Aller au contenu

puduk007

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    37

  • Inscription

  • Dernière visite

puduk007's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. puduk007
    Bonjour! J'ai un problème avec un répertoire qui contient des vidéos (et que des vidéos). Quand je l'ouvre, il bug systématiquement au bout de quelques secondes... Surement pas tres grave, mais très chiant! Il faut se dépecher d'ouvrir la vidéo avant que le répertoire bug! J'ai fait la procédure pré-Hijackthis, puis j'ai fait un scan dont voici le rapport: Logfile of HijackThis v1.99.1 Scan saved at 16:30:24, on 10/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\WINDOWS\System32\FTRTSVC.exe C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\eHome\ehmsas.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe C:\Program Files\Fichiers communs\SmartCom\RTEGPRS.exe C:\Program Files\Microsoft Office\Office\OSA.EXE C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Microsoft Office\Office\FINDFAST.EXE C:\Program Files\OpenOffice.org 2.3\program\soffice.exe C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN C:\PROGRA~1\Wanadoo\ComComp.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Wanadoo\Watch.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Hijackthis\HijackThis.exe C:\Program Files\Messenger\msmsgs.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [WellPhone DirectSync - ScheduleSync] C:\PROGRA~1\WELLPH~1\SCHEDU~1.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [uVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [RTEGPRS] "C:\Program Files\Fichiers communs\SmartCom\RTEGPRS.exe" tray O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe O4 - Global Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?86b3b9072581451a94a2eb963422bc13 O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?86b3b9072581451a94a2eb963422bc13 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Golden Riviera Poker - {85BFB6E0-96F9-4424-8819-1D67E9F78D33} - C:\Microgaming\Poker\goldenrivieraMPP\MPPoker.exe (file missing) O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photobox.fr/assets/aurigma/ImageUploader4.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (WebHandler Class) - http://activex.microgaming.com/DLhelper/ve...n6/dlhelper.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{C0D46ED0-B4A8-416A-8806-63634F5CA8F2}: NameServer = 80.10.246.1 81.253.149.10 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe merci!
  2. puduk007
    Je découvre tout juste ton message. Je lance le grand nettoyage, à tout à l'heure!
  3. puduk007
    Excuse! Bel esprit de déduction : puduk007=steflora. Je fais un switch entre les 2 pseudos sur tous mes comptes internet car je crois que puduk007, pseudo de ma jeunesse, n'était vraiment pas attirant ^^ Mais les réflexes sont encore présents et à la connection j'ai du mettre puduk007... C'est malin en plus, la déconnection ne fonctionne pas Pour le site, il s'agit de sexcams.ch, aparemment ce serait donc une vraie popup, sauf qu'elle est vraiment harcelante, je précise je n'ai jamais mis les pieds sur sexcam.ch... Et je me demande bien d'où ça vient... La "popup" est quand même spéciale car il n'y a pas moyen de la fermer (à part par ctrl alt suppr). Voci le rapport Panda, j'ai bien peur qu'il n'apporte rien de neuf... Dialer:Dialer.FKM No Désinfecté C:\PROGRAM FILES\REAL\REALJBOX.EXE Dialer:dialer.xd No Désinfecté C:\WINDOWS\switchagreement.txt Dialer:dialer.mr No Désinfecté C:\PROGRAM FILES\DSB Dialer:dialer.b No Désinfecté HKEY_CLASSES_ROOT\Interface\{8F0A06F6-DF4D-4D54-B8CA-E8EEDBAE6DDB} Spyware:Cookie/Tribalfusion No Désinfecté C:\WINDOWS\Cookies\system@tribalfusion[1].txt Spyware:Cookie/Doubleclick No Désinfecté C:\WINDOWS\Cookies\system@doubleclick[1].txt Spyware:Cookie/Adtech No Désinfecté C:\WINDOWS\Cookies\system@adtech[2].txt Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Cookies\system@serving-sys[2].txt Spyware:Cookie/Valueclick No Désinfecté C:\WINDOWS\Cookies\system@valueclick[2].txt Spyware:Cookie/Comclick No Désinfecté C:\WINDOWS\Cookies\system@fl01.ct2.comclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\WINDOWS\Cookies\system@xiti[1].txt Spyware:Cookie/Advertising No Désinfecté C:\WINDOWS\Cookies\system@advertising[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\WINDOWS\Cookies\system@bluestreak[1].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\WINDOWS\Cookies\system@tradedoubler[2].txt Spyware:Cookie/Zedo No Désinfecté C:\WINDOWS\Cookies\system@zedo[2].txt Spyware:Cookie/Mediaplex No Désinfecté C:\WINDOWS\Cookies\system@mediaplex[1].txt Spyware:Cookie/Atlas DMT No Désinfecté C:\WINDOWS\Cookies\system@atdmt[2].txt Spyware:Cookie/Weborama No Désinfecté C:\WINDOWS\Cookies\system@weborama[1].txt Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\DelC1F4.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del5382.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del6042.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del6112.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del2054.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del7075.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del7095.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del71D5.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del7200.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del9393.TMP Dialer:Dialer.B No Désinfecté C:\WINDOWS\TEMP\IAUninstall\uninstall.exe Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del21D0.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del321.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\DelB261.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\DelC050.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del1061.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del3332.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del7325.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del8102.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del91C1.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del9294.TMP Dialer:Dialer.AZP No Désinfecté C:\WINDOWS\TEMP\Del3A0.TMP Dialer:Dialer.ETT No Désinfecté C:\WINDOWS\Downloaded Program Files\CONFLICT.1\1068766.exe Dialer:Dialer.ETT No Désinfecté C:\WINDOWS\Downloaded Program Files\1068766.exe Spyware:Cookie/Tribalfusion No Désinfecté C:\WINDOWS\Cookies\system@tribalfusion[1].txt Spyware:Cookie/Doubleclick No Désinfecté C:\WINDOWS\Cookies\system@doubleclick[1].txt Spyware:Cookie/Adtech No Désinfecté C:\WINDOWS\Cookies\system@adtech[2].txt Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Cookies\system@serving-sys[2].txt Spyware:Cookie/Falkag No Désinfecté C:\WINDOWS\Cookies\system@as1.falkag[1].txt Spyware:Cookie/Valueclick No Désinfecté C:\WINDOWS\Cookies\system@valueclick[2].txt Spyware:Cookie/Comclick No Désinfecté C:\WINDOWS\Cookies\system@fl01.ct2.comclick[1].txt Spyware:Cookie/Xiti No Désinfecté C:\WINDOWS\Cookies\system@xiti[1].txt Spyware:Cookie/Advertising No Désinfecté C:\WINDOWS\Cookies\system@advertising[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\WINDOWS\Cookies\system@bluestreak[1].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\WINDOWS\Cookies\system@tradedoubler[2].txt Spyware:Cookie/Zedo No Désinfecté C:\WINDOWS\Cookies\system@zedo[2].txt Spyware:Cookie/Mediaplex No Désinfecté C:\WINDOWS\Cookies\system@mediaplex[1].txt Spyware:Cookie/Atlas DMT No Désinfecté C:\WINDOWS\Cookies\system@atdmt[2].txt Spyware:Cookie/Weborama No Désinfecté C:\WINDOWS\Cookies\system@weborama[1].txt Dialer:Dialer.Gen No Désinfecté C:\WINDOWS\switchagreement.txt Adware:Adware/Lop No Désinfecté C:\Mes documents\Valentin\sécurité\lopremover.zip[lopremover.exe] Adware:Adware/Lop No Désinfecté C:\Mes documents\Valentin\sécurité\lopremover\lopremover.exe Virus:Trj/Downloader.GUM Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224302-836.dll Adware:Adware/Lop No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224302-714.dll Dialer:Dialer.ZE No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224307-108.inf Adware:Adware/MediaTickets No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224309-251.inf Dialer:Dialer.ABR No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224309-544.inf Adware:Adware/PurityScan No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224309-520.inf Adware:Adware/MediaTickets No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224310-646.inf Adware:Adware/PurityScan No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224310-557.inf Adware:Adware/MediaTickets No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224311-189.inf Dialer:Dialer.ABR No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224312-822.inf Adware:Adware/PurityScan No Désinfecté C:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224312-841.inf Dialer:Dialer.B No Désinfecté C:\Mes documents\Valentin\sécurité\DialpassUninstall.exe Dialer:Dialer.FKM No Désinfecté C:\Program Files\Real\realjbox.exe Dialer:Dialer.FKM No Désinfecté C:\Program Files\DSB\dsb.exe
