bidibullu
-
Compteur de contenus
45 -
Inscription
-
Dernière visite
Type de contenu
Profils
Forums
Blogs
Tout ce qui a été posté par bidibullu
-
ET VOILOU : HKLM\S-1-5-21-1606980848-651377827-839522115-1003\RemoteAccess\InternetProfile 05/07/2005 13:03 23 bytes Data mismatch between Windows API and raw hive data. HKLM\SOFTWARE\PSGuard.com\PSGuard\Settings* 13/06/2005 11:12 0 bytes Key name contains embedded nulls (*) HKLM\SOFTWARE\Zone Labs\ZoneAlarm\IncomingCount 14/04/2006 11:00 4 bytes Data mismatch between Windows API and raw hive data. HKLM\SOFTWARE\Zone Labs\ZoneAlarm\BlockCount 14/04/2006 11:00 4 bytes Data mismatch between Windows API and raw hive data. HKLM\SOFTWARE\Zone Labs\ZoneAlarm\HackCount 14/04/2006 11:00 4 bytes Data mismatch between Windows API and raw hive data. C:\$VAULT$.AVG\06280578.FIL 14/04/2006 11:18 1.46 KB Hidden from Windows API. C:\$VAULT$.AVG\06286328.FIL 14/04/2006 11:18 1.46 KB Hidden from Windows API. C:\$VAULT$.AVG\06291140.FIL 14/04/2006 11:18 1.46 KB Hidden from Windows API. C:\$VAULT$.AVG\06293078.FIL 14/04/2006 11:18 1.46 KB Hidden from Windows API. C:\$VAULT$.AVG\06295062.FIL 14/04/2006 11:18 1.46 KB Hidden from Windows API. C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\2638ECEAd01 14/04/2006 11:12 21.10 KB Hidden from Windows API. C:\Documents and Settings\DANIEL\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\580F181Fd01 14/04/2006 11:16 21.20 KB Hidden from Windows API. C:\Documents and Settings\DANIEL\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\99C491A3d01 14/04/2006 11:15 24.66 KB Hidden from Windows API. C:\Documents and Settings\DANIEL\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\A1EC4DD4d01 14/04/2006 11:16 23.96 KB Hidden from Windows API. C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\AE72B289d01 14/04/2006 11:12 23.96 KB Hidden from Windows API. C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\Cache\C31C27ECd01 14/04/2006 11:12 19.01 KB Hidden from Windows API. C:\Documents and Settings\daniel\Mes documents\Liliane\COMPTE RENDU.doc.shs 10/12/2005 22:13 108.50 KB Visible in Windows API, but not in MFT or directory index. C:\Recycled\Dc1.txt 14/04/2006 10:28 7.55 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115831.EXE 13/04/2006 09:55 1.00 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115832.EXE 13/04/2006 09:55 1.00 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115833.EXE 13/04/2006 09:55 1.00 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP479\A0115855.exe 13/04/2006 11:28 1.00 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115948.exe 13/04/2006 13:32 1.00 KB Visible in Windows API, but not in MFT or directory index. C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP486\A0116393.ini 13/04/2006 18:59 65 bytes Hidden from Windows API.
-
Alors la seule solution serait de reinstaller une bonne version de windows XP?
-
j ai essayé d'installer a nouveau le pack 2 et le message d erreur dit que la clé n est peut être pas valide.... que faire alors???
