espace
-
Compteur de contenus
7 -
Inscription
-
Dernière visite
espace's Achievements
Junior Member (3/12)
0
Réputation sur la communauté
-
Suivi desinstallation Winfixer
espace a répondu à un(e) sujet de espace dans Analyses et éradication malwares
Bonsoir, A priori, pour l'instant, il ne m'a rien signalé. Si cela revient, je te fais signe. Encore merci pour ton aide précieuse Cordialement -
Suivi desinstallation Winfixer
espace a répondu à un(e) sujet de espace dans Analyses et éradication malwares
Salut Bibi, Je viens de lire ton message. J' ai supprimé le dossier "Shop" , par contre je ne vois pas le second item Supprime le fichier suivant : -D:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.8-2.inf il n'apparait pas, -
Suivi desinstallation Winfixer
espace a répondu à un(e) sujet de espace dans Analyses et éradication malwares
Bonjour Bibi, Ce n'est pas moi qui ai crée "shop" dans mes favoris. J'ai fixé O2 Eorezo, Ci joint rapport Hijackthis: A1Click Ultra PC Cleaner (Registered Version) Adobe Download Manager 2.0 (Supprimer uniquement) Adobe Reader 7.0.8 - Français ATI - Software Uninstall Utility ATI Catalyst Control Center ATI Control Panel ATI Display Driver Bug Doctor 3.0.3.3 CC_ccProxyExt ccCommon ccPxyCore Diskeeper Professional Edition Disque de souvenirs HP EasyCleaner eMule ewido anti-spyware 4.0 Gestionnaire Internet Google Toolbar for Internet Explorer Hide IP Platinum 1.73 HijackThis 1.99.1 hp psc 2170 series J2SE Runtime Environment 5.0 Update 6 Lecteur Windows Media 10 Livebox LiveUpdate 2.7 (Symantec Corporation) Macromedia Flash Player 8 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft Office Standard Edition 2003 Microsoft Works Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734) Mise à jour de sécurité pour Windows XP (KB911280) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB916281) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918439) MSRedist Navigateur Orange Norton AntiSpam Norton AntiSpam Norton AntiVirus 2006 Norton Internet Security Norton Internet Security Norton Internet Security Norton Internet Security Norton Internet Security Norton Internet Security Norton Internet Security 2006 (Symantec Corporation) Norton Protection Center Norton WMI Update Norton WMI Update Outil de connexion Wanadoo Panda ActiveScan PerfectDisk Photo et imagerie HP 2.0 - All-in-One Photo et imagerie HP 2.0 - All-in-One Pilote Photo et imagerie HP 2.0 - hp psc 2170 series PowerBackup 1.0 Roxio Easy Media Creator 7 Basic DVD Edition SereneScreen Marine Aquarium Time SPBBC Spybot - Search & Destroy 1.4 TuneUp Utilities 2006 Wanadoo Messager Windows Installer 3.1 (KB893803) Windows Live Messenger Windows Live Safety scanner Windows Live Sign-in Assistant Windows Media Format Runtime Windows XP Service Pack 2 WinRAR archiver WinXP Manager WinXP Manager -
Suivi desinstallation Winfixer
espace a répondu à un(e) sujet de espace dans Analyses et éradication malwares
Bonsoir BiBI, Désolé pour le topic, mais je débute. Je n'ai plus Winantivirus, ni MyWebsearch. J'ai également enlevé EoRezo. Message Cwshreder: Scan is complete! CoolWebSearch was not found on this system. rapport log Hackjthis: Logfile of HijackThis v1.99.1 Scan saved at 23:26:36, on 05/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Executive Software\Diskeeper\DkService.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\WINDOWS\System32\FTRTSVC.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Raxco\PerfectDisk\PDSched.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ewido anti-spyware 4.0\ewido.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\ntvdm.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE C:\Program Files\Wanadoo\GestionnaireInternet.exe C:\Program Files\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\Program Files\Wanadoo\Watch.exe C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe C:\PROGRA~1\Wanadoo\WOOBRO~1\DownloadManager.exe C:\Program Files\Messenger\msmsgs.exe D:\LOGICIEL\Hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Moniteur Fax-Voix.lnk = C:\OLIFAXVX\MONITEUR.EXE O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety.live.com/resource/downl...lscbase3401.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141305489515 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1141320056171 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDSched.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe -
Ci joint rapport Ewido ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 19:08:28 05/07/2006 + Scan result: HKU\S-1-5-21-515967899-2139871995-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@2o7[2].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@gfi.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@lsfnetwork.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@adtech[2].txt -> TrackingCookie.Adtech : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@advertising[1].txt -> TrackingCookie.Advertising : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@vip.