Oin-Oin

Alors nanoscan n'a rien détecté, j'ai fait un totalscan par la suite, il n'a trouvé que des cookies, je mets le rapport quand même : ;*********************************************************************************************************************************************************************************** ANALYSIS: 2008-02-24 21:12:28 PROTECTIONS: 1 MALWARE: 26 SUSPECTS: 0 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== avast! antivirus 4.7.1098 [VPS 080223-0] 4.7.1098 No Yes ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@doubleclick[1].txt 00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.doubleclick.net/] 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@atdmt[3].txt 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@atdmt[1].txt 00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.atdmt.com/] 00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.tradedoubler.com/] 00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.tradedoubler.com/] 00145405 Cookie/RealMedia TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.247realmedia.com/] 00145457 Cookie/FastClick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.fastclick.net/] 00145457 Cookie/FastClick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.fastclick.net/] 00145457 Cookie/FastClick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.fastclick.net/] 00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@mediaplex[1].txt 00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.mediaplex.com/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.xiti.com/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@xiti[1].txt 00167753 Cookie/Statcounter TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.statcounter.com/] 00168048 Cookie/Overture TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.perf.overture.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[ad.yieldmanager.com/] 00168061 Cookie/Apmebf TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.apmebf.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@serving-sys[2].txt 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.serving-sys.com/] 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@bs.serving-sys[2].txt 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.bs.serving-sys.com/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@weborama[2].txt 00168106 Cookie/Weborama TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.weborama.fr/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.weborama.fr/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.weborama.fr/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.weborama.fr/] 00168109 Cookie/Adtech TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.adtech.de/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[fl01.ct2.comclick.com/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[fl01.ct2.comclick.com/] 00168116 Cookie/Comclick TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[fl01.ct2.comclick.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.advertising.com/] 00169190 Cookie/Advertising TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.advertising.com/] 00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[statse.webtrendslive.com/] 00170495 Cookie/PointRoll TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@ads.pointroll[2].txt 00170554 Cookie/Overture TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.overture.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172221 Cookie/Zedo TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.zedo.com/] 00172449 Cookie/MetriWeb TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@metriweb[1].txt 00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.bluestreak.com/] 00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@bluestreak[2].txt 00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.adrevolver.com/] 00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.adrevolver.com/] 00207936 Cookie/Adviva TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.adviva.net/] 00207936 Cookie/Adviva TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@adviva[2].txt 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Cookies\oin-oin@smartadserver[1].txt 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No E:\Documents and Settings\Oin-Oin\Application Data\Mozilla\Firefox\Profiles\s0alzou2.default\cookies.txt[.smartadserver.com/] ;=================================================================================================================================================================================== SUSPECTS Location ;=================================================================================================================================================================================== ;===================================================================================================================================================================================

whoho ! quel rapidité ! alors panda en ligne ne marche qu'a moitié... explication : je le lance, il cherche un moment il me dit je sais plus quoi genre "autoriser vous panda a trifouiller votre pc) il veux activer un/des ActiveX et c'est la que ca plante , il le trouve pas il recommence et ainsi de suite. note : panda ne veux pas travailler sur mozilla qui est mon navigateur par défaut, je passe donc par IE, peut-être que le problème est la. bon je teste nanoscan ps : "désactive le guard antivir avant le scan" euh... ben j'ai désinstaller antivir comme dit dans la procédure, j'ai Avast, donc...

Bonjour... 19h45...bonsoir les gens. après avoir suivi les instructions de votre dossier "Pré-Nettoyage d'un PC infecté, procédure pré-HijackThis", je vous envoie le rapport hijack. A noter que après le scan antivir (qui a duré plus de 3h30,e je sais pas si c'est normal en mode échec), je n'ai pas trouver (et donc terminer) les 4 processus cités (AVGUARD.exe, AVSCHED.exe, AVWUPSRV.exe, AVGNT.exe) Mon pc rame depuis environ 4-5 mois, j'ai essayer bon nombres d'antivirus auparavant, j'ai augmenté la mémoire (passé de 512 mo a 1.5 go), essayé Panda, et ca veux toujours pas. Je paraphraserai la princesse Leia : "Aidez-moi, Zebulon, vous etes notre seul espoir" merci pour l'aide que vous pourrez m'apporter. Joie et bonheur sur vos couches. Logfile of HijackThis v1.99.1 Scan saved at 19:33:05, on 24/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Running processes: E:\WINDOWS\System32\smss.exe E:\WINDOWS\system32\winlogon.exe E:\WINDOWS\system32\services.exe E:\WINDOWS\system32\lsass.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\System32\svchost.exe E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe E:\Program Files\Alwil Software\Avast4\ashServ.exe E:\WINDOWS\Explorer.EXE E:\WINDOWS\system32\RunDll32.exe E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe E:\WINDOWS\system32\ctfmon.exe E:\WINDOWS\system32\spoolsv.exe E:\WINDOWS\system32\HPZipm12.exe E:\WINDOWS\system32\svchost.exe E:\Program Files\Windows Live\Messenger\usnsvc.exe E:\Documents and Settings\Oin-Oin\Bureau\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [avast!] E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe O4 - HKCU\..\Run: [MsnMsgr] "E:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Picasa Media Detector] E:\Program Files\Picasa2\PicasaMediaDetector.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O11 - Options group: [iNTERNATIONAL] International* O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - E:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - WgaLogon.dll (file missing) O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - E:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - E:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - E:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NMIndexingService - Unknown owner - E:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - E:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)