Se connecter / S'enregistrer
Votre question

Pb pages internet qui s'ouvrent seules !!! pas douée en info merci !

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
Anonyme
5 Juin 2010 16:55:26

Bonjour,

J'ai le même problème mais je n'y connais rien en PC.
J'ai fait des recherches sur le web et j'ai chargé combofix qui a fait un scan dont voici le rapport :
ComboFix 10-06-03.01 - monrond 05/06/2010 14:48:46.1.2 - x86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.511.266 [GMT 2:00]
Lancé depuis: c:\documents and settings\monrond\Bureau\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Internet Explorer\SET1A.tmp
c:\program files\Internet Explorer\SET1B.tmp
c:\program files\Internet Explorer\SET1C.tmp
c:\program files\P2Pcontrol
c:\program files\P2Pcontrol\config\clients.met
c:\program files\P2Pcontrol\config\clients.met.bak
c:\program files\P2Pcontrol\config\cryptkey.dat
c:\program files\P2Pcontrol\config\eservice
c:\program files\P2Pcontrol\config\known.met
c:\program files\P2Pcontrol\config\nodes.dat
c:\program files\P2Pcontrol\config\server.met
c:\program files\P2Pcontrol\data
c:\program files\P2Pcontrol\logs\eMule.log
c:\program files\P2Pcontrol\P2Pcontrol.url
c:\program files\P2Pcontrol\P2Pcontrol_claim.url
c:\program files\P2Pcontrol\tservice
c:\program files\QUAD Utilities
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\AdviceTx.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\bhmem.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\bhsl.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\bmem.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\CatDesc.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\CatID.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\cblk.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\cmem.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\cname.wtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\Cookies.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\ctid.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\EPSigs.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\FastSigs.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\FileDT.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\FolderDT.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\fsigs.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\hcol.wtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\ip.vtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\LIBEMAIL.DLL
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\libMsi.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\libNSIS.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\Libolea.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\libRar.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\LIBTD.DLL
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\libVvs.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\libZip.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\RegDT.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\remediation.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\RTmem.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\ThreatDT.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\ThreatID.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\TImem.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\vcore.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\VVSSigs.vdx
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\white.wtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\whsl.wtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\definitions\wmem.wtd
c:\program files\QUAD Utilities\QUAD AntiSpyware\mimepp.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\SBAMConfig.bin
c:\program files\QUAD Utilities\QUAD AntiSpyware\SBAMSvc.exe
c:\program files\QUAD Utilities\QUAD AntiSpyware\sbap.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\SBArva.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\sbsdkxml.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\sbte.dll
c:\program files\QUAD Utilities\QUAD AntiSpyware\SpursDownload.dll
c:\windows\Fonts\acrsec.fon
c:\windows\Fonts\acrsecB.fon
c:\windows\Fonts\acrsecI.fon
c:\windows\system\oeminfo.ini
c:\windows\system32\PerfStringBackup.flv
c:\windows\system32\record.flv
c:\windows\system32\SET112.flv
c:\windows\system32\SET11E.flv
c:\windows\system32\SET8A.flv
c:\windows\system32\SET92.flv
c:\windows\TEMP\logishrd\LVPrcInj01.dll

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SBAMSvc
-------\Legacy_SBAMSvc
-------\Service_SBAMSvc
-------\Service_SBAMSvc


((((((((((((((((((((((((((((( Fichiers créés du 2010-05-05 au 2010-06-05 ))))))))))))))))))))))))))))))))))))
.