  4. puduk007
    Salut Charles ingals, merci de ton aide! Le scan est en cours et me trouve pas mal de spywares. Tiens! Et un virus... On verra bien. A part ça, je rectifie ce que j'avais dit. La saleté a vraiment tout d'une pop up puisque elle ne s'affiche en fait que quand je suis connecté... Je la trouve même dans l'historique d'IE. N'y a-t-il pas moyen d'interdire le site, avec le gestionnaires d'accès, ou quelque chose de semblable? J'ai re-téléchargé la toolbar google que je n'avais plus, mais j'ai l'impression qu'elle n'y peut rien... Je poste le rapport Panda dès que c'est fini!
  5. puduk007
    Bonjour ça faisait longtemps!! Mon PC a à peu près récupéré, peu à peu! Je peux même ouvrir les liens c'est génial! J'ai donc eu l'idée de faire le scan en ligne que vous m'aviez proposé, chez Kaspersky, ce qui m'était impossible auparavant.... Et là: surprise! Il me trouve quand même 229 objets suspects... je vous poste le rapport, je ne sais pas s'il faut tout dégager. Et au fait, il faut faire le nettoyage à la main?? Rapport: KASPERSKY ON-LINE SCANNER REPORT Thursday, February 23, 2006 2:49:47 PM Operating System: Microsoft Windows 98 SE Kaspersky On-line Scanner version: 5.0.78.0 Kaspersky Anti-Virus database last update: 23/02/2006 Kaspersky Anti-Virus database records: 178219 Scan Settings Scan using the following antivirus database extended Scan Archives true Scan Mail Bases true Scan Target My Computer a:\ c:\ d:\ e:\ Scan Statistics Total number of scanned objects 28749 Number of viruses found 43 Number of infected objects 403 Number of suspicious objects 99 Duration of the scan process 00:39:14 Infected Object Name Virus Name Last Action c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From maounde62@hotmail.com][Date Mon, 5 Apr 2004 17:29:57 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx Mail MS Outlook 5: suspicious - 6 skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "MS Inet Email Storage System" ][Date Fri, 9 Jan 2004 15:28:03 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "MS Inet Email Storage System" ][Date Fri, 9 Jan 2004 15:28:03 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "MS Network Message System" <>][Date Fri, 9 Jan 2004 16:01:39 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "MS Network Message System" <>][Date Fri, 9 Jan 2004 16:01:39 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From Service de distribution du courrier ][Date Sun, 28 Mar 2004 13:32:48 +0200]/UNNAMED/UNNAMED/[From lulu.tercinier@wanadoo.fr][Date Sun, 28 Mar 2004 13:33:49 +0200]/my_details.pif Infected: Email-Worm.Win32.NetSky.d skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From Service de distribution du courrier ][Date Sun, 28 Mar 2004 13:32:48 +0200]/UNNAMED/UNNAMED Infected: Email-Worm.Win32.NetSky.d skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From Service de distribution du courrier ][Date Sun, 28 Mar 2004 13:32:48 +0200]/UNNAMED Infected: Email-Worm.Win32.NetSky.d skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From postmaster@justice.gouv.fr][Date Wed, 31 Mar 2004 12:07:26 +0200]/UNNAMED/UNNAMED/[From ][Date Wed, 31 Mar 2004 11:56:12 +0200]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From postmaster@justice.gouv.fr][Date Wed, 31 Mar 2004 12:07:26 +0200]/UNNAMED/UNNAMED/[From ][Date Wed, 31 Mar 2004 11:56:12 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From postmaster@justice.gouv.fr][Date Wed, 31 Mar 2004 12:07:26 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From postmaster@justice.gouv.fr][Date Wed, 31 Mar 2004 12:07:26 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From ebenlevi@sea38.org][Date Wed, 31 Mar 2004 12:05:04 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From ebenlevi@sea38.org][Date Wed, 31 Mar 2004 12:05:04 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From ebenlevi@sea38.org][Date Wed, 31 Mar 2004 12:05:04 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From lgu@u-paris10.fr][Date Wed, 31 Mar 2004 14:22:34 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From lgu@u-paris10.fr][Date Wed, 31 Mar 2004 14:22:34 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From lgu@u-paris10.fr][Date Wed, 31 Mar 2004 14:22:34 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From 23.3952a988.2d283c3e@aol.com][Date Thu, 1 Apr 2004 11:16:34 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From yann.aguila@conseil-etat.fr][Date Fri, 2 Apr 2004 15:04:16 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From yann.aguila@conseil-etat.fr][Date Fri, 2 Apr 2004 15:04:16 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From yann.aguila@conseil-etat.fr][Date Fri, 2 Apr 2004 15:04:16 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From 138.2ba40682.2d6fabe1@aol.com][Date Wed, 7 Apr 2004 10:13:15 +0200]/UNNAMED/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From 138.2ba40682.2d6fabe1@aol.com][Date Wed, 7 Apr 2004 10:13:15 +0200]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From 138.2ba40682.2d6fabe1@aol.com][Date Wed, 7 Apr 2004 10:13:15 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{270E6CA0-22A3-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx Mail MS Outlook 5: infected - 3, suspicious - 21 skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From jmc ][Date Tue, 6 Jan 2004 20:15:31 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From vosreponses ][Date Sat, 10 Jan 2004 19:27:24 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From piracy ][Date Sat, 8 Nov 2003 13:15:19 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From vosreponses ][Date Sun, 28 Dec 2003 16:21:43 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From vosreponses ][Date Sun, 28 Dec 2003 16:21:43 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From lflament ][Date Sun, 28 Dec 2003 19:46:50 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From lflament ][Date Sun, 28 Dec 2003 19:46:50 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx Mail MS Outlook 5: suspicious - 7 skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 07:49:09 +0100 (CET)]/UNNAMED/UNNAMED/[From kanabizzz ][Date Thu, 25 Dec 2003 07:48:48 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 07:49:09 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 07:49:09 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From tiph33 ][Date Thu, 25 Dec 2003 04:00:10 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From tiph33 ][Date Thu, 25 Dec 2003 04:00:10 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 08:28:28 +0100 (CET)]/UNNAMED/UNNAMED/[From 4saturne62 <4saturne62@aol.com>][Date Thu, 25 Dec 2003 08:28:06 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 08:28:28 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Thu, 25 Dec 2003 08:28:28 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 09:01:33 +0100 (CET)]/UNNAMED/UNNAMED/[From kanabizzz ][Date Tue, 30 Dec 2003 08:58:07 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 09:01:33 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 09:01:33 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:51:28 +0100 (CET)]/UNNAMED/UNNAMED/[From rech ][Date Tue, 30 Dec 2003 08:46:55 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:51:28 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:51:28 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:21:17 +0100 (CET)]/UNNAMED/UNNAMED/[From lulute ][Date Tue, 30 Dec 2003 08:16:48 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:21:17 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 30 Dec 2003 08:21:17 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From nauteagnes ][Date Fri, 19 Dec 2003 16:59:46 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From nauteagnes ][Date Fri, 19 Dec 2003 16:59:46 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From thebigboss76 ][Date Sat, 17 Jan 2004 13:48:25 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From thebigboss76 ][Date Sat, 17 Jan 2004 13:48:25 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From nauteagnes ][Date Fri, 7 Nov 2003 17:04:33 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From nauteagnes ][Date Fri, 7 Nov 2003 17:04:33 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From contact ][Date Tue, 11 Nov 2003 14:47:00 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From contact ][Date Tue, 11 Nov 2003 14:47:00 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From thebigboss76 ][Date Wed, 19 Nov 2003 17:05:52 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From thebigboss76 ][Date Wed, 19 Nov 2003 17:05:52 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fabrice ][Date Fri, 21 Nov 2003 20:41:02 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fabrice ][Date Fri, 21 Nov 2003 20:41:02 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 18 Nov 2003 14:36:50 +0100 (CET)]/UNNAMED/UNNAMED/[From info ][Date Tue, 18 Nov 2003 14:33:05 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 18 Nov 2003 14:36:50 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Tue, 18 Nov 2003 14:36:50 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:33:57 +0100 (CET)]/UNNAMED/UNNAMED/[From arf ][Date Mon, 17 Nov 2003 20:54:02 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:33:57 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:33:57 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:29:01 +0100 (CET)]/UNNAMED/UNNAMED/[From lulute ][Date Mon, 17 Nov 2003 20:19:55 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:29:01 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 21:29:01 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From chanbordeaux ][Date Mon, 17 Nov 2003 20:30:43 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From chanbordeaux ][Date Mon, 17 Nov 2003 20:30:43 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 20:30:39 +0100 (CET)]/UNNAMED/UNNAMED/[From bouletz ][Date Mon, 17 Nov 2003 20:29:57 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 20:30:39 +0100 (CET)]/UNNAMED/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From MAILER-DAEMON@wanadoo.fr (Mail Delivery System)][Date Mon, 17 Nov 2003 20:30:39 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From votrenom ][Date Sat, 29 Nov 2003 17:57:08 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From votrenom ][Date Sat, 29 Nov 2003 17:57:08 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From info ][Date Mon, 1 Dec 2003 14:55:31 +0100 (CET)]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fbarros ][Date Tue, 2 Dec 2003 19:58:36 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fbarros ][Date Tue, 2 Dec 2003 19:58:36 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From contact ][Date Wed, 3 Dec 2003 19:38:43 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From contact ][Date Wed, 3 Dec 2003 19:38:43 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From votrenom ][Date Fri, 5 Dec 2003 22:42:44 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From votrenom ][Date Fri, 5 Dec 2003 22:42:44 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fbarros ][Date Sun, 7 Dec 2003 19:11:16 +0100 (CET)]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From fbarros ][Date Sun, 7 Dec 2003 19:11:16 +0100 (CET)]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\WINDOWS\Application Data\Identities\{DA96CECA-234D-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx Mail MS Outlook 5: suspicious - 54 skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Tue, 01 Nov 2005 20:08:07 +0200]/UNNAMED/Health_and_knowledge.zip/Loader.exe Infected: Email-Worm.Win32.Bagle.ee skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Tue, 01 Nov 2005 20:08:07 +0200]/UNNAMED/Health_and_knowledge.zip Infected: Email-Worm.Win32.Bagle.ee skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Tue, 01 Nov 2005 20:08:07 +0200]/UNNAMED Infected: Email-Worm.Win32.Bagle.ee skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Thu, 15 Dec 2005 19:22:13 +0200]/UNNAMED/Daniel.zip/S3700020.exe Infected: Email-Worm.Win32.Bagle.ex skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Thu, 15 Dec 2005 19:22:13 +0200]/UNNAMED/Daniel.zip Infected: Email-Worm.Win32.Bagle.ex skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx/[From "Lucile.tellier" ][Date Thu, 15 Dec 2005 19:22:13 +0200]/UNNAMED Infected: Email-Worm.Win32.Bagle.ex skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Boîte de réception.dbx Mail MS Outlook 5: infected - 6 skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "Lucile.tellier" ][Date Thu, 22 Dec 2005 19:21:23 +0100]/UNNAMED/James.zip/DFC00232.exe Infected: Trojan-Downloader.Win32.Bagle.l skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "Lucile.tellier" ][Date Thu, 22 Dec 2005 19:21:23 +0100]/UNNAMED/James.zip Infected: Trojan-Downloader.Win32.Bagle.l skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx/[From "Lucile.tellier" ][Date Thu, 22 Dec 2005 19:21:23 +0100]/UNNAMED Infected: Trojan-Downloader.Win32.Bagle.l skipped c:\WINDOWS\Application Data\Identities\{C93F0E07-862E-11D8-9802-000C763EAFBC}\Microsoft\Outlook Express\Éléments supprimés.dbx Mail MS Outlook 5: infected - 3 skipped c:\WINDOWS\Downloaded Program Files\CONFLICT.1\1068766.exe Infected: Trojan.Win32.Dialer.la skipped c:\WINDOWS\Downloaded Program Files\1068766.exe Infected: Trojan.Win32.Dialer.la skipped c:\Mes documents\Mes documents (ancien ordi)\Lucile\autre\AGSetup0608.exe/fsg-ag.exe Infected: not-a-virus:AdWare.Win32.Gator.1050 skipped c:\Mes documents\Mes documents (ancien ordi)\Lucile\autre\AGSetup0608.exe ViseMan: infected - 1 skipped c:\Mes documents\Mes documents (ancien ordi)\Lucile\autre\AGSetup0608.exe ViseMan: infected - 1 skipped c:\Mes documents\Valentin\conneries\pratik magik.exe/email.exe Infected: not-virus:BadJoke.Win32.Enfin.a skipped c:\Mes documents\Valentin\conneries\pratik magik.exe RAR: infected - 1 skipped c:\Mes documents\Valentin\conneries\winner.zip/f0002.exe Infected: not-virus:BadJoke.Win32.FakeReboot.a skipped c:\Mes documents\Valentin\conneries\winner.zip ZIP: infected - 1 skipped c:\Mes documents\Valentin\sécurité\lopremover.zip/lopremover.exe Infected: not-a-virus:AdWare.Win32.Lop skipped c:\Mes documents\Valentin\sécurité\lopremover.zip ZIP: infected - 1 skipped c:\Mes documents\Valentin\sécurité\lopremover\lopremover.exe Infected: not-a-virus:AdWare.Win32.Lop skipped c:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224302-836.dll Infected: Trojan-Downloader.Win32.Small.aul skipped c:\Mes documents\Valentin\sécurité\Hijackthis\backups\backup-20050727-224302-714.dll Infected: Trojan-Downloader.Win32.Swizzor.bo skipped c:\Program Files\Norton AntiVirus\Quarantine\59EA4A9F Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\065019C2/[From rayla@bbtk-abvv.be][Date Wed, 5 Nov 2003 22:34:21 +0100 (CET)]/anti_virusdoc.pif Infected: Email-Worm.Win32.Sober.a skipped c:\Program Files\Norton AntiVirus\Quarantine\065019C2 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\065019C2 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\06C50140/[From inscrit@skynet.be][Date Thu, 6 Nov 2003 21:20:27 +0100 (CET)]/nacked.com Infected: Email-Worm.Win32.Sober.a skipped c:\Program Files\Norton AntiVirus\Quarantine\06C50140 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\06C50140 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07007500/[From COPPIN.Emmanuelle@wanadoo.fr][Date Fri, 7 Nov 2003 16:41:10 +0100 (CET)]/pic.scr Infected: Email-Worm.Win32.Sober.a skipped c:\Program Files\Norton AntiVirus\Quarantine\07007500 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07007500 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07316ACA Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\074810B1/[From monadresse@wanadoo.fr][Date Fri, 7 Nov 2003 21:28:34 +0100 (CET)]/pic.scr Infected: Email-Worm.Win32.Sober.a skipped c:\Program Files\Norton AntiVirus\Quarantine\074810B1 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\074810B1 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07520EA6/[From 3Dmarleen.mertens@videotron.ca][Date Fri, 7 Nov 2003 22:06:47 +0100 (CET)]/potency.pif Infected: Email-Worm.Win32.Sober.a skipped c:\Program Files\Norton AntiVirus\Quarantine\07520EA6 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07520EA6 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0796005A Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\07E81A01 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\07F541F2 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\081665CE Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\082637BC Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\08475B98 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\085E017F Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\08717D6A Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\0A511959 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\0A626B47 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2C5E054D/[From irene.ensel ][Date Wed,15 Oct 2003 21:17:30 PM]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\2C5E054D/[From irene.ensel ][Date Wed,15 Oct 2003 21:17:30 PM]/hardcore4free.scr Infected: Email-Worm.Win32.Lentin.m skipped c:\Program Files\Norton AntiVirus\Quarantine\2C5E054D Mail: infected - 1, suspicious - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\2C5E054D CryptFF: infected - 1, suspicious - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\2C720137/[From irene.ensel ][Date Wed,15 Oct 2003 22:21:24 PM]/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\2C720137/[From irene.ensel ][Date Wed,15 Oct 2003 22:21:24 PM]/zdenka.scr Infected: Email-Worm.Win32.Lentin.m skipped c:\Program Files\Norton AntiVirus\Quarantine\2C720137 Mail: infected - 1, suspicious - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\2C720137 CryptFF: infected - 1, suspicious - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\2C825325 Infected: Email-Worm.Win32.Lentin.m skipped c:\Program Files\Norton AntiVirus\Quarantine\2B9D06A8 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2BB10292 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2BD87A67 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2C1D6C1C Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2C2A140D Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2C8201AC Infected: Email-Worm.Win32.Klez.e skipped c:\Program Files\Norton AntiVirus\Quarantine\2CA64F85 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\3C863C9B Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\469501D0 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2A3A5AB1 Infected: IM-Flooder.Win32.VB.ac skipped c:\Program Files\Norton AntiVirus\Quarantine\28983F86 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\28D00949 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\28FA2B1A Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2AF840E9 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2B0812D8 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\2B560281 Infected: Email-Worm.Win32.Hybris.b skipped c:\Program Files\Norton AntiVirus\Quarantine\2BBF420E Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\3EF20533 Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\0AA5750A Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\0AC942E2 Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\0AD914D0 Infected: Email-Worm.Win32.Swen skipped c:\Program Files\Norton AntiVirus\Quarantine\489D2484 Infected: Email-Worm.Win32.Tanatos.b skipped c:\Program Files\Norton AntiVirus\Quarantine\48C1725C Infected: Email-Worm.Win32.Hybris.b skipped c:\Program Files\Norton AntiVirus\Quarantine\49332FDF Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\49714D9A Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\358F0F73 Infected: Email-Worm.Win32.Klez.h skipped c:\Program Files\Norton AntiVirus\Quarantine\35A06161 Infected: Email-Worm.Win32.Bagle.a skipped c:\Program Files\Norton AntiVirus\Quarantine\35A95F56 Infected: Email-Worm.Win32.Bagle.a skipped c:\Program Files\Norton AntiVirus\Quarantine\35B0334F Infected: Email-Worm.Win32.Bagle.a skipped c:\Program Files\Norton AntiVirus\Quarantine\35B60748 Infected: Email-Worm.Win32.Bagle.a skipped c:\Program Files\Norton AntiVirus\Quarantine\58632761/text.txt .pif Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\58632761 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\58632761 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF0683F/doc.txt .scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF0683F ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF0683F CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF73C38/ktghco.txt .scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF73C38 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0FF73C38 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\071E79F3 Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\072E4BE1/message.scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\072E4BE1 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\072E4BE1 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07351FDA/file.scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\07351FDA ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\07351FDA CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\073B73D3/doc.txt .exe Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\073B73D3 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\073B73D3 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\27F2273F Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\6EEE19FC Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\6EFB41ED Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E190A86 Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E2C0670/document.pif Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E2C0670 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0E2C0670 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0E360466/message.scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E360466 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0E360466 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0E432C57 Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E505449/file.scr Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\0E505449 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0E505449 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\069B6BE9/readme.cmd Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\069B6BE9 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\069B6BE9 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\39311F18/readme.pif Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\39311F18 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\39311F18 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\693C1027/[From lugeo@skynet.be][Date Sun, 8 Feb 2004 18:43:39 +0100]/document.zip/document.pif Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\693C1027/[From lugeo@skynet.be][Date Sun, 8 Feb 2004 18:43:39 +0100]/document.zip Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\693C1027 Mail: infected - 2 skipped c:\Program Files\Norton AntiVirus\Quarantine\693C1027 CryptFF: infected - 2 skipped c:\Program Files\Norton AntiVirus\Quarantine\694C6215/[From mkillerbeauch@compuserve.com][Date Sat, 10 Jan 2004 19:25:40 +0100]/document.exe Infected: Email-Worm.Win32.Mydoom.a skipped c:\Program Files\Norton AntiVirus\Quarantine\694C6215 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\694C6215 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\547F3098/ps.com Infected: Email-Worm.Win32.NetSky.b skipped c:\Program Files\Norton AntiVirus\Quarantine\547F3098 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\547F3098 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\57381B93 Infected: Email-Worm.Win32.NetSky.d skipped c:\Program Files\Norton AntiVirus\Quarantine\430F2497 Infected: Email-Worm.Win32.NetSky.c skipped c:\Program Files\Norton AntiVirus\Quarantine\71810A56 Infected: Email-Worm.Win32.NetSky.d skipped c:\Program Files\Norton AntiVirus\Quarantine\15C636FB/mail2.txt .pif Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\15C636FB ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\15C636FB CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\15D034F0/mail2.txt .pif Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\15D034F0 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\15D034F0 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\6C9C6C45.txt Infected: Trojan-Downloader.Win32.Wintrim.af skipped c:\Program Files\Norton AntiVirus\Quarantine\65813184.exe Infected: Trojan-Downloader.Win32.Wintrim.af skipped c:\Program Files\Norton AntiVirus\Quarantine\4844691E/music.scr Infected: Email-Worm.Win32.NetSky.c skipped c:\Program Files\Norton AntiVirus\Quarantine\4844691E ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\4844691E CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7B437EF8 Infected: Email-Worm.Win32.NetSky.d skipped c:\Program Files\Norton AntiVirus\Quarantine\7857059A/misc.png .pif Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\7857059A ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7857059A CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7861038F/misc.png .pif Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\7861038F ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7861038F CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\2D195B8B Infected: Email-Worm.Win32.NetSky.d skipped c:\Program Files\Norton AntiVirus\Quarantine\0DC67C4A/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\0DC67C4A ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0DC67C4A CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0DCC5043/document.txt .exe Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\0DCC5043 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0DCC5043 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7432654A/yubnam.jpg .scr Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\7432654A ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7432654A CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\743F0D3C/disc.xls .scr Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\743F0D3C ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\743F0D3C CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\7AC13FC6 Infected: Email-Worm.Win32.Bagle.s skipped c:\Program Files\Norton AntiVirus\Quarantine\31E77082 Infected: Email-Worm.Win32.NetSky.c skipped c:\Program Files\Norton AntiVirus\Quarantine\53756CFF Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\538214F0/details.txt .pif Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\538214F0 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\538214F0 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\538C12E5 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\108043D0 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\72BF1320 Infected: Email-Worm.Win32.NetSky.b skipped c:\Program Files\Norton AntiVirus\Quarantine\0C5478F8 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\0C6120E9/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\0C6120E9 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\0C6120E9 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\042A4E81 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\34CD5221 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\153027C5 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\4551143B/misc.png .pif Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\4551143B ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\4551143B CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\45651026 Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\456B641F/part2.gif .exe Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\456B641F ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\456B641F CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\376A673E/details.txt .pif Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\376A673E ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\376A673E CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\37843721 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\1342422C/test.scr Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\1342422C ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\1342422C CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\77483E1A Infected: Email-Worm.Win32.Sober.f skipped c:\Program Files\Norton AntiVirus\Quarantine\20294165/rnlxmkp.rtf .scr Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\20294165 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\20294165 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\20366957 Infected: Email-Worm.Win32.Mydoom.e skipped c:\Program Files\Norton AntiVirus\Quarantine\2B0B1FB3 Infected: Email-Worm.Win32.NetSky.d skipped c:\Program Files\Norton AntiVirus\Quarantine\68384130 Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\68456922/details.txt .pif Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\68456922 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\68456922 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\6113512C/[From lamoresk@yahoo.fr][Date Fri, 14 May 2004 11:43:44 +0200]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\6113512C/[From lamoresk@yahoo.fr][Date Fri, 14 May 2004 11:43:44 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\6113512C/[From lamoresk@yahoo.fr][Date Fri, 14 May 2004 11:43:44 +0200]/message.scr Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\6113512C Mail: infected - 1, suspicious - 2 skipped c:\Program Files\Norton AntiVirus\Quarantine\6113512C CryptFF: infected - 1, suspicious - 2 skipped c:\Program Files\Norton AntiVirus\Quarantine\6123231A/document.txt .exe Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\6123231A ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\6123231A CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\4E2A1640/document.txt .exe Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\4E2A1640 ZIP: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\4E2A1640 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\75D67326/[From pascale.veyrines@libertysurf.fr][Date Tue, 18 May 2004 13:14:59 +0200]/document_all.exe Infected: Email-Worm.Win32.NetSky.q skipped c:\Program Files\Norton AntiVirus\Quarantine\75D67326 Mail: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\75D67326 CryptFF: infected - 1 skipped c:\Program Files\Norton AntiVirus\Quarantine\75E31B18/[From psergent@invitae.fr][Date Tue, 18 May 2004 16:10:27 +0200]/UNNAMED/html Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\75E31B18/[From psergent@invitae.fr][Date Tue, 18 May 2004 16:10:27 +0200]/UNNAMED Suspicious: Exploit.HTML.Iframe.FileDownload skipped c:\Program Files\Norton AntiVirus\Quarantine\75E31B18/[From pserg
  6. puduk007
    Bonjour! Faut il que je pose mes questions sur un forum plus approprié, car ce n'est plus vraiment un problème de sécurité que j'ai? S'il y a une dernière chose que vous pouvez faire pour moi: j'aimerais surtout pouvoir ouvrir les liens internet qui s'ouvrent dans une nouvelle fenêtre, ce qui m'est toujours pour l'instant impossible. Quelle peut être la cause? Peut être simplement un problème de paramètres?? Merci!
  7. puduk007
    Nom du fichier Diagnostic c:\WINDOWS\Cookies\system@tripod.lycos[1].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@247realmedia[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@adtech[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@www.cibleclick[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@bluestreak[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@as1.falkag[1].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@tradedoubler[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@fl01.ct2.comclick[2].txt Trace.TrackingCookie c:\WINDOWS\Cookies\system@weborama[1].txt Trace.TrackingCookie c:\Mes documents\Valentin\sécurité\lopremover\lopremover.exe Adware.Lop c:\FAUXVIRUS\email.exe Joke.Win32.Enfin.a Rien du tout je suppose! En fait je pense que les problèmes que j'ai sont les dégats non réparés causés par les infections qu'on a enlevées il y a une semaine. N'y a-t-il pas moyen de rétablir la configuration d'avant le bug? Ou alors comment retrouver Norton, dont la petite icone est toujours barée dans ma barre des taches, et qui m'annonce toujours ses mêmes messages d'erreur? comment retrouver iexplore.exe, nécessaire pour ouvrir IE? Et surtout qu'est ce qui peut faire que les liens ouvrant une nouvelle fenêtre ne fonctionnent pas? Ah oui aussi j'avais choisi une option qui me vidait l'historique, effait les fichiers temp et les cookies à chaque redémarrage du PC. Cette option a apparemment été désactivée et je ne sais plus où elle est.
  8. puduk007
    Désolé j'ai Windows 98, et la version que tu m'as passée nécessite au moins Win 2000... J'ai pas trouvé sur le site de version pour windows 98...
  9. puduk007
    Bonjour! M'aurait on oublié? Mon dernier message était peut-être trop rassurant, mais j'ai toujours des problèmes assez pénibles en fait..en particulier, les liens ne sont pas cliquables et c'est vraiment chiant! En plus je n'ai plus internet explorer. Et ce Norton qui ne me protège pas ... @+ bonne soirée à tous
  10. puduk007
    Mon heure est toujours à l'heure d'été, mon fond d'écran est toujours celui d'il y a 6 mois et mon imprimante ne s'est pas réinstallée, et j'ai toujours les messages d'erreurs du pauvre Norton à l'allumage de mon PC... Je suppose que je dois réparer tous ces dégats "à la main"? Mais pour Norton, je ne sais pas où récupérer les "fichiers de la base de données du moteur de recherche des virus"... Donc je ne suis pas du tout protégé contre les virus.. Sinon l'espace libre sur mon disque varie entre 100 et 500 Mo (sur 9.5Go au total .........). Est-ce que le disque plein ne pourrait pas être à l'origine de tous ces disfonctionnements?
  11. puduk007
    Lopremover je l'ai dézipé, je l'ai ouvert, j'ai cliqué sur uninstall et ça a rien fait, c'est normal??? Sinon nouveau scan et...: Logfile of HijackThis v1.99.1 Scan saved at 12:46:11, on 16/01/06 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Unable to get Internet Explorer version! Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\WINDOWS\SYSTEM\ATI2EVXX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCEVTMGR.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\PROGRAM FILES\WANADOO\ESPACEWANADOO.EXE C:\PROGRAM FILES\WANADOO\COMCOMP.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\WINDOWS\EXPLORER.EXE C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCAPP.EXE C:\PROGRAM FILES\ALCATEL\SPEEDTOUCH USB\DRAGDIAG.EXE C:\WINDOWS\LOADQM.EXE C:\PROGRAM FILES\AHEAD\INCD\INCD.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\PROGRAM FILES\WANADOO\TASKBARICON.EXE C:\PROGRAM FILES\REAL\REALJBOX.EXE C:\WINDOWS\SYSTEM\STIMON.EXE C:\WINDOWS\SYSTEM\DDHELP.EXE C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (file missing) O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (file missing) O4 - HKLM\..\Run: [scanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe" O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [LoadQM] loadqm.exe O4 - HKLM\..\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\taskbaricon.exe O4 - HKLM\..\Run: [REAL] C:\Program Files\REAL\realjbox.exe O4 - HKLM\..\Run: [LocalProxy] C:\Program Files\LocalProxy\proxy4free.exe O4 - HKLM\..\Run: [AdsBlocker] C:\Program Files\AdsBlocker\stopAds.exe O4 - HKLM\..\Run: [stillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [ATIPOLL] ati2evxx.exe O4 - HKLM\..\RunServices: [ATISmart] C:\WINDOWS\SYSTEM\ati2s9ag.exe O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe" O4 - HKLM\..\RunServices: [scriptBlocking] "C:\Program Files\Fichiers communs\Symantec Shared\Script Blocking\SBServ.exe" -reg O4 - Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmcache.html O8 - Extra context menu item: Pages similaires - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsimilar.html O8 - Extra context menu item: Pages liées - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmbacklinks.html O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O12 - Plugin for .png: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin6.dll @+ tard et arrête de te moquer de moi euh!!!
  12. puduk007
    Tout d'abord merci pour ton aide, c'est vraiment cool de me guider comme ça! Alors... j'ai fait pas mal de choses mais j'ai quelques problèmes par rapport à la procédure: Lopremover, je crois que le lien que tu m'as donné est caduque, donc j'ai pas pu l'utiliser. Je n'ai pas pu faire le scan en ligne car parmi tous les plantages de mon PC, le + chiant est qu'il n'exécute plus les liens ouvrant une nouvelle fenêtre. Donc en général je copie-colle les liens dans la fenêtre, mais là c'est pas possible... Je te donne aussi quelques précisions sur mon PC: c'est vraiment arrivé très brusquement, le PC revient 5 mois en arrière (ancien fond d'écran, retour à l'heure d'été...). Ah oui aussi, ma nouvelle imprimante installée il y a deux semaines, s'est désinstallée... Quant à Norton, il ne fonctionne plus du tout, il me met comme message d'erreur, à chaque allumage du PC: "Impossible d'initialiser les fichiers de la base de données du moteur de recherche des virus" Puis, 2 minutes après: "le pilote Norton antivirus n'a pas pu être chargé, votre système n'est pas protégé contre les virus" Ce serait plutôt une des causes ou une conséquence des problèmes???
  13. puduk007
    Après procédure préliminaire, voici le rapport fait il y a 3 minutes: Logfile of HijackThis v1.99.1 Scan saved at 09:40:39, on 15/01/06 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Unable to get Internet Explorer version! Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\SYSTEM\MSTASK.EXE C:\WINDOWS\SYSTEM\ATI2EVXX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCEVTMGR.EXE C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\PROGRAM FILES\WANADOO\ESPACEWANADOO.EXE C:\PROGRAM FILES\WANADOO\COMCOMP.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\WINDOWS\EXPLORER.EXE C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCAPP.EXE C:\PROGRAM FILES\ALCATEL\SPEEDTOUCH USB\DRAGDIAG.EXE C:\WINDOWS\LOADQM.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\WORKS SHARED\WKUFIND.EXE C:\PROGRAM FILES\AHEAD\INCD\INCD.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\PROGRAM FILES\WANADOO\TASKBARICON.EXE C:\PROGRAM FILES\REAL\REALJBOX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\REAL\UPDATE_OB\REALSCHED.EXE C:\WINDOWS\SYSTEM\STIMON.EXE C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE C:\WINDOWS\SYSTEM\DDHELP.EXE C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.dcpiuqaklwgqykqiexdqm.org/xtky1...4OFfc8tiT9g.jpg R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo, Internet avec france telecom R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (file missing) O2 - BHO: (no name) - {F3E480CA-B01F-0A64-F127-FA7D31C181DF} - C:\WINDOWS\APPLICATION DATA\ACID CURB\BARBDRIVE.EXE (file missing) O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (file missing) O4 - HKLM\..\Run: [scanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe" O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [LoadQM] loadqm.exe O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [sVCHOST] C:\WINDOWS\svchost.exe 0 O4 - HKLM\..\Run: [DSB] C:\Program Files\DSB\dsb.exe O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRAM FILES\AQUATICA\AQ3HELPER.EXE /partner AQ3 O4 - HKLM\..\Run: [VideoManager] C:\Program Files\Video Manager\VideoManager.exe /iconic O4 - HKLM\..\Run: [indexindicator] C:\WINDOWS\SYSTEM\Indexindicator.exe /check O4 - HKLM\..\Run: [MEMreaload] C:\Program Files\ServicePackFiles\MEMreaload.exe /checkmouse /updateratio O4 - HKLM\..\Run: [suite] C:\WINDOWS\SYSTEM\SuiteOffices.exe /cleandb O4 - HKLM\..\Run: [Reload] C:\Program Files\ServicePackFiles\reload.exe /reloadenterpice O4 - HKLM\..\Run: [Diesel] C:\WINDOWS\SYSTEM\Recalculate.exe /reloadenterpice O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\taskbaricon.exe O4 - HKLM\..\Run: [REAL] C:\Program Files\REAL\realjbox.exe O4 - HKLM\..\Run: [LocalProxy] C:\Program Files\LocalProxy\proxy4free.exe O4 - HKLM\..\Run: [LSAS] C:\WINDOWS\SYSTEM\LSAS.exe /check O4 - HKLM\..\Run: [lservers] C:\Program Files\ServicePackFiles\lservers.exe /checkmouse /updateratio O4 - HKLM\..\Run: [mctask] C:\WINDOWS\SYSTEM\mctask.exe /allservice O4 - HKLM\..\Run: [systems] C:\Program Files\ServicePackFiles\systems.exe /reloadenterpice O4 - HKLM\..\Run: [tool 16 less live] C:\WINDOWS\Application Data\Joy Mix Tool 16\Setup Aim.exe O4 - HKLM\..\Run: [sHA256] C:\Program Files\SHA256\secure.exe O4 - HKLM\..\Run: [WIZZ] C:\Program Files\WIZZ\dazzler.exe O4 - HKLM\..\Run: [AdsBlocker] C:\Program Files\AdsBlocker\stopAds.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [stillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [ATIPOLL] ati2evxx.exe O4 - HKLM\..\RunServices: [ATISmart] C:\WINDOWS\SYSTEM\ati2s9ag.exe O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe" O4 - HKLM\..\RunServices: [scriptBlocking] "C:\Program Files\Fichiers communs\Symantec Shared\Script Blocking\SBServ.exe" -reg O4 - HKCU\..\Run: [Mode love] C:\WINDOWS\APPLIC~1\FLAGCH~1\help face.exe O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background O4 - Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmcache.html O8 - Extra context menu item: Pages similaires - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsimilar.html O8 - Extra context menu item: Pages liées - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmbacklinks.html O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU) O12 - Plugin for .png: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin6.dll O15 - Trusted Zone: *.energyfactor.com O15 - Trusted Zone: *.hardcorefantasyland.com O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...StatsClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/14624b848e64a9ca7806/...RdxIE601_fr.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://images.goa.com/v3/InstallGoaIT/Itpp...0,1,6/npwwg.cab O16 - DPF: {FD40EC41-D860-4579-8BA4-52671A45C71C} (AxHtChat Class) - http://images.goa.com/v3/InstallGoaIT/Chat...,4/npaxchat.cab O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - http://akamai.downloadv3.com/binaries/IA/dtc32_FR.cab O16 - DPF: {CEFB7B49-9652-464F-8AFD-A577C0500F39} (EGP2ECOM Class) - http://akamai.downloadv3.com/binaries/P2EC...8_1034_pack.cab O16 - DPF: {11111111-1111-1111-1111-111111113456} - file://c:\info6_s.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149.cab O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppD...sharingctrl.cab O16 - DPF: {11111111-1111-1111-1111-111111113457} - file://c:\ied_s7.cab O16 - DPF: {11111111-1111-1111-1111-511111113457} - file://c:\x.cab O16 - DPF: {11111111-1111-1111-1111-511111113458} - file://c:\x.cab O16 - DPF: {7DA181BB-EF8D-4A7E-8C53-7BFC718EF71D} (Upload Class) - http://photos.wanadoo.fr/al/presentation/p...ivex/Ephoto.cab O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O16 - DPF: {24311111-1111-1121-1111-111191113457} - file://c:\eied_s7.cab O16 - DPF: {33331111-1111-1111-1111-611111193457} - file://c:\ex.cab O16 - DPF: {33331111-1111-1111-1111-611111193458} - file://c:\ex.cab
  14. puduk007
    Hello! Mon PC plante monumentalement depuis ce matin, c'est arrivé totalement brusquement. Ya pleins de "symptomes" et je ne les ai surement pas tous vus. Ca affecte en particulier les paramètres du PC: 1 de mes anciens fond d'écran a été remis, l'apparence globale a changé, l'heure s'est remise à l'heure d'été... l'ordre du menu favoris est totalement chamboulé, idem pour les contacts msn. Plus grave: Norton merdouille et son autoprotect n'est plus activable, ya un message d'erreur assez alarmant qui se met dès l'allumage de l'ordi, soit disant il manque les pilotes de configuration ou un truc du genre... Internet explorer ne peut plus se lancer il est introuvable, je passe par le poste de travail pour internet mais bon c pas terrible. J'ai vu que ça, mais ya surement pl1 d'autres problèmes. Pour vous arienter voici mon hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 12:30:02, on 14/01/06 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Unable to get Internet Explorer version! Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\WINDOWS\SYSTEM\ATI2EVXX.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCEVTMGR.EXE C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\PROGRAM FILES\WANADOO\ESPACEWANADOO.EXE C:\PROGRAM FILES\WANADOO\COMCOMP.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\WINDOWS\EXPLORER.EXE C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCAPP.EXE C:\PROGRAM FILES\ALCATEL\SPEEDTOUCH USB\DRAGDIAG.EXE C:\WINDOWS\LOADQM.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\WORKS SHARED\WKUFIND.EXE C:\PROGRAM FILES\AHEAD\INCD\INCD.EXE C:\PROGRAM FILES\WANADOO\WATCH.EXE C:\PROGRAM FILES\WANADOO\TASKBARICON.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\REAL\UPDATE_OB\REALSCHED.EXE C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE C:\WINDOWS\SYSTEM\DDHELP.EXE C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\NMAIN.EXE C:\PROGRAM FILES\REAL\REALJBOX.EXE C:\WINDOWS\SYSTEM\PSTORES.EXE C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.dcpiuqaklwgqykqiexdqm.org/xtky1...4OFfc8tiT9g.jpg R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo, Internet avec france telecom R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (file missing) O2 - BHO: (no name) - {F3E480CA-B01F-0A64-F127-FA7D31C181DF} - C:\WINDOWS\APPLICATION DATA\ACID CURB\BARBDRIVE.EXE (file missing) O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (file missing) O4 - HKLM\..\Run: [scanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe" O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [LoadQM] loadqm.exe O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [sVCHOST] C:\WINDOWS\svchost.exe 0 O4 - HKLM\..\Run: [DSB] C:\Program Files\DSB\dsb.exe O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRAM FILES\AQUATICA\AQ3HELPER.EXE /partner AQ3 O4 - HKLM\..\Run: [VideoManager] C:\Program Files\Video Manager\VideoManager.exe /iconic O4 - HKLM\..\Run: [indexindicator] C:\WINDOWS\SYSTEM\Indexindicator.exe /check O4 - HKLM\..\Run: [MEMreaload] C:\Program Files\ServicePackFiles\MEMreaload.exe /checkmouse /updateratio O4 - HKLM\..\Run: [suite] C:\WINDOWS\SYSTEM\SuiteOffices.exe /cleandb O4 - HKLM\..\Run: [Reload] C:\Program Files\ServicePackFiles\reload.exe /reloadenterpice O4 - HKLM\..\Run: [Diesel] C:\WINDOWS\SYSTEM\Recalculate.exe /reloadenterpice O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\taskbaricon.exe O4 - HKLM\..\Run: [REAL] C:\Program Files\REAL\realjbox.exe O4 - HKLM\..\Run: [LocalProxy] C:\Program Files\LocalProxy\proxy4free.exe O4 - HKLM\..\Run: [LSAS] C:\WINDOWS\SYSTEM\LSAS.exe /check O4 - HKLM\..\Run: [lservers] C:\Program Files\ServicePackFiles\lservers.exe /checkmouse /updateratio O4 - HKLM\..\Run: [mctask] C:\WINDOWS\SYSTEM\mctask.exe /allservice O4 - HKLM\..\Run: [systems] C:\Program Files\ServicePackFiles\systems.exe /reloadenterpice O4 - HKLM\..\Run: [tool 16 less live] C:\WINDOWS\Application Data\Joy Mix Tool 16\Setup Aim.exe O4 - HKLM\..\Run: [sHA256] C:\Program Files\SHA256\secure.exe O4 - HKLM\..\Run: [WIZZ] C:\Program Files\WIZZ\dazzler.exe O4 - HKLM\..\Run: [AdsBlocker] C:\Program Files\AdsBlocker\stopAds.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe O4 - HKLM\..\RunServices: [ATIPOLL] ati2evxx.exe O4 - HKLM\..\RunServices: [ATISmart] C:\WINDOWS\SYSTEM\ati2s9ag.exe O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe" O4 - HKLM\..\RunServices: [scriptBlocking] "C:\Program Files\Fichiers communs\Symantec Shared\Script Blocking\SBServ.exe" -reg O4 - HKLM\..\RunServices: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [Mode love] C:\WINDOWS\APPLIC~1\FLAGCH~1\help face.exe O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background O4 - Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmcache.html O8 - Extra context menu item: Pages similaires - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmsimilar.html O8 - Extra context menu item: Pages liées - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR2.DLL/cmbacklinks.html O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing) O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU) O12 - Plugin for .png: C:\PROGRA~1\INTERN~1\PLUGINS\npqtplugin6.dll O15 - Trusted Zone: *.energyfactor.com O15 - Trusted Zone: *.hardcorefantasyland.com O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...StatsClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/14624b848e64a9ca7806/...RdxIE601_fr.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://images.goa.com/v3/InstallGoaIT/Itpp...0,1,6/npwwg.cab O16 - DPF: {FD40EC41-D860-4579-8BA4-52671A45C71C} (AxHtChat Class) - http://images.goa.com/v3/InstallGoaIT/Chat...,4/npaxchat.cab O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - http://akamai.downloadv3.com/binaries/IA/dtc32_FR.cab O16 - DPF: {CEFB7B49-9652-464F-8AFD-A577C0500F39} (EGP2ECOM Class) - http://akamai.downloadv3.com/binaries/P2EC...8_1034_pack.cab O16 - DPF: {11111111-1111-1111-1111-111111113456} - file://c:\info6_s.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149.cab O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppD...sharingctrl.cab O16 - DPF: {11111111-1111-1111-1111-111111113457} - file://c:\ied_s7.cab O16 - DPF: {11111111-1111-1111-1111-511111113457} - file://c:\x.cab O16 - DPF: {11111111-1111-1111-1111-511111113458} - file://c:\x.cab O16 - DPF: {7DA181BB-EF8D-4A7E-8C53-7BFC718EF71D} (Upload Class) - http://photos.wanadoo.fr/al/presentation/p...ivex/Ephoto.cab O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmesse...pdownloader.cab O16 - DPF: {24311111-1111-1121-1111-111191113457} - file://c:\eied_s7.cab O16 - DPF: {33331111-1111-1111-1111-611111193457} - file://c:\ex.cab O16 - DPF: {33331111-1111-1111-1111-611111193458} - file://c:\ex.cab MERCI!
  15. puduk007

    Plus de son!

    puduk007 a répondu à un(e) sujet de puduk007 dans Software

    C BON c'est revenu! J'ai rien changé dans les paramètres mais j'ai fait "appliquer" et paf le controle volume de la barre des taches est revenu et le son avec.. merci
×
×
  • Créer...