dogty
-
Compteur de contenus
8 -
Inscription
-
Dernière visite
dogty's Achievements
Junior Member (3/12)
0
Réputation sur la communauté
-
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
merci je n'ai plus aucun problem je remercie bruce lee de m'avoir aider merci bcp bcp bcp -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
Merci beaucoup pour avoir intervenu. j'ai remarké qu'il n y a plus 2 fois le prosesseur iexplore.exe encore merci!! --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 20:33:08 05/11/2006 + Résultat de l'analyse: C:\VundoFix Backups\hjsuyuhq.exe.bad -> Adware.Searchcolor : Nettoyé. C:\VundoFix Backups\hptfetme.exe.bad -> Adware.Searchcolor : Nettoyé. C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe -> Downloader.Agent.awf : Nettoyé. C:\Program Files\iolo\System Mechanic Professional 6\delay.exe -> Downloader.Agent.awf : Nettoyé. C:\System Volume Information\_restore{B8AE83F1-B9B4-4910-98A8-BAA18D0ABF79}\RP24\A0020701.exe -> Downloader.Agent.awf : Nettoyé. C:\Documents and Settings\Andre\Cookies\andre@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Brice\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Brice\Cookies\brice@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.12:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Bluestreak : Erreur lors du nettoyage. C:\Documents and Settings\Andre\Cookies\andre@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.30:C:\Documents and Settings\Andre\Application Data\Mozilla\Firefox\Profiles\nk8ov687.default\cookies.txt -> TrackingCookie.Estat : Nettoyé. C:\Documents and Settings\Andre\Cookies\andre@estat[1].txt -> TrackingCookie.Estat : Nettoyé. C:\Documents and Settings\Brice\Cookies\brice@estat[1].txt -> TrackingCookie.Estat : Nettoyé. :mozilla.43:C:\Documents and Settings\Andre\Application Data\Mozilla\Firefox\Profiles\nk8ov687.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé. C:\Documents and Settings\Andre\Cookies\andre@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé. C:\Documents and Settings\Brice\Cookies\brice@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.10:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Smartadserver : Erreur lors du nettoyage. :mozilla.11:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Smartadserver : Erreur lors du nettoyage. :mozilla.9:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Smartadserver : Erreur lors du nettoyage. C:\Documents and Settings\Andre\Cookies\[email protected][1].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Brice\Cookies\[email protected][2].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Brice\Cookies\brice@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé. :mozilla.6:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Weborama : Erreur lors du nettoyage. :mozilla.7:C:\Program Files\iolo\System Mechanic 6\Undo\Manual\{2A962236-2BE4-4E2B-BC87-F659519A0F6D}\{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt/{90315A20-76AC-4B86-84F8-0FE4B48FD102}.txt -> TrackingCookie.Weborama : Erreur lors du nettoyage. C:\Documents and Settings\Andre\Cookies\andre@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Brice\Cookies\brice@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Brice\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Nettoyé. Fin du rapport Logfile of HijackThis v1.99.1 Scan saved at 20:37:42, on 05/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\S24EvMon.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\SYSTEM32\HPZipm12.exe C:\WINDOWS\system32\RegSrvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\1XConfig.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\System32\alg.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Brice\Desktop\scanner.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [sMSystemAnalyzer] "C:\Program Files\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {5D8844F9-1CB8-11D2-A0A0-00600859EB9F} (PatchCtl Class) - file://C:\Program Files\EA SPORTS\FIFA 2004\update.1.1\patchx2.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1162728068941 O16 - DPF: {8C09CA2F-E2FF-4BBB-ACD5-9AFCDC9FC16C} (PGameASPX.PGameControl) - http://powlin.no-ip.org:81/PGameASPX.CAB O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll O20 - Winlogon Notify: Sebring - C:\WINDOWS\system32\LgNotify.dll O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\SYSTEM32\HPZipm12.exe O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
