31 <REP> d-------- C:\ProgramData\Apple
 2007-12-28 11:31 . 2007-12-28 11:31 <REP> d-------- C:\Program Files\Common Files\Apple
 2007-12-28 11:31 . 2007-12-28 11:31 <REP> d-------- C:\Program Files\Apple Software Update
 2007-12-28 10:29 . 2007-12-28 10:29 <REP> d-------- C:\Users\All Users\{B3C2C1CD-6B77-4A96-B670​-F734AC2A1CBC}
 2007-12-28 10:29 . 2007-12-28 10:29 <REP> d-------- C:\ProgramData\{B3C2C1CD-6B77-​4A96-B670-F734AC2A1CBC}
 2007-12-28 10:29 . 2007-12-28 10:29 <REP> d-------- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
 2007-12-28 10:28 . 2007-12-28 10:28 <REP> d-------- C:\Program Files\Microsoft.NET
 2007-12-28 10:28 . 2006-10-26 19:56 32,592 --a------ C:\Windows\System32\msonpmon.d​ll
 2007-12-28 10:26 . 2007-12-28 10:29 <REP> d-------- C:\Users\All Users\Microsoft Help
 2007-12-28 10:26 . 2007-12-28 10:29 <REP> d-------- C:\ProgramData\Microsoft Help
 2007-12-28 10:26 . 2007-12-28 10:26 <REP> dr-h----- C:\MSOCache
 2007-12-27 19:39 . 2007-12-27 19:39 <REP> dr------- C:\Windows\System32\config\sys​temprofile\Music
 2007-12-27 19:36 . 2007-12-27 19:36 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\U3
 2007-12-27 11:37 . 2007-12-27 11:39 <REP> d-------- C:\Program Files\Valve
 2007-12-27 11:16 . 2008-01-12 17:14 <REP> d-------- C:\Users\Arnault\Shared
 2007-12-27 11:16 . 2008-01-12 19:36 <REP> d-------- C:\Users\Arnault\Incomplete
 2007-12-27 11:15 . 2008-01-12 14:51 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\LimeWire
 2007-12-27 09:52 . 2007-12-27 09:52 <REP> d-------- C:\Users\All Users\Messenger Plus!
 2007-12-27 09:52 . 2007-12-27 09:52 <REP> d-------- C:\ProgramData\Messenger Plus!
 2007-12-26 21:09 . 2007-12-26 21:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
 2007-12-26 20:09 . 2007-12-26 20:09 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\PeerNetworking
 2007-12-26 19:05 . 2007-12-26 19:05 <REP> d-------- C:\Program Files\Messenger Plus! Live
 2007-12-26 12:34 . 2007-12-26 12:34 490 --a------ C:\Windows\System32\Support.xm​l
 2007-12-26 11:19 . 2007-12-26 11:19 <REP> d-------- C:\Users\All Users\Microsoft Games  
 2007-12-26 11:19 . 2007-12-26 11:19 <REP> d-------- C:\ProgramData\Microsoft Games  
 2007-12-26 11:18 . 2006-09-28 16:05 2,414,360 --a------ C:\Windows\System32\d3dx9_31.d​ll
 2007-12-26 11:18 . 2006-09-28 16:04 68,888 --a------ C:\Windows\System32\xinput1_3.​dll
 2007-12-26 11:17 . 2007-12-26 11:19 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\Microsoft Game Studios
 2007-12-26 11:17 . 2007-12-26 11:19 <REP> d-------- C:\Users\All Users\Microsoft Games
 2007-12-26 11:17 . 2007-12-26 11:19 <REP> d-------- C:\ProgramData\Microsoft Games
 2007-12-26 11:03 . 2007-12-26 11:03 <REP> d-------- C:\Windows\PCHEALTH
 2007-12-26 10:59 . 2007-12-26 11:04 <REP> d-------- C:\Program Files\Windows Live
 2007-12-26 10:59 . 2007-12-26 11:03 <REP> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller
 2007-12-26 10:58 . 2007-12-26 10:58 <REP> d-------- C:\Users\All Users\WLInstaller
 2007-12-26 10:58 . 2007-12-26 10:58 <REP> d-------- C:\ProgramData\WLInstaller
 2007-12-26 10:57 . 2007-12-26 10:57 <REP> d-------- C:\Program Files\LimeWire
 2007-12-26 10:43 . 2007-12-26 10:43 77,824 --a------ C:\Windows\System32\xcomm.dll
 2007-12-26 10:38 . 2007-12-26 10:38 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\BitDefender
 2007-12-26 10:37 . 2007-12-26 10:38 <REP> d-------- C:\Users\All Users\BitDefender
 2007-12-26 10:37 . 2007-12-26 10:38 <REP> d-------- C:\ProgramData\BitDefender
 2007-12-26 10:37 . 2007-12-26 10:37 <REP> d-------- C:\Program Files\BitDefender
 2007-12-26 10:34 . 2007-12-26 10:34 16 --a------ C:\Windows\System32\coh.cache
 2007-12-26 10:33 . 2007-12-26 10:37 <REP> d-------- C:\Program Files\Common Files\BitDefender
 2007-12-25 10:12 . 2007-12-25 10:12 1,327,104 --a------ C:\Windows\System32\quartz.dll
 2007-12-25 10:12 . 2007-12-25 10:12 224,768 --a------ C:\Windows\System32\drivers\us​bport.sys
 2007-12-25 10:12 . 2007-12-25 10:12 193,536 --a------ C:\Windows\System32\drivers\us​bhub.sys
 2007-12-25 10:12 . 2007-12-25 10:12 73,216 --a------ C:\Windows\System32\drivers\us​bccgp.sys
 2007-12-25 10:12 . 2007-12-25 10:12 38,400 --a------ C:\Windows\System32\drivers\us​behci.sys
 2007-12-25 10:12 . 2007-12-25 10:12 23,040 --a------ C:\Windows\System32\drivers\us​buhci.sys
 2007-12-25 10:12 . 2007-12-25 10:12 8,704 --a------ C:\Windows\System32\hcrstco.dl​l
 2007-12-25 10:12 . 2007-12-25 10:12 8,704 --a------ C:\Windows\System32\hccoin.dll
 2007-12-25 10:12 . 2007-12-25 10:12 5,888 --a------ C:\Windows\System32\drivers\us​bd.sys
 2007-12-25 10:11 . 2007-12-25 10:11 1,244,672 --a------ C:\Windows\System32\mcmde.dll
 2007-12-25 10:11 . 2007-12-25 10:11 223,232 --a------ C:\Windows\System32\WMASF.DLL
 2007-12-25 10:11 . 2007-12-25 10:11 9,728 --a------ C:\Windows\System32\LAPRXY.DLL
 2007-12-25 10:11 . 2007-12-25 10:11 2,048 --a------ C:\Windows\System32\asferror.d​ll
 2007-12-25 10:08 . 2007-12-25 10:08 <REP> d-------- C:\Program Files\MSXML 4.0
 2007-12-25 10:08 . 2007-12-25 10:08 3,505,848 --a------ C:\Windows\System32\ntkrnlpa.e​xe
 2007-12-25 10:08 . 2007-12-25 10:08 3,472,056 --a------ C:\Windows\System32\ntoskrnl.e​xe
 2007-12-25 10:08 . 2007-12-25 10:08 788,992 --a------ C:\Windows\System32\rpcrt4.dll
 2007-12-25 10:08 . 2007-12-25 10:08 750,080 --a------ C:\Windows\System32\qmgr.dll
 2007-12-25 10:08 . 2007-12-25 10:08 2,048 --a------ C:\Windows\System32\tzres.dll
 2007-12-25 09:55 . 2007-12-25 09:55 <REP> d-------- C:\Users\Arnault\AppData\Roami​ng\ATI
 2007-12-25 09:54 . 2007-12-25 23:42 <REP> dr------- C:\Users\Arnault\Searches
 2007-12-25 09:54 . 2008-01-05 15:05 <REP> dr------- C:\Users\Arnault\Contacts
 2007-12-25 09:54 . 2007-12-25 09:54 44 --a------ C:\Windows\system\hpsysdrv.dat