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken. D:\Documents and Settings\Vincent\Cookies\vincent@com[2].txt -> TrackingCookie.Com : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@c.enhance[1].txt -> TrackingCookie.Enhance : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@www.epilot[1].txt -> TrackingCookie.Epilot : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@estat[2].txt -> TrackingCookie.Estat : No action taken. D:\Documents and Settings\Vincent\Cookies\vincent@estat[1].txt -> TrackingCookie.Estat : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@www.etracker[2].txt -> TrackingCookie.Etracker : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@as-eu.falkag[1].txt -> TrackingCookie.Falkag : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@sel.as-eu.falkag[1].txt -> TrackingCookie.Falkag : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@findwhat[1].txt -> TrackingCookie.Findwhat : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ilead.itrack[1].txt -> TrackingCookie.Itrack : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@overture[2].txt -> TrackingCookie.Overture : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ads.pointroll[1].txt -> TrackingCookie.Pointroll : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@questionmarket[2].txt -> TrackingCookie.Questionmarket : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@revenue[2].txt -> TrackingCookie.Revenue : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@spylog[1].txt -> TrackingCookie.Spylog : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@statcounter[2].txt -> TrackingCookie.Statcounter : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@tradedoubler[3].txt -> TrackingCookie.Tradedoubler : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@trafficmp[1].txt -> TrackingCookie.Trafficmp : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@valueclick[2].txt -> TrackingCookie.Valueclick : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@valueclick[3].txt -> TrackingCookie.Valueclick : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@weborama[2].txt -> TrackingCookie.Weborama : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@yadro[1].txt -> TrackingCookie.Yadro : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken. C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@zedo[1].txt -> TrackingCookie.Zedo : No action taken. ::Report end puis le rapport log Hijackthis Logfile of HijackThis v1.99.1 Scan saved at 19:20:37, on 05/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Executive Software\Diskeeper\DkService.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\WINDOWS\System32\FTRTSVC.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Raxco\PerfectDisk\PDSched.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\ewido anti-spyware 4.0\ewido.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\ntvdm.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE D:\LOGICIEL\Hijackthis\HijackThis.exe C:\Program Files\Messenger\msmsgs.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Moniteur Fax-Voix.lnk = C:\OLIFAXVX\MONITEUR.EXE O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety.live.com/resource/downl...lscbase3401.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141305489515 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1141320056171 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDSched.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe Et enfin le rapport panda Incident Statut Analyse Outil indésirable:application/winantivirus2006 No Désinfecté c:\program files\WinAntiVirus Pro 2006 Adware:adware/cws No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Favoris\Shop Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\Administrateur\Bureau\VundoFix\VundoFix\process.exe Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@247realmedia[2].txt Spyware:Cookie/2o7 No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@2o7[2].txt Spyware:Cookie/888 No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@888[1].txt Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ad.yieldmanager[2].txt Spyware:Cookie/Hbmediapro No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@adopt.hbmediapro[2].txt Spyware:Cookie/PointRoll No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ads.pointroll[1].txt Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@adtech[2].txt Spyware:Cookie/Advertising No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@advertising[1].txt Spyware:Cookie/Apmebf No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@apmebf[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@as-eu.falkag[1].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@as1.falkag[1].txt Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@atdmt[2].txt Spyware:Cookie/Atwola No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@atwola[1].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@belnk[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@bluestreak[2].txt Spyware:Cookie/bravenetA No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@bravenet[1].txt Spyware:Cookie/Serving-sys No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@bs.serving-sys[1].txt Spyware:Cookie/Enhance No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@c.enhance[1].txt Spyware:Cookie/Casinotropez No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@casinotropez[2].txt Spyware:Cookie/Cassava No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@cassava[1].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@cgi-bin[1].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@cgi-bin[5].txt Spyware:Cookie/cs.sexcounter No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@cs.sexcounter[2].txt Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@dist.belnk[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@doubleclick[1].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@fe.lea.lycos[1].txt Spyware:Cookie/Findwhat No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@findwhat[1].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@fl01.ct2.comclick[1].txt Spyware:Cookie/Itrack No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@ilead.itrack[1].txt Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@mediaplex[1].txt Spyware:Cookie/Overture No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@overture[2].txt Spyware:Cookie/QuestionMarket No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@questionmarket[2].txt Spyware:Cookie/WUpd No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@revenue[2].txt Spyware:Cookie/Rn11 No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@rn11[2].txt Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@searchportal.information[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@sel.as-eu.falkag[1].txt Spyware:Cookie/Server.iad.Liveperson No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@server.iad.liveperson[1].txt Spyware:Cookie/Serving-sys No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@serving-sys[1].txt Spyware:Cookie/Smartadserver No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@smartadserver[1].txt Spyware:Cookie/SpyLog No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@spylog[1].txt Spyware:Cookie/Statcounter No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@statcounter[2].txt Spyware:Cookie/Reliablestats No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@stats1.reliablestats[1].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@tradedoubler[3].txt Spyware:Cookie/Traffic Marketplace No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@trafficmp[1].txt Spyware:Cookie/Valueclick No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@valueclick[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@weborama[2].txt Spyware:Cookie/Seeq No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@www48.seeq[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@xiti[1].txt Spyware:Cookie/Yadro No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@yadro[1].txt Spyware:Cookie/Zedo No Désinfecté C:\Documents and Settings\Vincent CUNAUD\Cookies\vincent cunaud@zedo[1].txt Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\Common Files\Companion Wizard\WapCHK.dll Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\Common Files\Companion Wizard\WapCHK{B4B4AFB1-5AC5-47DF-8B1D-4D65C9612C36}.dll Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\WinAntiVirus Pro 2006\RulSrv.dll Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\WinAntiVirus Pro 2006\WAV6COM.dll Outil indésirable:Application/Winantivirus2006 No Désinfecté C:\Program Files\WinAntiVirus Pro 2006\winpgi.dll Spyware:Cookie/Gorillanation No Désinfecté D:\Documents and Settings\Vincent\Cookies\vincent@ads.gorillanation[1].txt Spyware:Cookie/Com.com No Désinfecté D:\Documents and Settings\Vincent\Cookies\vincent@com[2].txt Spyware:Cookie/fe.lea.lycos No Désinfecté D:\Documents and Settings\Vincent\Cookies\vincent@fe.lea.lycos[2].txt Spyware:Cookie/Kount No Désinfecté D:\Documents and Settings\Vincent\Cookies\vincent@kount[1].txt Spyware:Cookie/Xiti No Désinfecté D:\Documents and Settings\Vincent\Cookies\vincent@xiti[1].txt Outil indésirable:Application/Processor No Désinfecté D:\LOGICIEL\VundoFix\vundofix.exe[process.exe] Outil indésirable:Application/FunWeb No Désinfecté D:\Program Files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL Outil indésirable:Application/MyWebSearch No Désinfecté D:\Program Files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL Outil indésirable:Application/MyWebSearch No Désinfecté D:\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL Outil indésirable:Application/FunWeb No Désinfecté D:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.8-2.inf
-
J'ai désinstallé antivir. Par contre qu'entends -tu par nouveau log en mode normal?
-
Bonjour, Norton a détecté le virus Winfixer sur mon PC, j'ai suivi la procédure du message de Poillux_63 du 25 Août 2005. Vous trouverez ci dessous le rapport Hijackthis. Merci de me dire ce que je dois faire. Logfile of HijackThis v1.99.1 Scan saved at 22:50:08, on 04/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE D:\LOGICIEL\Hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe" O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Moniteur Fax-Voix.lnk = C:\OLIFAXVX\MONITEUR.EXE O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - https://scan.safety.live.com/resource/downl...lscbase3401.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141305489515 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1141320056171 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDSched.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe