Interprétation d'un rapport HijackThis

Le
lolotte64 Hors ligne
Bonjour tout le monde, depuis quelques jours j'ai des petits soucis lorsque je démarre Internet.
Ma page est dirigée vers www.searchqu.com/406 et je n'arrive pas à la modifier même en allant dans outils => options => general => page d'accueil : www.google.fr/firefox. Bref ça revient toujours!

J'ai donc fais des recherches sur Internet et j'ai trouvé ça : http://www.commentcamarche.net/faq/991-une-solution-pour-about-blank

C'est un site très interessant, mais ne m'y connaissant pas vraiment en virus, cheval de troie et informatique en général je me retrouve bloqué à la seconde étape qui est de supprimer les lignes payantes sur le logiciel HijackThis!

Je vous envoie donc mon log en éspérant que vous me disiez les lignes que je dois supprimer:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:15:50, on 26/05/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:Program FilesLaunch Managerdsiwmis.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesOpenERP AllInOneServerserviceOpenERPServerService.exe
C:Program FilesOpenERP AllInOneServeropenerp-server.exe
C:Program FilesOpenERP AllInOneWebpython25PythonService.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesOpenERP AllInOneWebpython25python.exe
C:Program FileseMachineseMachines UpdaterUpdaterService.exe
C:WINDOWSsystem32hkcmd.exe
C:WINDOWSsystem32igfxpers.exe
C:Program FilesIntelIntel Matrix Storage Manageriaanotif.exe
C:WINDOWSRTHDCPL.EXE
C:Program FilesLaunch ManagerLManager.exe
C:WINDOWSsnuvcdsm.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:PROGRA~1ALWILS~1Avast5avastUI.exe
C:Program FilesFichiers communsJavaJava Updatejusched.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMessengermsmsgs.exe
C:Program Filescacaowebcacaoweb.exe
C:Program FilesMcAfee Security Scan2.0.181SSScheduler.exe
C:WINDOWSsystem32igfxsrvc.exe
C:Program FilesIntelIntel Matrix Storage ManagerIAANTMon.exe
C:Program FilesOpenOffice.org 3programsoffice.exe
C:Program FilesOpenOffice.org 3programsoffice.bin
C:Program FilesLaunch ManagerLMworker.exe
C:WINDOWSsystem32wbemunsecapp.exe
C:Program FilesSpybot - Search & DestroyTeaTimer.exe
C:Program FilesMalwarebytes' Anti-Malwarembam.exe
C:Program FilesTrend MicroHijackThisHijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://homepage.emachines.com/rdr.aspx?b¬EW&l0c&m=em350&r=0xph0810n025l0474wuj5r46n2r952
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.searchqu.com/406
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://homepage.emachines.com/rdr.aspx?b¬EW&l0c&m=em350&r=0xph0810n025l0474wuj5r46n2r952
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://homepage.emachines.com/rdr.aspx?b¬EW&l0c&m=em350&r=0xph0810n025l0474wuj5r46n2r952
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:Program FilesFichiers communsAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAlwil SoftwareAvast5aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesFichiers communsMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:PROGRA~1WI371A~1ToolBarsearchqudtx.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program FilesGoogleGoogleToolbarNotifier5.7.6406.1642swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program FilesJavajre6binjp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAlwil SoftwareAvast5aswWebRepIE.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:PROGRA~1WI371A~1ToolBarsearchqudtx.dll (file missing)
O3 - Toolbar: (no name) - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM..Run: [IgfxTray] C:WINDOWSsystem32igfxtray.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
O4 - HKLM..Run: [Persistence] C:WINDOWSsystem32igfxpers.exe
O4 - HKLM..Run: [IAAnotif] C:Program FilesIntelIntel Matrix Storage Manageriaanotif.exe
O4 - HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM..Run: [AzMixerSel] C:Program FilesRealtekAudioDriversAzMixerSel.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program FilesAdobeReader 9.0ReaderReader_sl.exe"
O4 - HKLM..Run: [IMJPMIG8.1] "C:WINDOWSIMEimjp8_1IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM..Run: [MSPY2002] C:WINDOWSsystem32IMEPINTLGNTImScInst.exe /SYNC
O4 - HKLM..Run: [PHIME2002ASync] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /SYNC
O4 - HKLM..Run: [PHIME2002A] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /IMEName
O4 - HKLM..Run: [LManager] C:Program FilesLaunch ManagerLManager.exe
O4 - HKLM..Run: [PLFSetL] C:WINDOWSPLFSetL.exe
O4 - HKLM..Run: [snp2uvc] rundll32.exe C:WINDOWSsystem32csnp2uvc.dll,ResetCIDS
O4 - HKLM..Run: [snuvcdsm] C:WINDOWSsnuvcdsm.exe
O4 - HKLM..Run: [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [avast5] C:PROGRA~1ALWILS~1Avast5avastUI.exe /nogui
O4 - HKLM..Run: [Adobe ARM] "C:Program FilesFichiers communsAdobeARM1.0AdobeARM.exe"
O4 - HKLM..Run: [SunJavaUpdateSched] "C:Program FilesFichiers communsJavaJava Updatejusched.exe"
O4 - HKLM..Run: [!AVG Anti-Spyware] "C:Program FilesGrisoftAVG Anti-Spyware 7.5avgas.exe" /minimized
O4 - HKLM..Run: [MSConfig] C:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /auto
O4 - HKLM..RunOnce: [removeSearchqudatamngr] cmd.exe /c RD /S /Q "C:Program FilesWindows iLivid Toolbar"
O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [cacaoweb] "C:Program Filescacaowebcacaoweb.exe" -noplayer
O4 - HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUSS-1-5-21-2188283067-2320958936-2409960447-1007..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe (User 'openpgsvc')
O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')
O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki - res://C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O20 - AppInit_DLLs:
O23 - Service: avast! Antivirus - AVAST Software - C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:Program FilesGrisoftAVG Anti-Spyware 7.5guard.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:Program FilesLaunch Managerdsiwmis.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:Program FilesGoogleUpdateGoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:Program FilesGoogleUpdateGoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:Program FilesIntelIntel Matrix Storage ManagerIAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:Program FilesJavajre6binjqs.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:Program FilesMcAfee Security Scan2.0.181McCHSvc.exe
O23 - Service: OpenERP Server (openerp-service) - Unknown owner - C:Program FilesOpenERP AllInOneServerserviceOpenERPServerService.exe
O23 - Service: OpenERP Web (openerp-web) - Unknown owner - C:Program FilesOpenERP AllInOneWebpython25PythonService.exe
O23 - Service: PostgreSQL4OpenERP (pgsql-8.3) - PostgreSQL Global Development Group - C:Program FilesOpenERP AllInOnePostgreSQLbinpg_ctl.exe
O23 - Service: Updater Service - Acer Group - C:Program FileseMachineseMachines UpdaterUpdaterService.exe

--
End of file - 10499 bytes

Merci d'avance
Vidéos High-Tech et Jeu Vidéo
Téléchargements
Vos réponses
Gagnez chaque mois un abonnement Premium avec GNT : Inscrivez-vous !
Publicité
Poster une réponse
Anonyme