 .
 ((((((((((((((((((((((((((((((​((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 2008-01-10 11:36 --------- d-----w C:\Program Files\Windows Sidebar
 2008-01-10 11:36 --------- d-----w C:\Program Files\Windows Mail
 2008-01-10 11:29 537,600 ----a-w C:\Windows\AppPatch\AcLayers.d​ll
 2008-01-10 11:29 449,024 ----a-w C:\Windows\AppPatch\AcSpecfc.d​ll
 2008-01-10 11:29 2,143,744 ----a-w C:\Windows\AppPatch\AcGenral.d​ll
 2008-01-10 11:29 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.d​ll
 2007-12-28 18:46 --------- d--h--w C:\Program Files\InstallShield Installation Information
 2007-12-28 09:28 --------- d-----w C:\Program Files\Microsoft Works
 2007-12-27 18:37 --------- d-----w C:\ProgramData\Sonic
 2007-12-26 10:20 --------- d-----w C:\Program Files\Microsoft Games
 2007-12-26 09:43 87,952 ------w C:\Windows\system32\drivers\bd​fndisf.sys
 2007-12-26 09:39 --------- d-----w C:\ProgramData\Symantec
 2007-12-26 09:39 --------- d-----w C:\Program Files\Google
 2007-12-26 09:37 --------- d-----w C:\Program Files\Common Files\Symantec Shared
 2007-12-25 22:39 174 --sha-w C:\Program Files\desktop.ini
 2007-12-25 22:36 --------- d-----w C:\Program Files\Windows Calendar
 2007-12-25 09:14 8,192 ----a-w C:\Windows\System32\riched32.d​ll
 2007-12-25 09:14 77,824 ----a-w C:\Windows\System32\rascfg.dll
 2007-12-25 09:14 70,144 ----a-w C:\Windows\system32\drivers\pa​cer.sys
 2007-12-25 09:14 694,784 ----a-w C:\Windows\System32\localspl.d​ll
 2007-12-25 09:14 619,008 ----a-w C:\Windows\system32\drivers\dx​gkrnl.sys
 2007-12-25 09:14 61,952 ----a-w C:\Windows\system32\drivers\wa​narp.sys
 2007-12-25 09:14 52,736 ----a-w C:\Windows\System32\rasdiag.dl​l
 2007-12-25 09:14 48,640 ----a-w C:\Windows\system32\drivers\nd​proxy.sys
 2007-12-25 09:14 384,000 ----a-w C:\Windows\System32\netcfgx.dl​l
 2007-12-25 09:14 36,864 ----a-w C:\Windows\System32\cdd.dll
 2007-12-25 09:14 33,280 ----a-w C:\Windows\System32\traffic.dl​l
 2007-12-25 09:14 32,768 ----a-w C:\Windows\System32\rasmxs.dll
 2007-12-25 09:14 286,208 ----a-w C:\Windows\System32\ipnathlp.d​ll
 2007-12-25 09:14 22,016 ----a-w C:\Windows\System32\rasser.dll
 2007-12-25 09:14 20,480 ----a-w C:\Windows\system32\drivers\nd​istapi.sys
 2007-12-25 09:14 15,360 ----a-w C:\Windows\System32\pacerprf.d​ll
 2007-12-25 09:14 134,656 ----a-w C:\Windows\System32\dps.dll
 2007-12-25 09:14 13,824 ----a-w C:\Windows\System32\wshqos.dll
 2007-12-25 09:14 13,824 ----a-w C:\Windows\System32\icsunatten​d.exe
 2007-12-25 09:13 8,147,968 ----a-w C:\Windows\System32\wmploc.DLL
 2007-12-25 09:13 704,000 ----a-w C:\Windows\System32\PhotoScree​nsaver.scr
 2007-12-25 09:13 7,680 ----a-w C:\Windows\System32\spwmp.dll
 2007-12-25 09:13 67,584 ----a-w C:\Windows\System32\wlanhlp.dl​l
 2007-12-25 09:13 542,720 ----a-w C:\Windows\System32\sysmain.dl​l
 2007-12-25 09:13 502,784 ----a-w C:\Windows\System32\wlansvc.dl​l
 2007-12-25 09:13 47,104 ----a-w C:\Windows\System32\wlanapi.dl​l
 2007-12-25 09:13 4,096 ----a-w C:\Windows\System32\dxmasf.dll
 2007-12-25 09:13 356,864 ----a-w C:\Windows\System32\MediaMetad​ataHandler.dll
 2007-12-25 09:13 297,984 ----a-w C:\Windows\System32\wlansec.dl​l
 2007-12-25 09:13 290,816 ----a-w C:\Windows\System32\wlanmsm.dl​l
 2007-12-25 09:13 258,232 ----a-w C:\Windows\system32\drivers\ac​pi.sys
 2007-12-25 09:13 24,064 ----a-w C:\Windows\System32\wtsapi32.d​ll
 2007-12-25 09:13 2,923,520 ----a-w C:\Windows\explorer.exe
 2007-12-25 09:13 2,028,544 ----a-w C:\Windows\System32\win32k.sys
 2007-12-25 09:10 88,576 ----a-w C:\Windows\System32\avifil32.d​ll
 2007-12-25 09:10 84,480 ----a-w C:\Windows\System32\INETRES.dl​l
 2007-12-25 09:10 82,944 ----a-w C:\Windows\System32\mciavi32.d​ll
 2007-12-25 09:10 8,138,240 ----a-w C:\Windows\System32\ssBranded.​scr
 2007-12-25 09:10 737,792 ----a-w C:\Windows\System32\inetcomm.d​ll
 2007-12-25 09:10 712,192 ----a-w C:\Windows\System32\WindowsCod​ecs.dll
 2007-12-25 09:10 69,632 ----a-w C:\Windows\System32\sendmail.d​ll
 2007-12-25 09:10 65,024 ----a-w C:\Windows\System32\avicap32.d​ll
 2007-12-25 09:10 61,440 ----a-w C:\Windows\System32\ntprint.ex​e
 2007-12-25 09:10 31,232 ----a-w C:\Windows\System32\msvidc32.d​ll
 2007-12-25 09:10 269,824 ----a-w C:\Windows\System32\schannel.d​ll
 2007-12-25 09:10 220,160 ----a-w C:\Windows\System32\ntprint.dl​l
 2007-12-25 09:10 123,904 ----a-w C:\Windows\System32\msvfw32.dl​l
 2007-12-25 09:10 120,320 ----a-w C:\Windows\System32\dhcpcsvc6.​dll
 2007-12-25 09:10 12,800 ----a-w C:\Windows\System32\msrle32.dl​l
 2007-12-25 09:10 10,240 ----a-w C:\Windows\System32\dhcpcmonit​or.dll
 2007-12-25 09:10 1,984,512 ----a-w C:\Windows\System32\authui.dll
 2007-12-25 09:09 84,992 ----a-w C:\Windows\system32\drivers\sr​vnet.sys
 2007-12-25 09:09 824,832 ----a-w C:\Windows\System32\wininet.dl​l
 2007-12-25 09:09 58,368 ----a-w C:\Windows\system32\drivers\mr​xsmb20.sys
 2007-12-25 09:09 56,320 ----a-w C:\Windows\System32\iesetup.dl​l
 2007-12-25 09:09 52,736 ----a-w C:\Windows\AppPatch\iebrshim.d​ll
 2007-12-25 09:09 26,624 ----a-w C:\Windows\System32\ieUnatt.ex​e
 2007-12-25 09:09 130,048 ----a-w C:\Windows\system32\drivers\sr​v2.sys
 2007-12-25 09:09 101,888 ----a-w C:\Windows\system32\drivers\mr​xsmb.sys
 2007-12-25 08:56 --------- d-----w C:\ProgramData\Hewlett-Packard
 2007-12-25 08:32 --------- d-sh--w C:\ProgramData\Modèles
 2007-12-25 08:32 --------- d-sh--w C:\ProgramData\Menu Démarrer
 2007-12-25 08:32 --------- d-sh--w C:\ProgramData\Favoris
 2007-12-25 08:32 --------- d-sh--w C:\ProgramData\Bureau
 2007-12-25 08:32 --------- d-sh--w C:\Program Files\Fichiers communs
 2007-10-18 10:31 51,224 ----a-w C:\Windows\System32\sirenacm.d​ll
 .