-
Re!! j ai fait le scan panda, en voici le rapport + un highjack Incident Statut Analyse Spyware:spyware/smitfraud No Désinfecté C:\WINDOWS\system32\wp.bmp Virus:W32/Sdbot.ftp Désinfecté C:\WINDOWS\system32\i Virus:W32/Sdbot.ftp Désinfecté C:\WINDOWS\system32\o Virus Eventuel. No Désinfecté C:\WINDOWS\system32\cnkdsk.exe Virus:Bck/Smedro.B Désinfecté C:\WINDOWS\system32\58725.exe Virus Eventuel. No Désinfecté C:\WINDOWS\Temp\adv.exe Dialer:Dialer.Gen No Désinfecté C:\WINDOWS\switchagreement.txt Adware:Adware/Adsmart No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\lewl[1].exe Virus Eventuel. No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\jnvutifcih[1].txt Outil indésirable:Application/KillApp.A No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\U1UFMX2X\mhciscyvfp[1].txt Outil indésirable:Application/KillApp.A No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\xtntqj[1].txt Adware:Adware/Adsmart No Désinfecté C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0P8FA5UP\lewl[1].exe Adware:Adware/PurityScan No Désinfecté C:\Documents and Settings\daniel\Mes documents\installation\start.INF Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\daniel\Cookies\daniel@bluestreak[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\daniel\Cookies\daniel@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt[] Virus:Trj/Downloader.AEU Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-687.inf Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-556.inf Dialer:Dialer.ABR No Désinfecté C:\Program Files\hijack this\backups\backup-20050719-114904-973.inf Virus Eventuel. No Désinfecté C:\tool4.exe Logfile of HijackThis v1.99.1 Scan saved at 10:30:47, on 14/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 86.64.145.141 84.103.237.141 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe effectivement, il y a tjs des pbs
-
ok merci pitcat... je vais tenter d'être patiente ms j ai peur que ce soit plutôt lié au fait que ce soit une version copiée...
-
pour les problemes des mises a jour, elles ne sont effectivement pas faites car depuis plus d'un an il m est impossible d'installer le pack2. J avais même commandé le CD d'installation mais rien à faire non plus!! Si quelqu un a un tuyau la dessus ce serait super car ça me pose de plus en plus de probleme pr installer des logiciels et avoir acces à ctns programmes.... je ne peux pas faire le scan panda "Browser not supported We're sorry. ActiveScan requires the browser Microsoft Internet Explorer 5.0 or later version."
-
je crois que tout est rentré ds l ordre!! je poste qd même un rapport au cas ou... Logfile of HijackThis v1.99.1 Scan saved at 19:13:58, on 13/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 84.103.237.145 86.64.145.145 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe merci à tous
-
bonjour tout le monde!! ça fait plus d'un an qu'il m est impossible d'installer les mises a jours windows car le pack 2 ne peut pas s installer!!J avais même commander le CD d'installation mais rien à faire non plus... Et maintenant ça devient vraiment gênant car j ai de plus en plus de pbs pr installer des logiciels à cause de ça!!! Si quelqu un sait comment m aider ce serait super!!! merci d avance!
-
ah non highjack refuse de la fixer ...il me dit d utiliser LSPFix est ce une bonne idée?
-
oki ça marche LA bidibullu te dit merci!!
-
ça tombe bien j 'utilise deja spy bot le scan n a decouvert qu un espion , suis pas sure que ça change gd chose ms je renvoie qd meme le rapport Logfile of HijackThis v1.99.1 Scan saved at 16:46:22, on 13/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\iTunes\iTunes.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 84.103.237.145 86.64.145.145 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
-
Re euh non... je sais pas ce que c' que: O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing et O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone et oui c bien neuf telecom... Logfile of HijackThis v1.99.1 Scan saved at 16:23:24, on 13/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 84.103.237.145 86.64.145.145 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe tchou...
-
salut j ai supprimé O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) ainsi que "bitsec.exe dans windows32. Par contre, il n 'est pas possible de le desactiver ds "services msc car la fonction "supprimer" n' est pas disponible. voici les 2 rapports demandés: Virus Total _______________________________________________ Scan results File: cnkdsk.exe Date: 04/13/2006 15:25:38 (CET) ---- AntiVir 6.34.0.24/20060413 found [TR/Proxy.Small.BO.18] Avast 4.6.695.0/20060403 found nothing AVG 386/20060412 found nothing Avira 6.34.0.56/20060413 found [TR/Proxy.Small.BO.18] BitDefender 7.2/20060413 found [Trojan.Proxy.Small.BO] CAT-QuickHeal 8.00/20060413 found [(Suspicious) - DNAScan] ClamAV devel-20060202/20060413 found nothing DrWeb 4.33/20060413 found [Trojan.Proxy.793] eTrust-InoculateIT 23.71.128/20060412 found nothing eTrust-Vet 12.4.2162/20060413 found [Win32/Cosiam!generic] Ewido 3.5/20060413 found nothing Fortinet 2.71.0.0/20060412 found [suspicious] F-Prot 3.16c/20060412 found [could be infected with an unknown virus] Ikarus 0.2.59.0/20060413 found nothing Kaspersky 4.0.2.24/20060413 found [Trojan-Proxy.Win32.Small.bo] McAfee 4739/20060412 found nothing NOD32v2 1.1487/20060413 found [a variant of Win32/TrojanProxy.Daemonize] Norman 5.90.15/20060413 found [W32/Malware] Panda 9.0.0.4/20060413 found [suspicious file] Sophos 4.04.0/20060413 found nothing Symantec 8.0/20060413 found [Trojan.Jupillites] TheHacker 5.9.7.128/20060411 found nothing UNA 1.83/20060412 found nothing VBA32 3.10.5/20060412 found [Trojan-Proxy.Win32.Small.bo] 100% File: cnkdsk.exe Status: INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database) MD5 1f6d10a1400f9cfc741722db747fe071 Packers detected: FSG Scanner results AntiVir Found Trojan/Proxy.Small.BO.18 ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found Trojan.Proxy.Small.BO ClamAV Found nothing Dr.Web Found Trojan.Proxy.793 F-Prot Antivirus Found unknown virus (probable variant) Fortinet Found nothing Kaspersky Anti-Virus Found Trojan-Proxy.Win32.Small.bo NOD32 Found a variant of Win32/TrojanProxy.Daemonize Norman Virus Control Found Sandbox: W32/Malware; [ General information ] * File might be compressed. * Decompressing FSG. * File length: 12608 bytes. [ Changes to filesystem ] * Deletes file C:\WINDOWS\SYSTEM32\cnkdsk.exe. * Creates file C:\WINDOWS\SYSTEM32\cnkdsk.exe. [ Changes to registry ] * Sets value "ATI_VER"="Cs7ˆ" in key "HKLM\Software\Microsoft". [ Network services ] * Opens URL: http://jupitersatellites.biz/logrc4/access.php. [ Security issues ] * Possible backdoor functionality [uNKNOWN] port 3599. [ Process/window information ] * Creates a mutex bin29a-1024. * Will automatically restart after boot (I'll be back...). UNA Found nothing VirusBuster Found nothing VBA32 Found Trojan-Proxy.Win32.Small.bo
-
Ca y est j 'ai suivi toutes les instructions.! apparemment ça va mieux mais il semble que ctns virus ont resistés... voici les rapports: Logfile of HijackThis v1.99.1 Scan saved at 14:40:23, on 13/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\WINDOWS\System32\cnkdsk.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [cnkdsk] C:\WINDOWS\System32\cnkdsk.exe O4 - HKLM\..\RunServices: [cnkdsk] C:\WINDOWS\System32\cnkdsk.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [cnkdsk] C:\WINDOWS\System32\cnkdsk.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1144923053405 O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 86.64.145.140 84.103.237.140 O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: BitSec(bitsec) (BitSec) - Unknown owner - C:\WINDOWS\system32\bitsec.exe (file missing) O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 14:34:53, 13/04/2006 + Somme de contrôle: 5BF420A4 + Résultats du scan: HKLM\SOFTWARE\PSGuard.com -> Adware.PSGuard : Erreur durant le nettoyage HKLM\SOFTWARE\PSGuard.com\PSGuard -> Adware.PSGuard : Erreur durant le nettoyage HKLM\SOFTWARE\PSGuard.com\PSGuard\Settings -> Adware.PSGuard : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.27\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.26\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.31\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.28\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.29\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.34\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.30\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.32\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.33\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.35\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.39\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.41\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.37\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.36\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.38\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.47\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.40\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.45\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.42\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.44\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.49\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.50\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.48\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.51\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.43\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.46\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.52\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.58\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.54\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.53\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.55\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.56\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.57\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.59\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.60\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.62\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.61\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.64\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.65\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.63\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.70\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.69\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.66\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.67\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.68\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.71\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.72\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.73\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.74\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.2\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.3\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.4\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.5\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.6\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.7\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.8\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.9\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.10\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.11\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.12\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.13\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.14\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.15\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.16\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.17\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.18\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.19\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.20\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.21\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.22\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.23\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.24\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\Downloaded Program Files\CONFLICT.25\MirarSetup.exe -> Adware.SaveNow : Nettoyer et sauvegarder C:\WINDOWS\mmm1.exe -> Logger.Delf.ig : Nettoyer et sauvegarder C:\WINDOWS\mmm4.exe -> Logger.Delf.ig : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\dytis[1].txt -> Trojan.Sinowal.d : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\GH6BG5ST\nlgwfcz[1].txt -> Hijacker.StartPage.adi : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\U1UFMX2X\qwtdvqmdcs[1].txt -> Downloader.Tiny.al : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\U1UFMX2X\owatqjgqw[1].txt -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\qizvdltu[1].txt -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\mrmolvffhi[1].txt -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\gsaczjt[1].txt -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\isnmwtpm[1].txt -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\A5Y7S9EB\rfqtp[1].txt -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0P8FA5UP\zuopthm[1].txt -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0P8FA5UP\sniohiscy[1].txt -> Downloader.Tiny.ap : Nettoyer et sauvegarder :mozilla.22:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.23:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.24:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.25:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.26:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.27:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.28:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.35:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.36:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.37:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.44:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.45:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.47:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.51:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.52:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.53:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.54:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.55:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.56:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.61:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.62:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.63:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.82:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.83:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.136:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.137:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder :mozilla.143:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.144:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.145:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.146:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder :mozilla.164:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.165:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder :mozilla.167:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.168:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.169:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.170:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.171:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.172:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.173:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.174:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.175:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.176:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.177:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.178:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.179:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.180:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.181:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.182:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.183:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.184:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.185:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.186:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.187:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.188:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.189:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.190:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.192:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.193:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.202:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder :mozilla.216:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Ru4 : Nettoyer et sauvegarder :mozilla.239:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.269:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.300:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyer et sauvegarder :mozilla.359:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.360:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.368:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Paycounter : Nettoyer et sauvegarder :mozilla.374:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.376:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.377:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.378:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.379:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.380:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder :mozilla.395:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.396:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.397:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.398:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.399:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.418:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Spylog : Nettoyer et sauvegarder :mozilla.421:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.422:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.423:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.424:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.425:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.426:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.431:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder :mozilla.432:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder :mozilla.455:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.456:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.457:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.458:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.459:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.460:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.461:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.462:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.463:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.464:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.470:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder :mozilla.489:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.490:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.491:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.505:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder :mozilla.506:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder :mozilla.514:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.515:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.516:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.526:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.527:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.528:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.529:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.556:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.557:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.558:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.561:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.562:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.563:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.564:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.565:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.566:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder :mozilla.569:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Masterstats : Nettoyer et sauvegarder :mozilla.610:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.611:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.612:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.613:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.614:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.691:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.692:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.693:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.694:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.695:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.696:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.697:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.698:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.699:C:\Documents and Settings\daniel\Application Data\Mozilla\Firefox\Profiles\shzvabcg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\BrowserObjects -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Packages -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\HKCU -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\HKCU\RunOnce -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\HKLM -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\HKLM\RunOnce -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\StartMenuAllUsers -> Adware.PSGuard : Nettoyer et sauvegarder C:\Documents and Settings\daniel\Application Data\PSGuard.com\PSGuard\Checkpoints\Autorun\StartMenuCurrentUser -> Adware.PSGuard : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP477\A0113613.exe -> Downloader.Tiny.al : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP477\A0113614.exe -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP477\A0113615.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113644.exe -> Downloader.Tiny.al : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113645.exe -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113646.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113657.exe -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113658.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115827.exe -> Hijacker.StartPage.adi : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115828.EXE -> Trojan.Sinowal.d : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113675.EXE -> Downloader.Tiny.al : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113677.exe -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113678.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115829.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113694.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113695.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113696.EXE -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0113697.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115830.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114715.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114716.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0114720.EXE -> Downloader.Tiny.ap : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115834.exe -> Hijacker.Small.kr : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115723.DLL -> Logger.Goldun.iy : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115725.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115726.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115727.EXE -> Downloader.Tiny.ap : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115734.sys -> Logger.Haxspy.w : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115843.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP478\A0115844.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP479\A0115853.exe -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP479\A0115854.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115874.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\System Volume Information\_restore{7D3B2099-39E5-4163-BA07-75409A8DC60E}\RP480\A0115875.EXE -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\Recycled\Dc36.tmp -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\Recycled\Dc37.tmp -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\Recycled\Dc38.tmp -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\tool2.exe -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder C:\winstall.exe -> Not-A-Virus.Hoax.Win32.Renos.bw : Nettoyer et sauvegarder ::Fin du rapport voilou!!!encore merci
-
Apres avoir suivi les conseils de regis56 (que je remercie) j'envoie mon rapport highjack this!! Logfile of HijackThis v1.99.1 Scan saved at 11:11:07, on 13/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\logonui.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\system32\bitsec.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\hijack this\HijackThis.exe C:\WINDOWS\System32\wuauclt.exe C:\WINDOWS\System32\wuauclt.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local., R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [MS Windows Local Directory] MSWLD32.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\RunServices: [MS Windows Local Directory] MSWLD32.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [MS Windows Local Directory] MSWLD32.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O20 - Winlogon Notify: directpt - directpt.dll (file missing) O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe a bientot, et merci
-
bonjour à tous! besoin d'aide pour me débarrasser d' un virus!! voici le rapport highjack This... merci... Logfile of HijackThis v1.99.1 Scan saved at 20:09:02, on 12/04/2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\bitsec.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\wuauclt.exe c:\tool2.exe C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgwb.dat C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [MS Windows Local Directory] MSWLD32.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\RunServices: [MS Windows Local Directory] MSWLD32.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKCU\..\Run: [MS Windows Local Directory] MSWLD32.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 84.103.237.140 86.64.145.140 O20 - Winlogon Notify: directpt - C:\WINDOWS\SYSTEM32\directpt.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
-
voici le rapport hijackthis.Vous allez certainement remarquer que les mises a jour de windows ne sont pas effectuées.Il est malheureusement impossible d installaer le pack 2 windows xp meme ac le cd que j avais commandé!!!! voilou merci d avance Logfile of HijackThis v1.99.1 Scan saved at 14:26:20, on 26/09/2005 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: IE PopUp-Killer ; Neikeisoft - {49E0E0F0-5C30-11D4-945D-000000000003} - C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUp.dll O2 - BHO: AuroraHandlerObj Class - {4AA870AC-8427-42a4-B92E-ECD956197489} - C:\WINDOWS\AuroraHandler.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVGCtrl] C:\Program Files\AVPersonal\AVGNT.EXE /min O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Ashampoo PopUpBlocker] C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUpKiller.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1102179001718 O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://212.157.152.82/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE O23 - Service: Service Bonjour (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe "mettre ce rapport a la suite des posts suivant http://forum.zebulon.fr/index.php?showtopic=75687"
-
bonjour tout le monde je viens demander de l aide pour un nouveau probleme de virus :"wininet;dll". a chaque fois que je tente de lancer une application un message apparait : " wininet introuvable" et aucune application ne fonctionne. attend une reponse impatiemment car g besoin de ctns logiciels pour mon travail. merki
-
le célèbre antivirus gold
bidibullu a répondu à un(e) sujet de bidibullu dans Analyses et éradication malwares
salut à tous!!! ça y est j ai effectué ttes les procédures demandées!! Logiquement mon rapport hijackthis devrait être plus sain.... du moins je l'espère! Logfile of HijackThis v1.99.1 Scan saved at 12:28:22, on 19/07/2005 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AVPersonal\AVGUARD.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\AVPersonal\AVWUPSRV.EXE C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe C:\Program Files\AVPersonal\AVGNT.EXE C:\Program Files\MSN Messenger\msnmsgr.exe C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUpKiller.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\hijack this\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search-paga.com/10040/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: IE PopUp-Killer ; Neikeisoft - {49E0E0F0-5C30-11D4-945D-000000000003} - C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUp.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\Run: [AVGCtrl] C:\Program Files\AVPersonal\AVGNT.EXE /min O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Ashampoo PopUpBlocker] C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUpKiller.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1102179001718 O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://212.157.152.82/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe voila. -
hi!! comme un grand nombre de gens j ai la chance d être infectée par antivirus gold et je ne sais pas comment faire pour m en débarasser dc si vous pouviez m'aider , ce serait formidable!!! Voici le rapport d'erreur Logfile of HijackThis v1.99.1 Scan saved at 20:20:54, on 17/07/2005 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\inetm\services.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\System32\hookdump.exe C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUpKiller.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\eMule\emule.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\daniel\Bureau\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search-paga.com/10040/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F3 - REG:win.ini: run=C:\WINDOWS\inetm\services.exe O1 - Hosts: 255.255.255.255 ar.atwola.com atdmt.com avp.ch avp.com avp.ru awaps.net ca.com dispatch.mcafee.com download.mcafee.com download.microsoft.com downloads.microsoft.com engine.awaps.net f-secure.com ftp.f-secure.com ftp.sophos.com go.microsoft.com liveupdate.symantec.com mast.mcafee.com mcafee.com msdn.microsoft.com my-etrust.com nai.com networkassociates.com office.microsoft.com phx.corporate-ir.net secure.nai.com securityresponse.symantec.com service1.symantec.com sophos.com spd.atdmt.com support.microsoft.com symantec.com update.symantec.com updates.symantec.com us.mcafee.com vil.nai.com viruslist.ru windowsupdate.microsoft.com www.avp.ch www.avp.com www.avp.ru www.awaps.net www.ca.com www.f-secure.com www.kaspersky.ru www.mcafee.com www.my-etrust.com www.nai.com www.networkassociates.com www.sophos.com www.symantec.com www.trendmicro.com www.viruslist.com www.viruslist.ru www3.ca.com O2 - BHO: Loader Class - {2E246FAE-8420-11D9-870D-000C2917DE7F} - (no file) O2 - BHO: IE PopUp-Killer ; Neikeisoft - {49E0E0F0-5C30-11D4-945D-000000000003} - C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUp.dll O2 - BHO: (no name) - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - (no file) O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {7F6828CA-9E42-462C-BC60-418C8144012C} - (no file) O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll O4 - HKLM\..\Run: [xp_system] C:\WINDOWS\inetm\services.exe O4 - HKLM\..\Run: [La Poste] C:\PROGRA~1\LaPoste\laposte.exe O4 - HKLM\..\Run: [security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe" O4 - HKLM\..\Run: [PSGuard] C:\Program Files\PSGuard\PSGuard.exe O4 - HKLM\..\Run: [Microsoft standard protector] C:\WINDOWS\winsocks5.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe O4 - HKLM\..\RunServices: [winguard] wingrd32.exe O4 - HKCU\..\Run: [xp_system] C:\WINDOWS\inetm\services.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [intel system tool] C:\WINDOWS\System32\hookdump.exe O4 - HKCU\..\Run: [Ashampoo PopUpBlocker] C:\PROGRA~1\ASHAMPOO\ASHAMP~1\PopUpKiller.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Microsoft AntiSpyware helper - {24CF0EC8-FF78-44AD-B350-078573149505} - (no file) (HKCU) O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {24CF0EC8-FF78-44AD-B350-078573149505} - (no file) (HKCU) O9 - Extra button: Microsoft AntiSpyware helper - {858E56E4-E919-4ACA-BFAB-30CC551F7A84} - (no file) (HKCU) O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {858E56E4-E919-4ACA-BFAB-30CC551F7A84} - (no file) (HKCU) O9 - Extra button: Microsoft AntiSpyware helper - {947DB039-E14D-4A75-BCF4-A548CC124DAC} - (no file) (HKCU) O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {947DB039-E14D-4A75-BCF4-A548CC124DAC} - (no file) (HKCU) O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM) O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab O16 - DPF: {24311111-1111-1121-1111-111191113457} - file://c:\eied_s7.cab O16 - DPF: {33331111-1111-1111-1111-611111193457} - file://c:\ex.cab O16 - DPF: {33331111-1111-1111-1111-611111193458} - file://c:\ex.cab O16 - DPF: {33331111-1111-1111-1111-622221193458} - file://c:\ex.cab O16 - DPF: {43331111-1111-1111-1111-611111195622} - file://c:\ex.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1102179001718 O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://212.157.152.82/AxisCamControl.ocx O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O16 - DPF: {C6760A07-A574-4705-B113-7856315922C3} - http://akamai.downloadv3.com/binaries/IA/s...svc32_FR_XP.cab O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/contents/setup...p1/imloader.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{EF510DFF-9D3F-490B-8212-AC511A2BB76F}: NameServer = 80.118.196.36 80.118.192.100 O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} - C:\WINDOWS\System32\vbsys2.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CDAC11BA.EXE O23 - Service: AntiVir Update Temp (TmpUpSrv) - Unknown owner - C:\DOCUME~1\DANIEL\LOCALS~1\TEMP\_VWUPSRV.EXE (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe merci d'avance