up! please je sai je ne sui pa le seul mais jen en peu plus cette ordi c un ordi d'en treprise -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
bon je pense que je vais formater car tous ces trucs ne fonctionnent pas merci quand meme! -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
aucune sugestion? -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
merci de me rassurer Logfile of HijackThis v1.99.1 Scan saved at 00:13:48, on 04/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\1XConfig.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Brice\Desktop\scanner.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {74B1BDBA-F89B-896D-41D1-0467F1B41A34} - C:\WINDOWS\system32\gzvmcqc.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {A49AD78A-A7AD-4368-8086-1E63FE6A0BD5} - C:\WINDOWS\system32\hgday.dll (file missing) O2 - BHO: (no name) - {E0E154FC-FA08-45E2-9059-CBABB5AA0397} - (no file) O4 - HKLM\..\Run: [PRONoMgr.exe] "C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe" O4 - HKLM\..\Run: [ioloDelayModule] "C:\Program Files\iolo\System Mechanic Professional 6\delay.exe" O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [sMSystemAnalyzer] "C:\Program Files\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe" O4 - HKCU\..\Run: [Jump bags] "C:\DOCUME~1\Brice\APPLIC~1\PLUSSE~1\Road regs.exe" O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {5D8844F9-1CB8-11D2-A0A0-00600859EB9F} (PatchCtl Class) - file://C:\Program Files\EA SPORTS\FIFA 2004\update.1.1\patchx2.cab O16 - DPF: {8C09CA2F-E2FF-4BBB-ACD5-9AFCDC9FC16C} (PGameASPX.PGameControl) - http://powlin.no-ip.org:81/PGameASPX.CAB O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll O20 - Winlogon Notify: Sebring - C:\WINDOWS\system32\LgNotify.dll O20 - Winlogon Notify: winfkx32 - winfkx32.dll (file missing) O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\SYSTEM32\HPZipm12.exe O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe -
Pouvez vous analyser mon rapport hijackThis
dogty a répondu à un(e) sujet de dogty dans Analyses et éradication malwares
ne vous en faites je ne poste que dans different site de forum ne vous en faites pas! sinon merci d'avoir repodu très vite ca me rassure car je craque VundoFix V6.2.6 Checking Java version... Java version is 1.5.0.6 Scan started at 21:52:41 27/10/2006 Listing files found while scanning.... C:\WINDOWS\system32\blnqovhk.dll C:\WINDOWS\system32\gzvmcqc.dll C:\WINDOWS\system32\hgday.dll C:\WINDOWS\system32\yadgh.ini C:\WINDOWS\system32\yadgh.bak1 C:\WINDOWS\system32\yadgh.bak2 C:\WINDOWS\system32\yadgh.ini2 C:\WINDOWS\system32\iesdjqss.dll C:\WINDOWS\system32\ljtkoyax.dll C:\WINDOWS\system32\oeqjbrlh.dll C:\WINDOWS\system32\ohmimeid.dll C:\WINDOWS\system32\txiripdw.dll C:\WINDOWS\system32\yomizdh.dll C:\WINDOWS\system32\hjsuyuhq.exe C:\WINDOWS\system32\hptfetme.exe C:\Program Files\Common Files\{4C572522-0639-1033-0128-050203200021}\services.dll C:\WINDOWS\system32\hgday.dll C:\WINDOWS\system32\yadgh.ini C:\WINDOWS\system32\yadgh.bak1 C:\WINDOWS\system32\yadgh.bak2 C:\WINDOWS\system32\yadgh.ini2 C:\WINDOWS\system32\yadgh.ini C:\WINDOWS\system32\yadgh.bak1 C:\WINDOWS\system32\yadgh.bak2 C:\WINDOWS\system32\yadgh.ini2 Beginning removal... Attempting to delete C:\WINDOWS\system32\blnqovhk.dll C:\WINDOWS\system32\blnqovhk.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\gzvmcqc.dll C:\WINDOWS\system32\gzvmcqc.