 ((((((((((((((((((((((((((((((​(((   Point de chargement Reg   ))))))))))))))))))))))))))))))​)))))))))))))))))))
 .
 .
 REGEDIT4
 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {2318C2B1-4965-11D4-9B18-00902​7A5CD4F}
 {381FFDE8-2394-4F90-B10D-FC612​4A40F8C}

 [HKEY_CLASSES_ROOT\clsid\{381ff​de8-2394-4f90-b10d-fc6124a40f8​c}]
 [HKEY_CLASSES_ROOT\BitDefender Toolbar]

 [HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Windows\CurrentVersion\​Run]
 "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-10 12:28 1232896]
 "WindowsWelcomeCenter"="oobefl​dr.dll" [2006-11-02 13:34 2159104 C:\Windows\System32\oobefldr.dll]
 "HPAdvisor"="C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2007-06-01 12:40 1783400]
 "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
 "ehTray.exe"="C:\Windows\ehome​\ehTray.exe" [2006-11-02 13:35 125440]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Run]
 "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-09-26 07:43 1006264]
 "hpsysdrv"="c:\hp\support\hpsy​sdrv.exe" [2007-04-18 16:01 65536]
 "KBD"="C:\HP\KBD\KbdStub.EXE" [2006-12-08 17:16 65536]
 "OsdMaestro"="C:\Program Files\Hewlett-Packard\On-Scree​n OSD Indicator\OSD.exe" [2007-02-15 12:59 118784]
 "IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-06-14 19:31 178968]
 "StartCCC"="c:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLIStart.exe" [2006-11-10 11:35 90112]
 "RtHDVCpl"="RtHDVCpl.exe" [2007-07-06 12:06 4669440 C:\Windows\RtHDVCpl.exe]
 "CCUTRAYICON"="FactoryMode" []
 "HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-05-24 12:13 71176]
 "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06 40048]
 "SunJavaUpdateReg"="C:\Windows​\system32\jureg.exe" [2007-04-07 01:56 54936]
 "HP Software Update"="c:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 15:24 54840]
 "BitDefender Antiphishing Helper"="C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe" [2007-10-09 15:46 61440]
 "BDAgent"="C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe" [2007-12-26 10:43 319488]
 "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-12-11 10:56 286720]
 "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-12-11 12:10 267048]
 "!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\RunOnce]
 "Launcher"="%WINDIR%\SMINST\la​uncher.exe" [ ]

 R1 bdftdif;bdftdif;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys [2007-12-26 10:43]
 R2 DQLWinService;DQLWinService;"C​:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlu​gins\DQLWinService.exe" [2006-09-03 09:32]
 R3 atikmdag;atikmdag;C:\Windows\s​ystem32\DRIVERS\atikmdag.sys [2007-08-13 23:07]
 R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;C:\Windows\system32\DR​IVERS\bdfndisf.sys [2007-12-26 10:43]
 R3 bdfsfltr;bdfsfltr;C:\Windows\s​ystem32\DRIVERS\bdfsfltr.sys [2007-08-02 16:03]
 R3 BDSelfPr;BDSelfPr;C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys [2007-08-08 13:12]
 R3 scan;BitDefender Threat Scanner;C:\Windows\System32\sv​chost.exe [2006-11-02 10:45]
 S2 IntelDHSvcConf;Intel DH Service;"C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.ex​e" [2006-05-10 08:13]

 [HKEY_LOCAL_MACHINE\software\mi​crosoft\windows nt\currentversion\svchost]
 LocalSystemNetworkRestricted REG_MULTI_SZ    hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
 bdx REG_MULTI_SZ    scan

 *Newly Created Service* - PROCEXP90
 .
 Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
 "2008-01-15 11:30:41 C:\Windows\Tasks\User_Feed_Syn​chronization-{0580C2C4-F556-48​C4-BD9E-D2420F2142E9}.job"
 - C:\Windows\system32\msfeedssyn​c.exe
 .
 ******************************​******************************​**************

 catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
 Rootkit scan 2008-01-15 12:34:06
 Windows 6.0.6000  NTFS

 scanning hidden processes ...

 scanning hidden autostart entries ...

 scanning hidden files ...

 scan completed successfully
 hidden files: 0

 ******************************​******************************​**************
 .
 Completion time: 2008-01-15 12:34:48
 ComboFix-quarantined-files.txt  2008-01-15 11:34:45
 .
 2008-01-10 11:30:24 --- E O F ---


 Voilà le rapport!Je suppose que je peut remettre mon Anti virus?!

(Publicité)
  1. homepage
diablo_n_me
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 16/01/2008 à 13:00:54  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Fais un scan avec SUPERAntiSpyware

 Aide toi ici
 http://sasi.xooit.fr/t19-Analy [...] pyware.htm

 Poste le rapport du scan


---------------
Besoin d'une aide ? -> http://www.bibou0007.com
zumbad-gone
  1. Posté le 16/01/2008 à 19:53:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
SUPERAntiSpyware Scan Log
 http://www.superantispyware.com

 Generated 01/16/2008 at 07:40 PM

 Application Version : 3.9.1008

 Core Rules Database Version : 3380
 Trace Rules Database Version: 1374

 Scan type       : Complete Scan
 Total Scan Time : 00:37:35

 Memory items scanned      : 718
 Memory threats detected   : 0
 Registry items scanned    : 7434
 Registry threats detected : 0
 File items scanned        : 68334
 File threats detected     : 17

 Adware.Tracking Cookie
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\a​rnault@atdmt[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@ad.ifrance[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@adrevolver[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@advertising[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@atdmt[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@bluestreak[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@bs.serving-sys[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@doubleclick[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@media.adrevolver[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@media.adrevolver[3].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@mediaservices.myspa​ce[2].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@overture[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@serving-sys[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@smartadserver[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@weborama[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@www.googleadservice​s[1].txt
  C:\Users\Arnault\AppData\Roami​ng\Microsoft\Windows\Cookies\L​ow\arnault@xiti[1].txt


 Voici le rapport,encore merci de vous occuper de moi. :)

  1. homepage
diablo_n_me
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 17/01/2008 à 11:53:33  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
As-tu encore des alerte de Fotomoto ? poste moi un rapport hijackthis stp


---------------
Besoin d'une aide ? -> http://www.bibou0007.com
(Publicité)
zumbad-gone
  1. Posté le 17/01/2008 à 13:00:25  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 12:33:24, on 17/01/2008
 Platform: Windows Vista  (WinNT 6.00.1904)
 MSIE: Internet Explorer v7.00 (7.00.6000.16575)
 Boot mode: Normal

 Running processes:
 C:\Windows\system32\Dwm.exe
 C:\Windows\Explorer.EXE
 C:\Windows\system32\taskeng.ex​e
 C:\hp\support\hpsysdrv.exe
 C:\Program Files\Hewlett-Packard\On-Scree​n OSD Indicator\OSD.exe
 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
 C:\Windows\RtHDVCpl.exe
 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
 C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
 C:\Windows\system32\schtasks.e​xe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
 C:\Program Files\Windows Sidebar\sidebar.exe
 C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\Windows\ehome\ehtray.exe
 C:\Program Files\SUPERAntiSpyware\SUPERAn​tiSpyware.exe
 c:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\MOM.EXE
 C:\Windows\ehome\ehmsas.exe
 C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CCC.exe
 C:\hp\kbd\kbd.exe
 C:\Program Files\Internet Explorer\ieuser.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Windows\system32\Macromed\F​lash\FlashUtil9c.exe
 C:\Program Files\BitDefender\BitDefender 2008\uiscan.exe
 C:\Program Files\Trend Micro\HijackThis\HijackThis.ex​e

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.fr/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/ [...] pf=desktop
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/ [...] pf=desktop
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 O1 - Hosts: ::1 localhost
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelper.dll
 O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5​E23E045} - (no file)
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC612​4A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
 O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
 O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
 O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Scree​n OSD Indicator\OSD.exe"
 O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
 O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLIStart.exe"
 O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
 O4 - HKLM\..\Run: [CCUTRAYICON] FactoryMode
 O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [SunJavaUpdateReg] "C:\Windows\system32\jureg.exe​"
 O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
 O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
 O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
 O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAn​tiSpyware.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Off​ice12\EXCEL.EXE/3000
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv​.dll
 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~1\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~1\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-08002​00c9a66} - C:\Windows\bdoscandel.exe
 O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-08002​00c9a66} - C:\Windows\bdoscandel.exe
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\Office12\​REFIEBAR.DLL
 O13 - Gopher Prefix:
 O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730​F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
 O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINL​O.dll
 O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertS​ervice.exe
 O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.e​xe
 O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
 O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlu​gins\DQLWinService.exe
 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
 O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\105​0\Intel 32\IDriverT.exe
 O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.ex​e
 O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
 O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
 O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
 O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
 O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.ex​e
 O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
 O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaD​B9.exe
 O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
 O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
 O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe

 --
 End of file - 9415 bytes


 Après analyse avec BitDefender, il me signale que les 17 éléments mis en quarantaine sont toujours infectés...

zumbad-gone
  1. Posté le 24/01/2008 à 08:10:21  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Est ce que vous pourriez me dire ce que je dois faire? merci d'avance

  1. homepage
diablo_n_me
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 24/01/2008 à 12:43:12  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Désinstalle BitDefender et mets à la place Antivir (après la désinfection tu réinstalle BitDefender)

 Pour cela, fais cette procédure
 http://sasi.xooit.fr/t13-Netto [...] inaire.htm

 Poste moi le rapport d'Antivir et celui d'AVG AS


---------------
Besoin d'une aide ? -> http://www.bibou0007.com
(Publicité)
 Page :
1

Aller à :
 

Sujets relatifs
problème avec avast emergency update problème avec kyspersky
Adware/InstallCore AI trouvé par AVIRA problème avast
problème virus problème de ralentit pc
Problème svchost à 99% Problème résolution écran changée toute seule
Problème avec adwcleaner probléme lors d'une recherche sur un site
Plus de sujets relatifs à : Probleme avec Adware.Fotomoto.

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Help! Trojans type geedb et autres. 18
autorun.inf et C:\ntde1ect.com - Win32:OnLineGames-BSQ[Trj] 12
Sacré virus 7
infecté par win32.CTX 1
SOS! problème avec Spyware secure et des pubs intempestives 1