Bonjour,
J'ai un de mes PC qui ne peux plus se connecter à internet (IE marche une fois puis erreur 403 ou rien du tout ^^). Celui ci est également très très lent. J'ai fais un scan avec spybot qui m'avait trouvé smitfraud.c mais le résultat est identique.
Voici un log Hijackthis :
Code :
- Logfile of HijackThis v1.99.1
- Scan saved at 16:37:32, on 09/11/2006
- Platform: Windows XP SP2 (WinNT 5.01.2600)
- MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
- Running processes:
- C:\WINDOWS\System32\smss.exe
- C:\WINDOWS\system32\winlogon.exe
- C:\WINDOWS\system32\services.exe
- C:\WINDOWS\system32\lsass.exe
- C:\WINDOWS\system32\Ati2evxx.exe
- C:\WINDOWS\system32\svchost.exe
- C:\WINDOWS\System32\svchost.exe
- C:\Program Files\Sygate\SPF\smc.exe
- C:\WINDOWS\system32\spoolsv.exe
- C:\WINDOWS\system32\Ati2evxx.exe
- C:\WINDOWS\Explorer.EXE
- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
- C:\WINDOWS\system32\svchost.exe
- C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
- C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
- C:\Program Files\Softwin\BitDefender10\bdagent.exe
- C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe
- C:\WINDOWS\system32\svchost.exe
- C:\WINDOWS\system32\ctfmon.exe
- C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
- C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe
- C:\Program Files\PeerGuardian2\pg2.exe
- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
- C:\Program Files\Softwin\BitDefender10\bdmcon.exe
- C:\WINDOWS\system32\svchost.exe
- C:\WINDOWS\system32\svchost.exe
- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
- C:\DOCUME~1\VINCENT\LOCALS~1\Temp\Répertoire temporaire 4 pour hijackthis.zip\HijackThis.exe
- C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
- C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
- C:\Program Files\Softwin\BitDefender10\vsserv.exe
- R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:
- R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.boursorama.com/
- R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?Li [...] R}&ar=home
- R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
- O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
- O3 - Toolbar: Copernic Desktop Search - {C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic Desktop Search\CopernicDesktopSearchIntegration974.dll
- O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing)
- O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
- O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
- O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe"
- O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
- O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
- O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
- O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
- O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /tray
- O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe
- O4 - Startup: BitDefender Antivirus v10.lnk = C:\Program Files\Softwin\BitDefender10\bdmcon.exe
- O4 - Startup: The Pub Cruncher.lnk = C:\PubCruncher\PubCruncher.exe
- O4 - Global Startup: Bluetooth Manager.lnk = ?
- O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
- O4 - Global Startup: officejet 6100.lnk = ?
- O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
- O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
- O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
- O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
- O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
- O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
- O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
- O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
- O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
- O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
- O16 - DPF: {08F04139-8DFC-11D2-80E9-006008B066EE} (ConfigChkr Class) - https://certification.hsbc.fr/vscnfchk.cab
- O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
- O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab
- O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
- O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
- O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
- O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
- O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
- O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
- O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
- O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
- O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
- O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
- O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
- O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender10\vsserv.exe" /service (file missing)
- O23 - Service: Windows Defender Service (WinDefend) - Unknown owner - C:\Program Files\Windows Defender\MsMpEng.exe (file missing)
- O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
|
J'ai BitDefender comme AV mais il ne détecte rien. J'ai essayé de redémarrer en mode sans échec mais explorer.exe s'enlève des process toutes les 10 secondes.
Merci d'avance pour votre aide.