2010-06-05 10:08 . 2010-06-05 10:08 -------- d-----w- c:\documents and settings\monrond\Application Data\Uniblue
2010-06-05 10:07 . 2010-06-05 10:07 -------- d-----w- c:\program files\Uniblue
2010-06-04 09:23 . 2010-06-04 09:23 -------- d-sh--w- c:\documents and settings\Default User\IETldCache
2010-06-04 08:40 . 2010-06-04 08:40 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.209\itstv.exe
2010-06-03 18:57 . 2010-06-03 18:57 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.208\itstv.exe
2010-06-03 16:30 . 2010-06-04 08:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-06-03 16:30 . 2010-06-04 08:35 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-06-03 16:12 . 2010-06-03 16:12 -------- d-----w- c:\program files\trend micro
2010-06-03 16:12 . 2010-06-03 16:12 -------- d-----w- C:\rsit
2010-06-02 10:56 . 2010-06-02 10:56 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.207\itstv.exe
2010-06-02 06:56 . 2010-06-02 06:56 -------- d-----w- c:\documents and settings\monrond\Local Settings\Application Data\EoRezo
2010-06-02 06:56 . 2010-06-02 06:56 -------- d-----w- c:\program files\EoRezo
2010-06-01 18:56 . 2010-06-01 18:56 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.206\itstv.exe
2010-05-30 12:45 . 2010-05-30 12:45 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.205\itstv.exe
2010-05-29 19:45 . 2010-05-29 19:45 -------- d-----w- c:\program files\GigaTribe
2010-05-29 15:59 . 2010-05-29 15:59 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.204\itstv.exe
2010-05-26 18:30 . 2010-05-26 18:30 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.201\itstv.exe
2010-05-24 09:16 . 2010-05-24 09:16 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.199\itstv.exe
2010-05-23 21:10 . 2010-05-23 21:10 -------- d-----w- c:\documents and settings\monrond\Application Data\Apple Computer
2010-05-23 11:16 . 2010-05-23 11:16 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.198\itstv.exe
2010-05-14 19:42 . 2010-05-14 19:42 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.189\itstv.exe
2010-05-13 07:43 . 2010-05-13 07:43 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.188\itstv.exe
2010-05-11 18:42 . 2010-05-11 18:42 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.186\itstv.exe
2010-05-09 10:40 . 2010-05-09 10:40 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.184\itstv.exe
2010-05-07 11:29 . 2010-05-07 11:29 -------- d-----w- c:\documents and settings\monrond\Local Settings\Application Data\Shalsoft
2010-05-07 10:39 . 2010-05-07 10:43 21304816 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\rp\RealPlayerSPGold_fr.exe

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-05 13:03 . 2010-06-05 13:03 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.210\itstv.exe
2010-06-04 18:40 . 2009-09-23 20:00 -------- d-----w- c:\program files\Microsoft Silverlight
2010-05-23 11:14 . 2010-03-09 18:22 443912 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\setup.exe
2010-05-11 18:42 . 2009-11-25 19:36 -------- d-----w- c:\program files\Fichiers communs\Iconix
2010-05-06 20:59 . 2005-01-25 22:27 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-05-06 20:39 . 2006-10-12 16:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-05-06 20:39 . 2008-07-06 16:21 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-05-06 20:34 . 2006-10-12 16:52 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-05-06 20:33 . 2006-10-12 16:52 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-05-06 20:33 . 2006-10-12 16:52 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-05-06 20:33 . 2008-07-06 16:21 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-05-06 20:33 . 2006-10-12 16:52 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-04-29 16:03 . 2010-04-29 16:03 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.174\itstv.exe
2010-04-27 19:16 . 2010-04-27 19:16 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.172\itstv.exe
2010-04-26 19:12 . 2006-10-12 16:52 -------- d-----w- c:\program files\Alwil Software
2010-04-26 18:53 . 2010-04-26 18:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-04-18 16:56 . 2010-04-18 16:56 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.163\itstv.exe
2010-04-14 16:47 . 2005-01-25 22:27 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-07 19:20 . 2004-12-15 15:57 -------- d-----w- c:\program files\Fichiers communs\Adobe
2010-03-31 18:55 . 2010-03-31 18:55 20480 ----a-w- c:\documents and settings\monrond\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.145\itstv.exe
2010-03-29 17:59 . 2004-12-15 13:56 630148 ----a-w- c:\windows\system32\perfh00C.dat
2010-03-29 17:59 . 2004-12-15 13:56 124968 ----a-w- c:\windows\system32\perfc00C.dat
2010-03-13 08:37 . 2010-03-13 08:37 8405312 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\gtb\GOOGLE_TOOLBAR\GoogleToolbarInstaller.exe
2010-03-13 08:36 . 2010-03-13 08:36 149000 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-13 08:36 . 2010-03-13 08:36 10309448 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-13 08:33 . 2010-03-13 08:33 79368 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\vista.exe
2010-03-13 08:33 . 2010-03-13 08:33 64000 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\inst_config\gcapi_dll.dll
2010-03-13 08:33 . 2010-03-13 08:33 52288 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\inst_config\gtapi.dll
2010-03-13 08:33 . 2010-03-13 08:33 50688 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\inst_config\fftbapi.dll
2010-03-13 08:33 . 2010-03-13 08:33 49152 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\inst_config\CarboniteCompatibility.dll
2010-03-13 08:33 . 2010-03-13 08:33 118784 ----a-w- c:\documents and settings\monrond\Application Data\Real\Update\setup3.10\RUP\inst_config\compat.dll
2010-03-10 06:16 . 2004-08-05 12:00 420352 ------w- c:\windows\system32\vbscript.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 153136]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-13 68856]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RegistryBooster"="c:\program files\Uniblue\RegistryBooster\launcher.exe" [2010-05-26 46456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-12-15 5513216]
"nwiz"="nwiz.exe" [2004-12-15 1490944]
"AGRSMMSG"="AGRSMMSG.exe" [2004-04-13 88363]
"VirusScan Online"="c:\program files\McAfee.com\VSO\mcvsshld.exe" [2005-08-10 163840]
"OASClnt"="c:\program files\McAfee.com\VSO\oasclnt.exe" [2005-08-11 53248]
"MCUpdateExe"="c:\progra~1\mcafee.com\agent\mcupdate.exe" [2006-01-11 212992]
"MCAgentExe"="c:\progra~1\mcafee.com\agent\McAgent.exe" [2005-09-22 303104]
"ChangeICON"="c:\windows\SPMSMON.EXE" [2003-02-11 61440]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2009-10-06 198160]
"IconixOEAddOn"="c:\program files\Iconix\OEAddOn\OEdmn_6.exe" [2010-03-06 342872]
"SoftwareHelper"="c:\documents and settings\monrond\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe" [2008-12-09 368224]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2004-12-15 86016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-02-15 417792]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-05-06 2815192]
"eorezo"="c:\program files\EoRezo\eorezo.exe" [2010-04-12 667648]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\monrond\Menu D‚marrer\Programmes\D‚marrage\
GigaTribe.lnk - c:\program files\GigaTribe\gigatribe.exe [2010-5-29 4425728]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^InterVideo WinCinema Manager.lnk]
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\InterVideo WinCinema Manager.lnk

[HKLM\~\startupfolder\C:^Documents and Settings^monrond^Menu Démarrer^Programmes^Démarrage^Notification de cadeaux MSN.lnk]
backup=c:\windows\pss\Notification de cadeaux MSN.lnkStartup
path=c:\documents and settings\monrond\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2007-05-15 15:12 484904 ----a-w- c:\program files\Fichiers communs\LightScribe\LightScribeControlPanel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2008-08-14 15:11 565008 ----a-w- c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2008-08-14 15:15 2407184 ----a-w- c:\program files\Logitech\QuickCam\Quickcam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 02:34 1695232 ------w- c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Fichiers communs\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ORAHSSSessionManager]
2007-12-12 07:50 107248 ----a-w- c:\program files\OrangeHSS\SessionManager\SessionManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raccourci vers la page des propriétés de High Definition Audio]
2004-03-17 15:10 61952 ----a-w- c:\windows\system32\Hdaudpropshortcut.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2008-10-13 17:36 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2006-11-03 08:59 204288 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"FirewallDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\mmc.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\GigaTribe\\gigatribe.exe"=

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [06/07/2008 18:21 164048]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [20/12/2009 17:15 13360]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [06/07/2008 18:21 19024]
R2 IconixService;Iconix Update Service;c:\program files\Fichiers communs\Iconix\IconixService.exe [25/11/2009 21:36 283992]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [20/12/2009 17:15 69168]
R3 cmudax;C-Media High Definition Audio Interface;c:\windows\system32\drivers\cmudax.sys [01/10/2004 15:58 1272000]
S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [30/01/2010 18:36 135664]
S3 8a9213c6-acad-4724-8aa9-437fe9040b8b;8a9213c6-acad-4724-8aa9-437fe9040b8b; [x]
S3 PsShutdownSvc;PsShutdown;c:\windows\system32\PSSDNSVC.EXE [20/12/2004 12:18 65536]
S3 SBRE;SBRE;c:\windows\system32\drivers\sbredrv.sys [18/06/2009 15:48 92464]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-05-15 15:08 452136 ----a-w- c:\program files\Fichiers communs\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'

2010-02-24 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-30 16:36]

2010-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-30 16:36]
.
.
------- Examen supplémentaire -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uStart Page = hxxp://y.lo.st
uInternet Settings,ProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: ajouter cette page à vos favoris Orange - c:\docume~1\monrond\LOCALS~1\Temp\cceC6.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
IE: traduire la page - c:\docume~1\monrond\LOCALS~1\Temp\cceC4.html
IE: traduire le texte sélectionné - c:\docume~1\monrond\LOCALS~1\Temp\cceC5.html
FF - ProfilePath - c:\documents and settings\monrond\Application Data\Mozilla\Firefox\Profiles\9zk5l6ay.default\
FF - prefs.js: browser.startup.homepage - hxxp://y.lo.st
FF - component: c:\program files\real\realplayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- PARAMETRES FIREFOX ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - ORPHELINS SUPPRIMES - - - -

AddRemove-QUAD AntiSpyware - c:\program files\QUAD Utilities\QUAD AntiSpyware\uninst.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-05 14:59
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...


c:\docume~1\monrond\LOCALS~1\Temp\lucene-afeadff14962e9e392387acc6544656f-commit.lock 0 bytes

Scan terminé avec succès
Fichiers cachés: 1

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-1162443610-1418249584-1127549859-1006\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(560)
c:\windows\system32\sirenacm.dll

- - - - - - - > 'explorer.exe'(7728)
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\program files\Iconix\OEAddOn\OEldr_7.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\program files\Fichiers communs\Ahead\Lib\NeroSearchBar.dll
c:\program files\Fichiers communs\Ahead\Lib\MFC71U.DLL
c:\program files\Fichiers communs\Ahead\Lib\BCGCBPRO860un71.dll
c:\windows\system32\eappprxy.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\progra~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
c:\program files\Fichiers communs\LightScribe\LSSrvc.exe
c:\program files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
c:\program files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\progra~1\mcafee.com\agent\mctskshd.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\windows\System32\snmp.exe
c:\program files\Windows Media Player\WMPNetwk.exe
c:\program files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
c:\windows\AGRSMMSG.exe
c:\program files\mcafee.com\agent\mcagent.exe
c:\windows\system32\RUNDLL32.EXE
c:\program files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
c:\program files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
c:\program files\Uniblue\RegistryBooster\registrybooster.exe
c:\program files\Internet Explorer\IEXPLORE.EXE
c:\program files\Internet Explorer\IEXPLORE.EXE
.
**************************************************************************
.
Heure de fin: 2010-06-05 15:07:33 - La machine a redémarré
ComboFix-quarantined-files.txt 2010-06-05 13:07

Avant-CF: 44 523 753 472 octets libres
Après-CF: 44 382 244 864 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect

Current=1 Default=1 Failed=0 LastKnownGood=5 Sets=1,2,3,4,5
- - End Of File - - DE147560D48B441BD8798BED038E2E41

Autres pages sur : pages internet ouvrent seules douee info merci

a c 296 8 Sécurité
5 Juin 2010 17:33:06

Bonjour,

  • Télécharge Ad-Remover (de C_XX) sur ton Bureau.
  • Déconnecte-toi et ferme toutes applications en cours.
  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
  • Choisis Nettoyer puis valide.
  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS