dougdouf

re, C'est bon il n'y a plus rien Merci beaucoup

Il me reste un fichier edlm.exe (mais je pense que c'est normal), il n'y a plus d'alerte virus et plus de fichier edlm2.exe Merci beaucoup pour le coup de main

Bonjour, Merci pour le coup de main. Voici les rapports Ewido: --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 07:39:53, 26/04/2006 + Somme de contrôle: 23EF109C + Résultats du scan: :mozilla.16:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.22:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.23:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.24:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.25:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.26:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.27:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.28:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.29:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.30:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.31:C:\Documents and Set[/color]tings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.39:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.40:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.41:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.42:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.43:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.50:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.61:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.62:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.63:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.64:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.65:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.89:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder :mozilla.112:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.113:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.114:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.115:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.116:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.117:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.129:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.130:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.131:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.132:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.133:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.134:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.147:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.148:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.158:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.160:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.182:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.183:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder :mozilla.184:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.190:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder :mozilla.191:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder :mozilla.192:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder :mozilla.232:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Onestat : Nettoyer et sauvegarder :mozilla.233:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Onestat : Nettoyer et sauvegarder :mozilla.234:C:\Documents and Settings\Adeline\Application Data\Mozilla\Firefox\Profiles\pboz876a.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder C:\Documents and Settings\Adeline\Cookies\adeline@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\Adeline\Cookies\adeline@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.19:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.20:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.21:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.22:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.29:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.30:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.31:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.32:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.37:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.38:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.79:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.103:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.108:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.109:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.110:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.111:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.112:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.113:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder :mozilla.114:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.133:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.161:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder :mozilla.163:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.164:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.165:C:\Documents and Settings\Alexandre\Application Data\Mozilla\Firefox\Profiles\pwdes2j6.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.11:C:\Documents and Settings\Alexandre\Application Data\Thunderbird\Profiles\default.953\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\Alexandre\Cookies\alexandre@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\Alexandre\Cookies\alexandre@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder ::Fin du rapport HijackThis Logfile of HijackThis v1.99.1 Scan saved at 07:44:29, on 26/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\palmOne\Hotsync.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\HijackThis\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.laposte.net/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [eCarteBleue-CLEO] "C:\Program Files\e-Carte Bleue\CL\e-Carte Bleue VISA Cleo\ECB-CLEO.exe" /dontopenmycards O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe Encore MERCI

ok désolé,

Bonjour à tous Avast me signal la présence d'un cheval de troie: Win 32 Le fichier à supprimer est edlm2.exe dans le dossier win32, mais AVAST n'y arrive pas (le problème revient systématiquement. Que dois je faire? J'ai effectué toutes les manipulations indiquées dans le post de trezeguet68 Voici le rapport de HijackThis: Logfile of HijackThis v1.99.1 Scan saved at 13:20:22, on 25/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe C:\Program Files\Shareaza\Shareaza.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exe C:\Program Files\palmOne\Hotsync.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\Program Files\HijackThis\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.laposte.net/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [eCarteBleue-CLEO] "C:\Program Files\e-Carte Bleue\CL\e-Carte Bleue VISA Cleo\ECB-CLEO.exe" /dontopenmycards O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe O4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exe O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ldr64 - ldr64.dll (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe

Bonjour à tous J'ai excatement le même virus qui s'affiche en permanence. J'ai exécuter les différentes étapes décrites, mais le fichier EDLM2 est toujours présent. Que dois je faire? Voici le rapport de HijackThis Logfile of HijackThis v1.99.1 Scan saved at 13:20:22, on 25/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe C:\Program Files\Shareaza\Shareaza.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exe C:\Program Files\palmOne\Hotsync.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\Program Files\HijackThis\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.laposte.net/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [eCarteBleue-CLEO] "C:\Program Files\e-Carte Bleue\CL\e-Carte Bleue VISA Cleo\ECB-CLEO.exe" /dontopenmycards O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe O4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exe O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: ldr64 - ldr64.dll (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe