Impossible de naviguer avec Firefox et IE

squateman · Newbie Inscrit le: 22 Mar 2008 Message(s): 2

Bonjour.
Ma connexion PC est ok, mais il m'est totalement impossible de naviguer via Firefox ni via Internet Explorer.
Néanmoins, la navigation est ok avec Opéra.

J'ai donc suivis votre "tramme" notamment via Hijackthis et je vous soumets mes résultat, espérant que des solutions seront trouvées par votre équipe.

Merci bien.

[quote= Bilan du scan HijackThis]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:57:07, on 22/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\C\System32\smss.exe
C:\C\system32\csrss.exe
C:\C\system32\winlogon.exe
C:\C\system32\services.exe
C:\C\system32\lsass.exe
C:\C\system32\svchost.exe
C:\C\system32\svchost.exe
C:\C\System32\svchost.exe
C:\C\system32\svchost.exe
C:\C\system32\svchost.exe
C:\C\system32\svchost.exe
C:\C\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\C\system32\CTsvcCDA.exe
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\C\system32\nvsvc32.exe
C:\C\system32\PSIService.exe
C:\C\system32\svchost.exe
C:\C\System32\alg.exe
C:\C\system32\wscntfy.exe
C:\C\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\C\vVX1000.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\C\system32\rundll32.exe
C:\C\system32\Rundll32.exe
C:\C\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\3M\PSNLite\PsnLite.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\PROGRA~1\3M\PSNLite\PSNGive.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\C\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\C\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://french.icrfast.com/index.php?rvs=hompag
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MI1933~1\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {F501C2AB-834A-4B9D-A86B-A1EADA760B00} - (no file)
O3 - Toolbar: (no name) - {AF3E8912-FEC2-48BE-BB02-0A450F9D06B5} - (no file)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\C\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [VX1000] C:\C\vVX1000.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [786c0ba1] rundll32.exe "C:\C\system32\mstoough.dll",b
O4 - HKLM\..\Run: [BM7b5f383d] Rundll32.exe "C:\C\system32\jpcfohpf.dll",s
O4 - HKCU\..\Run: [CTFMON.EXE] C:\C\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\C\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\C\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\C\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\C\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Startup: VirtuaGirl HD.LNK = C:\Program Files\vghd\vghd.exe
O4 - Global Startup: Post-it® Software Notes Lite.lnk = C:\Program Files\3M\PSNLite\PsnLite.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\C\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\C\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection_2_0_4_12.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{45905494-B339-4464-AD64-7C361169B71C}: NameServer = 212.27.53.252,212.27.54.252
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MI1933~1\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O20 - Winlogon Notify: yaywwxx - C:\C\
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\C\system32\CTsvcCDA.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\C\system32\nvsvc32.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\C\system32\PSIService.exe

--
End of file - 10196 bytes[/quote]

Angeldark · Equipe Sécurité Inscrit le: 23 Mai 2007 Message(s): 121

Bonjour,

Désactive tes protections résidentes (antivirus, Spybot...) !

Télécharge Combofix (sUBs) sur ton Bureau.
Double clique sur combofix.exe afin de le lancer.
Tape sur la touche 1 (Yes) pour démarrer le scan.
Lorsque le scan sera complété, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

squateman · Newbie Inscrit le: 22 Mar 2008 Message(s): 2

ComboFix 08-03-22.3 - Squateman 2008-03-23 15:13:50.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.353 [GMT 1:00]
Endroit: C:\Documents and Settings\Squateman\Bureau\ComboFix.exe

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.
-- Other TimeOuts --
Findstr -MIF:/ "\\TTC\.pdb InsertAdvertisement"
GREP -i "C:\\Program Files\\[^\\]*\\[^\\]*$"
VFind -tf -s282624 "C:\Program Files\????????*[0-9].dll"
CF2941.exe /c " VFind.exe -ltf -s-1000000 -d+2007-12-23 "C:\Program Files\*" >progfile.dat"
VFind.exe -ltf -s-1000000 -d+2007-12-23 "C:\Program Files\*"
CF2941.exe /c " dir /a/s/b C:\_desktop.ini C:\desktop_.ini C:\cnsmin* C:\_install.exe >DirRoot"

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\C\dat.txt
C:\C\pskt.ini
C:\C\search_res.txt
C:\C\system32\bclperjs.dll
C:\C\system32\bkamxybh.dll
C:\C\system32\dhhglfbs.dll
C:\C\system32\hbyxmakb.ini
C:\C\system32\hguootsm.ini
C:\C\system32\jpcfohpf.dll
C:\C\system32\mstoough.dll
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
C:\Documents and Settings\Squateman\Favoris\Error Cleaner.url
C:\Documents and Settings\Squateman\Favoris\Privacy Protector.url
C:\Documents and Settings\Squateman\Favoris\Spyware&Malware Protection.url

----- BITS: Possible infected sites -----

hxxp://onsafepro.com
hxxp://softworldnetwork.com
.
((((((((((((((((((((((((( Files Created from 2008-02-23 to 2008-03-23 )))))))))))))))))))))))))))))))
.

2008-03-22 18:56 . 2008-03-22 18:56 <REP> d-------- C:\Program Files\Trend Micro
2008-03-22 18:50 . 2008-03-22 18:50 <REP> d-------- C:\Program Files\Yahoo!
2008-03-22 18:50 . 2008-03-22 18:50 <REP> d-------- C:\Program Files\CCleaner
2008-03-20 21:08 . 2008-03-21 15:03 <REP> d-------- C:\Program Files\Norton Security Scan
2008-03-20 20:51 . 2008-03-20 20:51 <REP> d-------- C:\Program Files\Mozilla ActiveX Control v1.7.1
2008-03-20 12:59 . 2008-03-20 13:01 <REP> d-------- C:\Program Files\ZIP PASSWORD FINDER
2008-03-20 12:59 . 2000-05-16 10:40 83,968 --a------ C:\C\UnGins.exe
2008-03-12 19:56 . 2008-03-12 19:56 197 --a------ C:\C\system32\MRT.INI
2008-03-11 19:28 . 2004-08-05 13:00 400,896 --a------ C:\C\system32\msregsv.exe
2008-03-11 19:28 . 2008-03-19 11:52 12,800 --a------ C:\C\system32\c_19460.nls
2008-03-10 19:21 . 2008-03-23 05:19 69 --a------ C:\C\NeroDigital.ini
2008-03-10 17:11 . 2008-03-10 17:11 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\Nero
2008-03-10 16:54 . 2008-03-10 16:54 <REP> d-------- C:\Program Files\Nero
2008-03-10 16:54 . 2008-03-10 16:57 <REP> d-------- C:\Program Files\Fichiers communs\Nero
2008-03-10 16:54 . 2008-03-10 16:55 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Nero
2008-03-10 16:42 . 2008-03-12 21:04 319 --ahs---- C:\C\system32\ffhkj.ini
2008-03-10 03:48 . 2008-03-23 15:20 <REP> d-------- C:\Program Files\Fichiers communs\Blizzard Entertainment
2008-03-10 01:31 . 2008-03-10 01:31 <REP> d-------- C:\Program Files\mIRC
2008-03-10 01:31 . 2008-03-10 01:47 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\mIRC
2008-03-10 01:10 . 2008-03-10 01:10 <REP> d-------- C:\Program Files\xchat
2008-03-10 01:10 . 2008-03-22 19:20 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\X-Chat 2
2008-03-10 00:53 . 2008-03-10 00:53 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\Thunderbird
2008-03-10 00:52 . 2008-03-20 21:08 <REP> d-------- C:\Program Files\Mozilla Thunderbird
2008-03-08 17:19 . 2008-03-08 17:38 412 --a------ C:\C\wowCP.ini
2008-03-01 17:34 . 2008-03-11 03:59 <REP> d-------- C:\Program Files\Free Video Converter
2008-02-29 19:41 . 2008-02-29 19:41 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\GeoVid
2008-02-29 19:37 . 2008-02-29 19:37 <REP> d-------- C:\Program Files\GeoVid
2008-02-29 19:37 . 2008-02-29 19:37 <REP> d-------- C:\Program Files\Fichiers communs\GeoVid
2008-02-29 19:37 . 2008-02-29 19:37 <REP> d-------- C:\Documents and Settings\All Users\Application Data\GeoVid
2008-02-29 19:37 . 2004-08-18 15:00 1,712,128 --a------ C:\C\system32\gdiplus.dll
2008-02-29 19:37 . 2003-03-19 06:05 89,088 --a------ C:\C\system32\atl71.dll
2008-02-29 19:37 . 2007-06-28 18:55 77,824 --a------ C:\C\system32\xvid.ax
2008-02-29 19:37 . 2005-06-07 15:11 60,416 --a------ C:\C\system32\dsetup.dll
2008-02-27 22:01 . 2008-03-23 15:52 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\skypePM
2008-02-27 22:01 . 2008-02-27 22:01 32 --a------ C:\Documents and Settings\All Users\Application Data\ezsid.dat
2008-02-27 21:59 . 2008-03-23 15:55 <REP> d-------- C:\Documents and Settings\Squateman\Application Data\Skype
2008-02-27 21:58 . 2008-02-27 21:58 <REP> d-------- C:\Program Files\Skype
2008-02-27 21:58 . 2008-02-27 21:58 <REP> d-------- C:\Program Files\Fichiers communs\Skype
2008-02-27 21:58 . 2008-02-27 21:58 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Skype
2008-02-25 13:17 . 2008-02-25 13:33 91,700 --a------ C:\C\system32\drivers\klin.dat
2008-02-25 13:17 . 2008-02-25 13:33 85,860 --a------ C:\C\system32\drivers\klick.dat
2008-02-25 13:16 . 2008-02-25 13:16 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-25 13:16 . 2008-03-23 15:32 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-25 13:16 . 2008-03-23 15:55 19,350,048 --ahs---- C:\C\system32\drivers\fidbox.dat
2008-02-25 13:16 . 2008-03-23 15:35 407,840 --ahs---- C:\C\system32\drivers\fidbox2.dat
2008-02-25 13:16 . 2008-03-23 15:19 263,996 --ahs---- C:\C\system32\drivers\fidbox.idx
2008-02-25 13:16 . 2008-03-23 15:19 42,296 --ahs---- C:\C\system32\drivers\fidbox2.idx
2008-02-25 13:15 . 2008-02-25 13:15 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-02-25 13:13 . 2008-02-25 13:13 121 --a------ C:\C\bdagent.INI
2008-02-24 14:20 . 2008-02-24 20:10 81,984 --a------ C:\C\system32\bdod.bin
2008-02-24 14:19 . 2008-02-25 13:13 <REP> d-------- C:\Program Files\Fichiers communs\BitDefender
2008-02-23 19:42 . 2008-02-23 19:42 <REP> d-------- C:\Program Files\Opera
2008-02-23 01:34 . 2008-02-27 18:05 23 --a------ C:\C\BlendSettings.ini

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-23 14:33 --------- d-----w C:\Documents and Settings\Squateman\Application Data\MSN Pictures Displayer
2008-03-23 04:22 --------- d-----w C:\Program Files\DivX
2008-03-22 17:44 --------- d-----w C:\Documents and Settings\Squateman\Application Data\temp
2008-03-22 17:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-03-22 17:22 --------- d-----w C:\Program Files\Runtime Software
2008-03-22 17:17 --------- d-----w C:\Program Files\Free Easy Burner
2008-03-22 17:14 --------- d-----w C:\Program Files\Winamp
2008-03-22 14:01 --------- d-----w C:\Documents and Settings\Squateman\Application Data\uTorrent
2008-03-21 21:24 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-03-21 17:45 --------- d-----w C:\Program Files\eMule
2008-03-19 12:01 --------- d-----w C:\Documents and Settings\Squateman\Application Data\Winamp
2008-03-18 07:12 385,024 ----a-w C:\C\system32\Uninstall Netlog Photo Tool.exe
2008-03-18 05:58 3,088 --sha-w C:\C\system32\KGyGaAvL.sys
2008-03-12 18:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-03-08 14:12 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-02 15:10 --------- d-----w C:\Program Files\Satsuki Decoder Pack
2008-02-28 02:01 --------- d-----w C:\Program Files\Windows Live
2008-02-21 02:05 524,288 ----a-w C:\C\system32\DivXsm.exe
2008-02-21 02:05 3,596,288 ----a-w C:\C\system32\qt-dx331.dll
2008-02-21 02:05 200,704 ----a-w C:\C\system32\ssldivx.dll
2008-02-21 02:05 1,044,480 ----a-w C:\C\system32\libdivx.dll
2008-02-21 02:04 823,296 ----a-w C:\C\system32\divx_xx0c.dll
2008-02-21 02:04 823,296 ----a-w C:\C\system32\divx_xx07.dll
2008-02-21 02:04 81,920 ----a-w C:\C\system32\dpl100.dll
2008-02-21 02:04 802,816 ----a-w C:\C\system32\divx_xx11.dll
2008-02-21 02:04 682,496 ----a-w C:\C\system32\DivX.dll
2008-02-21 02:04 593,920 ----a-w C:\C\system32\dpuGUI11.dll
2008-02-21 02:04 57,344 ----a-w C:\C\system32\dpv11.dll
2008-02-21 02:04 53,248 ----a-w C:\C\system32\dpuGUI10.dll
2008-02-21 02:04 344,064 ----a-w C:\C\system32\dpus11.dll
2008-02-21 02:04 294,912 ----a-w C:\C\system32\dpu11.dll
2008-02-21 02:04 294,912 ----a-w C:\C\system32\dpu10.dll
2008-02-21 02:04 196,608 ----a-w C:\C\system32\dtu100.dll
2008-02-21 02:03 156,992 ----a-w C:\C\system32\DivXCodecVersionChecker.exe
2008-02-21 02:03 12,288 ----a-w C:\C\system32\DivXWMPExtType.dll
2008-02-17 22:47 --------- d-----w C:\Program Files\Sony
2008-02-17 22:46 --------- d-----w C:\Program Files\Sony Setup
2008-02-12 18:28 --------- d-----w C:\Program Files\Alwil Software
2008-02-11 14:15 --------- d-----w C:\Program Files\Google
2008-02-02 15:04 --------- d-----w C:\Program Files\EA SPORTS
2008-02-02 12:57 --------- d-----w C:\Program Files\vghd
2008-02-02 12:36 --------- d-----w C:\Documents and Settings\Squateman\Application Data\vghd
2008-02-01 10:17 587,264 ----a-w C:\C\WLXPGSS.SCR
2008-01-27 19:37 --------- d-----w C:\Program Files\Picasa2
2008-01-27 17:09 --------- d-----w C:\Documents and Settings\Squateman\Application Data\Sony
2008-01-27 17:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony
2008-01-27 11:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\Creative
2008-01-26 22:27 --------- d-----w C:\Program Files\Creative
2008-01-26 14:50 --------- d-----w C:\Program Files\Netlog
2008-01-25 22:04 --------- d-----w C:\Documents and Settings\Squateman\Application Data\ma-config.com
2008-01-20 18:13 107,888 ----a-w C:\C\system32\CmdLineExt.dll
2008-01-06 14:58 446,976 ----a-w C:\C\system32\ShellMPD.dll
2008-01-04 21:58 129,784 ------w C:\C\system32\pxafs.dll
2008-01-04 21:58 120,056 ------w C:\C\system32\pxcpyi64.exe
2008-01-04 21:58 118,520 ------w C:\C\system32\pxinsi64.exe
.

Angeldark · Equipe Sécurité Inscrit le: 23 Mai 2007 Message(s): 121

On continue notre ménage Smile

Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.

Une fois l'installation et la mise à jour effectuée, redémarre en mode sans échec.

Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
Afin de lancer la recherche, clique sur "Rechercher".
Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
-- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
-- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.

AIDE : Tuto en images sur MBAM