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\hgday.dll C:\WINDOWS\system32\hgday.dll Could not be deleted. Attempting to delete C:\WINDOWS\system32\yadgh.ini C:\WINDOWS\system32\yadgh.ini Has been deleted! Attempting to delete C:\WINDOWS\system32\yadgh.bak1 C:\WINDOWS\system32\yadgh.bak1 Has been deleted! Attempting to delete C:\WINDOWS\system32\yadgh.bak2 C:\WINDOWS\system32\yadgh.bak2 Has been deleted! Attempting to delete C:\WINDOWS\system32\yadgh.ini2 C:\WINDOWS\system32\yadgh.ini2 Has been deleted! Attempting to delete C:\WINDOWS\system32\iesdjqss.dll C:\WINDOWS\system32\iesdjqss.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\ljtkoyax.dll C:\WINDOWS\system32\ljtkoyax.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\oeqjbrlh.dll C:\WINDOWS\system32\oeqjbrlh.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\ohmimeid.dll C:\WINDOWS\system32\ohmimeid.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\txiripdw.dll C:\WINDOWS\system32\txiripdw.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\yomizdh.dll C:\WINDOWS\system32\yomizdh.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\hjsuyuhq.exe C:\WINDOWS\system32\hjsuyuhq.exe Has been deleted! Attempting to delete C:\WINDOWS\system32\hptfetme.exe C:\WINDOWS\system32\hptfetme.exe Has been deleted! Attempting to delete C:\Program Files\Common Files\{4C572522-0639-1033-0128-050203200021}\services.dll C:\Program Files\Common Files\{4C572522-0639-1033-0128-050203200021}\services.dll Has been deleted! Attempting to delete C:\WINDOWS\system32\hgday.dll C:\WINDOWS\system32\hgday.dll Could not be deleted. Performing Repairs to the registry. Done! Beginning removal... Attempting to delete C:\WINDOWS\system32\hgday.dll C:\WINDOWS\system32\hgday.dll Has been deleted! Performing Repairs to the registry. Done! VundoFix V6.2.6 Checking Java version... Java version is 1.5.0.6 Scan started at 13:55:33 03/11/2006 Listing files found while scanning.... No infected files were found. merci de soccuper de moi j'espere que ca continuera car je sais que ce sujet est tres rependu -
Pouvez vous analyser mon rapport hijackThis
dogty a posté un sujet dans Analyses et éradication malwares
Bonjour je sais que je suis infécté mais après diverses forums postés dans différents sites on m'a souvent laissé mes messages sans réponses peut-être que vous pouriez m'aider merci beaucoup Logfile of HijackThis v1.99.1 Scan saved at 13:44:55, on 03/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\S24EvMon.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\ZCfgSvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\1XConfig.exe C:\WINDOWS\SYSTEM32\HPZipm12.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\WINDOWS\system32\RegSrvc.exe C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Brice\Desktop\scanner.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {74B1BDBA-F89B-896D-41D1-0467F1B41A34} - C:\WINDOWS\system32\gzvmcqc.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {A49AD78A-A7AD-4368-8086-1E63FE6A0BD5} - C:\WINDOWS\system32\hgday.dll (file missing) O2 - BHO: (no name) - {E0E154FC-FA08-45E2-9059-CBABB5AA0397} - (no file) O4 - HKLM\..\Run: [PRONoMgr.exe] "C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe" O4 - HKLM\..\Run: [yomizdh.dll] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\yomizdh.dll,aaodhgd O4 - HKLM\..\Run: [ioloDelayModule] "C:\Program Files\iolo\System Mechanic Professional 6\delay.exe" O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [sMSystemAnalyzer] "C:\Program Files\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe" O4 - HKCU\..\Run: [Jump bags] "C:\DOCUME~1\Brice\APPLIC~1\PLUSSE~1\Road regs.exe" O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab O16 - DPF: {5D8844F9-1CB8-11D2-A0A0-00600859EB9F} (PatchCtl Class) - file://C:\Program Files\EA SPORTS\FIFA 2004\update.1.1\patchx2.cab O16 - DPF: {8C09CA2F-E2FF-4BBB-ACD5-9AFCDC9FC16C} (PGameASPX.PGameControl) - http://powlin.no-ip.org:81/PGameASPX.CAB O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll O20 - Winlogon Notify: Sebring - C:\WINDOWS\system32\LgNotify.dll O20 - Winlogon Notify: winfkx32 - winfkx32.dll (file missing) O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\SYSTEM32\HPZipm12.exe O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe