Sujet Précédent Sujet Suivant

SOS Trojan.elitebar

Résolu/Fermé
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008 - 29 janv. 2006 à 00:34
Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009 - 31 janv. 2006 à 14:43
Bonjour à tous,

je fais appel aux bonnes volontés, j'ai un problème avec mon Norton Antivirus qui m'affiche toutes les minutes une alerte de virus concernant Trojan.elitebar
il a beau me dire qu'il l'a détecté et supprimer il revient quand même tout le temps et ça commence à devenir agaçant
Je lance un SOS, AIDEZ MOI (et mon PC aussi !)
merci d'avance

4 réponses

Réponse 1 / 4
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
29 janv. 2006 à 00:47
bsr

1 - telech, instal, scan et COLLE rapport de
ewido (dowload)
http://www.ewido.net/fr/download/
-------
2 - scan online with
http://www.bitdefender.fr/bd/site/search.php#
et COLLE rapport
-------
3 - à venir.....
0
Réponse 2 / 4
speed_dragon
29 janv. 2006 à 00:59
pour deleter un trojan, il est préférable d'etre en mode sans echec et par la suite le deleter
0
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
29 janv. 2006 à 01:05
bsr
Avant de faire un hijack
il faut nettoyer un max
le sans échec est utilisé qd des blems se présentent
merci le pro
0
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008 > aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006
29 janv. 2006 à 10:41
bonjour,

voici les résultats obtenus avec ewido:

+ Résultats du scan:

HKLM\SOFTWARE\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Active Alert -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Active Alert\cf1 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper\cf1 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf1 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf2 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf4 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{21FFB6C0-0DA1-11D5-A9D5-00500413153C} -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{39DA2444-065F-47CB-B27C-CCB1A39C06B7} -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{511F9316-771B-4953-A268-1C36DA667FE9} -> Dialer.Generic : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{7C559105-9ECF-42b8-B3F7-832E75EDD959} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{8F4E5661-F99E-4B3E-8D85-0EA71C0748E4} -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{9EB320CE-BE1D-4304-A081-4B4665414BEF} -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{CEA206E8-8057-4A04-ACE9-FF0D69A92297} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CLSID -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CurVer -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj.1 -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{0985C112-2562-46F2-8DA6-92648BA4630F} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{1C01D150-91A4-4DE0-9BF8-A35D1BDF1001} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{AA4939C3-DECA-4A48-A454-97CD587C0EF5} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0} -> Dialer.Generic : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl -> Spyware.MediaMotor : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\IObjSafety.DemoCtl\Clsid -> Spyware.MediaMotor : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\ISTx.Installer -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\ISTx.Installer\CLSID -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\MEDIATICKETSINSTALLER.MediaTicketsInstallerCtrl.1 -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\PLOT.PlotCtrl.1 -> Spyware.EliteBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\TypeLib\{0BE10B0D-B4DB-4693-9B1F-9AEAD54D17DC} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\TypeLib\{40B1D454-9CA4-43CC-86AA-CB175EAC52FB} -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\TypeLib\{67907B3C-A6EF-4A01-99AD-3FCD5F526429} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\ClickSpring -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator\dyn -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator\dyn\GCH -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator\dyn\GCH\_gi -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator\dyn\GCH\_ts -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\Gator\stat -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\GInternet -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\Gator.com\GInternet\Proxy -> Spyware.Gator : Nettoyer et sauvegarder
HKLM\SOFTWARE\ISTsvc -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\ISTsvc\history -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{511F9316-771B-4953-A268-1C36DA667FE9} -> Dialer.Generic : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7C559105-9ECF-42B8-B3F7-832E75EDD959} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{9EB320CE-BE1D-4304-A081-4B4665414BEF} -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/istactivex.dll -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\AMeOpt -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer Active Alert -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISTsvc -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\media-motor -> Spyware.MediaMotor : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MediaTickets -> Spyware.PurityScan : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rotue -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Policies\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKU\S-1-5-21-4047794315-3492221237-46531228-1006\Software\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKU\S-1-5-21-4047794315-3492221237-46531228-1006\Software\IST -> Spyware.ISTBar : Nettoyer et sauvegarder
HKU\S-1-5-21-4047794315-3492221237-46531228-1006\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKU\S-1-5-21-4047794315-3492221237-46531228-1006\Software\Policies\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\CDIFOLMV\0006_regular[1].cab/istactivex.dll -> Downloader.IstBar : Nettoyer et sauvegarder
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\CDABK9EN\prompt[1].htm -> Downloader.IstBar.j : Nettoyer et sauvegarder
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\KBS3YRW1\MediaTicketsInstaller[1].cab/MediaTicketsInstaller.ocx -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\KBS3YRW1\prompt[1].htm -> Downloader.IstBar.j : Nettoyer et sauvegarder
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\KBS3YRW1\MediaTicketsInstaller[2].cab/MediaTicketsInstaller.ocx -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\system32\drivers\df_kmd.sys -> Trojan.Rootkit.Agent.af : Nettoyer et sauvegarder
C:\WINDOWS\system32\oins.exe -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\Temp\ICD3.tmp\MediaTicketsInstaller.ocx -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\Temp\ICD7.tmp\MediaTicketsInstaller.ocx -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\MediaTicketsInstaller.ocx -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\fra_allgl.exe -> Dialer.Creazione.q : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\fra_allgl.exe -> Dialer.Creazione.q : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWFX5V_0001_LPNetInstaller.exe -> Not-A-Virus.Downloader.Agent.d : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWFX5V_0001_LPNetInstaller.exe -> Not-A-Virus.Downloader.Agent.d : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.4\UWFX5V_0001_LPNetInstaller.exe -> Not-A-Virus.Downloader.Agent.d : Nettoyer et sauvegarder
C:\WINDOWS\etb\nt_hide79.dll -> Trojan.EliteBar.h : Nettoyer et sauvegarder
C:\WINDOWS\mtuninst.exe -> Spyware.MediaTickets : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Local Settings\Temp\Cookies\anthony@www.smartadserver[1].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Local Settings\Temp\Cookies\anthony@tradedoubler[2].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Local Settings\Temp\Cookies\anthony@as1.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Local Settings\Temp\dkwF193.tmp.tst -> Trojan.EliteBar.d : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@estat[1].txt -> Spyware.Cookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@7search[1].txt -> Spyware.Cookie.7search : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@atdmt[2].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@weborama[1].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@statse.webtrendslive[1].txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@as1.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@symantec.122.2o7[1].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@adtech[2].txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@fl01.ct2.comclick[1].txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@as-eu.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@wreport.weborama[1].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@www.smartadserver[1].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Anthony\Cookies\anthony@sel.as-eu.falkag[1].txt -> Spyware.Cookie.Falkag : Nettoyer et sauvegarder
C:\Program Files\ISTsvc -> Spyware.ISTBar : Nettoyer et sauvegarder
C:\Program Files\Internet Optimizer -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
C:\Program Files\Internet Optimizer\update -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769687.exe -> Trojan.Small.cy : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769688.exe -> Downloader.Dyfuca.dp : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769693.EXE -> Downloader.IstBar : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769694.exe -> Downloader.Dyfuca.EI : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769695.exe -> Spyware.WinAD : Nettoyer et sauvegarder
C:\System Volume Information\_restore{C4B7AD79-6A73-46E1-A68A-83199C24949F}\RP150\A1769705.exe -> Downloader.IstBar.ij : Nettoyer et sauvegarder
C:\pokapoka79.exe -> Trojan.EliteBar : Nettoyer et sauvegarder


et ceux obtenu de bitdefender :

BitDefender Online Scanner



Rapport d'analyse généré à: Sun, Jan 29, 2006 - 10:22:33





Voie d'analyse: C:\;D:\;G:\;







Statistiques

Temps
00:53:30

Fichiers
197388

Directoires
2708

Secteurs de boot
6

Archives
2084

Paquets programmes
26545




Résultats

Virus identifiés
22

Fichiers infectés
1440

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
2875




Info sur les moteurs

Définition virus
254080

Version des moteurs
AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)

Analyse des plugins
13

Archive des plugins
39

Unpack des plugins
4

E-mail plugins
6

Système plugins
1




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
*;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\WINDOWS\backup\T\51009000.DAT=>(Embedded EXE g)
Infecté par: Backdoor.Poebot.B

C:\WINDOWS\backup\T\51009000.DAT=>(Embedded EXE g)
Echec de la désinfection

C:\WINDOWS\backup\T\51009000.DAT=>(Embedded EXE g)
Supprimé

C:\WINDOWS\backup\T\51009000.DAT
Echec de la mise à jour

C:\Program Files\eeuo\rcwu.exe
Infecté par: Trojan.Downloader.Agent.XH

C:\Program Files\eeuo\rcwu.exe
Echec de la désinfection

C:\Program Files\eeuo\rcwu.exe
Echec de la suppression

C:\Program Files\Norton AntiVirus\Quarantine\155608E5.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\155608E5.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\155608E5.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\17AC0C54.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\17AC0C54.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\17AC0C54.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1A010FC2.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1A010FC2.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1A010FC2.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1C571331.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1C571331.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1C571331.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1EA96CA3.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1EA96CA3.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1EA96CA3.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\21021A0D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\21021A0D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\21021A0D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2354737F.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2354737F.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2354737F.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\25AA76EE.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\25AA76EE.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\25AA76EE.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\27FF7A5C.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\27FF7A5C.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\27FF7A5C.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2A557DCA.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2A557DCA.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2A557DCA.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2CA7573C.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2CA7573C.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2CA7573C.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2F0004A7.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2F0004A7.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2F0004A7.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\31535E19.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\31535E19.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\31535E19.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\33A86187.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\33A86187.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\33A86187.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\35FE64F6.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\35FE64F6.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\35FE64F6.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\38503E68.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\38503E68.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\38503E68.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3AA641D6.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3AA641D6.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3AA641D6.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3CFB4545.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3CFB4545.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3CFB4545.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3F5148B3.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3F5148B3.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3F5148B3.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\41A32225.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\41A32225.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\41A32225.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\43F92593.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\43F92593.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\43F92593.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\464E2902.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\464E2902.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\464E2902.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\48A42C70.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\48A42C70.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\48A42C70.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4AF605E2.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4AF605E2.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4AF605E2.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4D4C0950.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4D4C0950.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4D4C0950.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4FA20CBF.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4FA20CBF.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4FA20CBF.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\51F7102D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\51F7102D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\51F7102D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\544A699F.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\544A699F.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\544A699F.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\569F6D0D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\569F6D0D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\569F6D0D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\58F5707C.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\58F5707C.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\58F5707C.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5B4749EE.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5B4749EE.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5B4749EE.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5D9D4D5C.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5D9D4D5C.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5D9D4D5C.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5FF250CA.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5FF250CA.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5FF250CA.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\62485439.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\62485439.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\62485439.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\64B15392.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\64B15392.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\64B15392.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\66FD590B.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\66FD590B.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\66FD590B.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\694F327D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\694F327D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\694F327D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6BA85FE8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6BA85FE8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6BA85FE8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6DFA3959.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6DFA3959.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6DFA3959.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\70503CC8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\70503CC8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\70503CC8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\72A64036.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\72A64036.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\72A64036.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\74F819A8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\74F819A8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\74F819A8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\774E1D17.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\774E1D17.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\774E1D17.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\79A32085.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\79A32085.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\79A32085.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\7BF923F3.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\7BF923F3.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\7BF923F3.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\7E4B7D65.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\7E4B7D65.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\7E4B7D65.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\00A100D4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\00A100D4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\00A100D4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\02F60442.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\02F60442.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\02F60442.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\05495DB4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\05495DB4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\05495DB4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\079E6122.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\079E6122.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\079E6122.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0A1B5C66.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0A1B5C66.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0A1B5C66.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0C6D35D8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0C6D35D8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0C6D35D8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0EC33946.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0EC33946.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0EC33946.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\111512B8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\111512B8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\111512B8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\136B1626.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\136B1626.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\136B1626.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\15C11995.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\15C11995.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\15C11995.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\18137307.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\18137307.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\18137307.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1A687675.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1A687675.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1A687675.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1CBE79E3.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1CBE79E3.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1CBE79E3.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1F105355.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1F105355.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1F105355.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\216900C0.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\216900C0.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\216900C0.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\23BC5A32.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\23BC5A32.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\23BC5A32.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\26115DA0.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\26115DA0.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\26115DA0.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\28643712.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\28643712.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\28643712.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2AB93A81.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2AB93A81.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2AB93A81.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2D0F3DEF.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2D0F3DEF.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2D0F3DEF.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2F611761.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2F611761.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2F611761.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\31B71ACF.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\31B71ACF.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\31B71ACF.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\340C1E3E.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\340C1E3E.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\340C1E3E.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\365F77B0.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\365F77B0.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\365F77B0.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\38B47B1E.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\38B47B1E.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\38B47B1E.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3B0A7E8C.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3B0A7E8C.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3B0A7E8C.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3D5C57FE.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3D5C57FE.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3D5C57FE.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3FB25B6D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3FB25B6D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3FB25B6D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\42075EDB.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\42075EDB.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\42075EDB.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\445D624A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\445D624A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\445D624A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\46B365B8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\46B365B8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\46B365B8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\49053F2A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\49053F2A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\49053F2A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4B71687F.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4B71687F.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4B71687F.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4DC017F5.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4DC017F5.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4DC017F5.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\50137167.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\50137167.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\50137167.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\526874D5.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\526874D5.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\526874D5.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\55572D9A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\55572D9A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\55572D9A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\577F653B.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\577F653B.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\577F653B.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\59D23EAD.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\59D23EAD.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\59D23EAD.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5C27421B.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5C27421B.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5C27421B.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5E7A1B8D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5E7A1B8D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5E7A1B8D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\60CF1EFC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\60CF1EFC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\60CF1EFC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6325226A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6325226A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6325226A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\65777BDC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\65777BDC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\65777BDC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\67CD7F4A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\67CD7F4A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\67CD7F4A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6A2202B9.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6A2202B9.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6A2202B9.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6C755C2B.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6C755C2B.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6C755C2B.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\6ECA5F99.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\6ECA5F99.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\6ECA5F99.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\71206308.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\71206308.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\71206308.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\73756676.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\73756676.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\73756676.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\75C83FE8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\75C83FE8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\75C83FE8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\781D4356.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\781D4356.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\781D4356.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\7A7346C5.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\7A7346C5.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\7A7346C5.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\7CC94A33.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\7CC94A33.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\7CC94A33.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\7F1B23A5.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\7F1B23A5.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\7F1B23A5.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\01712713.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\01712713.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\01712713.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\03C30085.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\03C30085.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\03C30085.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\061803F4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\061803F4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\061803F4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\086B5D66.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\086B5D66.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\086B5D66.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0AC40AD0.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0AC40AD0.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0AC40AD0.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0D166442.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0D166442.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0D166442.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\0F683DB4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\0F683DB4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\0F683DB4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\11BE4123.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\11BE4123.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\11BE4123.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\14144491.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\14144491.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\14144491.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\16661E03.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\16661E03.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\16661E03.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\18BB2171.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\18BB2171.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\18BB2171.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1B1124E0.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1B1124E0.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1B1124E0.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1D637E52.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1D637E52.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1D637E52.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\1FBC2BBC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\1FBC2BBC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\1FBC2BBC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\220F052E.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\220F052E.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\220F052E.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2464089D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2464089D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2464089D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\26B7620F.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\26B7620F.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\26B7620F.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\290C657D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\290C657D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\290C657D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2B6268EC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2B6268EC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2B6268EC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\2DB4425D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\2DB4425D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\2DB4425D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\300A45CC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\300A45CC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\300A45CC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\325C1F3E.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\325C1F3E.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\325C1F3E.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\34B222AC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\34B222AC.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\34B222AC.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3707261B.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3707261B.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3707261B.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\395A7F8D.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\395A7F8D.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\395A7F8D.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3BAF02FB.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3BAF02FB.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3BAF02FB.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\3E050669.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\3E050669.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\3E050669.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\40575FDB.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\40575FDB.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\40575FDB.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\42AD634A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\42AD634A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\42AD634A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\450266B8.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\450266B8.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\450266B8.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4755402A.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4755402A.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4755402A.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\49AA4398.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\49AA4398.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\49AA4398.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4C004707.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4C004707.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4C004707.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\4E522079.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\4E522079.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\4E522079.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\50A823E7.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\50A823E7.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\50A823E7.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\52FD2755.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\52FD2755.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\52FD2755.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\55532AC4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\55532AC4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\55532AC4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\57A50436.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\57A50436.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\57A50436.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\59FB07A4.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\59FB07A4.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\59FB07A4.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5C510B12.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5C510B12.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5C510B12.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\5EA36484.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\5EA36484.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\5EA36484.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\60F867F3.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\60F867F3.tst=>(Quarantine-2)
Echec de la désinfection

C:\Program Files\Norton AntiVirus\Quarantine\60F867F3.tst=>(Quarantine-2)
Supprimé

C:\Program Files\Norton AntiVirus\Quarantine\63C77CDC.tst=>(Quarantine-2)
Infecté par: Trojan.EliteBar.D

C:\Program Files\Norton AntiVirus\Quarantine\63C77CDC.tst=>(Quarantine-2)
Echec de la désinfection

C:
0
Réponse 3 / 4
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
29 janv. 2006 à 15:27
bjr
----
fais "rechercher" et supprime
rcwu.exe
dans
C:\Program Files\eeuo\rcwu.exe
------------
telecharge
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
suis ces explications
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
------
ce qui est en quarantaine et backup est inoffensif

0
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008
29 janv. 2006 à 20:19
merci bcp, voici les résultats du scan de hijackthis :


Logfile of HijackThis v1.99.1
Scan saved at 20:11:29, on 29/01/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Winamp\Winampa.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
G:\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eeuo\rcwu.exe
C:\WINDOWS\System32\w?nspool.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\U.S.R.TurboGWLAN\USRWLANG.exe
C:\Program Files\Internet Explorer\iexplore.exe
G:\eMule\emule.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.search101online.com/sp2.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.search101online.com/sp2.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\PERFECT SERIES\Optical MOUSE\4.0\MOUSE32A.EXE
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe
O4 - HKLM\..\Run: [] C:\WINDOWS\System32\a7abgd\zlip.exe
O4 - HKLM\..\Run: [Bgfqizv] C:\Program Files\Hnuqz\Rnec.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [Picasa Media Detector] G:\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Sabn] "C:\Program Files\eeuo\rcwu.exe" -vt mt
O4 - HKCU\..\Run: [Lgxdsj] C:\WINDOWS\System32\w?nspool.exe
O4 - HKCU\..\Run: [] C:\WINDOWS\System32\a7abgd\zlip.exe
O4 - HKCU\..\Run: [ChkMail] p<‹
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: U.S. Robotics 802.11g Wireless Network Utility.lnk = ?
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: v3cab - http://searchmiracle.com/cab/v3cab.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540013} (CInstall Class) - http://adserver.sharewareonline.com/adserver/Install.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {7149E79C-DC19-4C5E-A53C-A54DDF75EEE9} (IObjSafety.DemoCtl) - http://cabs.media-motor.net/cabs/joysaver.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c11.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/spsp29953.01noopt/spyspottercabinstall.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
0
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008
29 janv. 2006 à 20:21
je le réécrit le message au cas où


Logfile of HijackThis v1.99.1
Scan saved at 20:11:29, on 29/01/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Program Files\Acer\Notebook Manager\almxptray.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Winamp\Winampa.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
G:\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\eeuo\rcwu.exe
C:\WINDOWS\System32\w?nspool.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\U.S.R.TurboGWLAN\USRWLANG.exe
C:\Program Files\Internet Explorer\iexplore.exe
G:\eMule\emule.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.search101online.com/sp2.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.search101online.com/sp2.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [LManager] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [AcerNotebookManager] C:\Program Files\Acer\Notebook Manager\almxptray.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\PERFECT SERIES\Optical MOUSE\4.0\MOUSE32A.EXE
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe
O4 - HKLM\..\Run: [] C:\WINDOWS\System32\a7abgd\zlip.exe
O4 - HKLM\..\Run: [Bgfqizv] C:\Program Files\Hnuqz\Rnec.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [Picasa Media Detector] G:\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Sabn] "C:\Program Files\eeuo\rcwu.exe" -vt mt
O4 - HKCU\..\Run: [Lgxdsj] C:\WINDOWS\System32\w?nspool.exe
O4 - HKCU\..\Run: [] C:\WINDOWS\System32\a7abgd\zlip.exe
O4 - HKCU\..\Run: [ChkMail] p<‹
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: U.S. Robotics 802.11g Wireless Network Utility.lnk = ?
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: v3cab - http://searchmiracle.com/cab/v3cab.cab
O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540013} (CInstall Class) - http://adserver.sharewareonline.com/adserver/Install.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {7149E79C-DC19-4C5E-A53C-A54DDF75EEE9} (IObjSafety.DemoCtl) - http://cabs.media-motor.net/cabs/joysaver.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c11.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/spsp29953.01noopt/spyspottercabinstall.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
0
Réponse 4 / 4
Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009 106
29 janv. 2006 à 20:34
Bonsoir,

Les trojans et spywares ont fait des dégats.

1/ Télécharge CounterSpy sur :

http://www.01net.com/telecharger/windows/Utilitaire/antivirus/fiches/31393.html

2/ Mets le programme à jour, scannes en mode Full System (par défaut) et supprime ce qu'il trouve (+ vide la quarantaine si il y a des fichiers).

3/ Après avoir installé CounterSpy, tu vas dans :
System Tools -> My PC Checkup -> Start -> Tu sélectionnes tout -> Continue (ça équivaut à la vaccination de Spybot mais en + balaise).

Bonne chance.

++
0
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008
30 janv. 2006 à 21:18
Bsr

Merci bcp. J'ai bien fait counterspy,voici le rapport :

Spyware Scan Details
Start Date: 30/01/2006 20:20:00
End Date: 30/01/2006 20:54:24
Total Time: 34 mins 24 secs

Detected spyware

Trojan.Startup.NameShifter.Aida Trojan more information...
Status: Deleted

Infected files detected
c:\program files\eeuo\rcwu.exe

Infected registry entries detected
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Sabn


SearchMiracle.EliteBar Browser Plug-in more information...
Details: Adds a search hijacker toolbar to Internet Explorer called Elite Bar.
Status: Deleted

Infected files detected
c:\documents and settings\anthony\favoris\finances & business\human resources.url
c:\documents and settings\anthony\favoris\health & insurance\term life.url
c:\documents and settings\anthony\favoris\health & insurance\dental insurance.url
c:\documents and settings\anthony\favoris\homelife & travel\international travel.url
c:\windows\etb\xml\adult.tbr
c:\windows\etb\xml\default.tbr
c:\windows\etb\xml\search.mnu
c:\windows\etb\xml\images\findemails.bmp
c:\windows\etb\xml\images\ringtones.bmp
c:\windows\etb\xml\images\dating.bmp
c:\windows\etb\xml\images\casino.bmp
c:\windows\etb\xml\images\50kwincash2.bmp
c:\windows\etb\xml\images\virus.bmp
c:\windows\etb\xml\images\searchpeople.bmp
c:\windows\etb\xml\images\shop.bmp
c:\windows\etb\etb.ini
c:\windows\etb\etl
c:\documents and settings\anthony\favoris\casino & carrers\start a business.url
c:\documents and settings\anthony\favoris\.url

Infected registry entries detected
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shareddlls c:\windows\downloaded program files\v3.dll
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab\Contains\Files C:\WINDOWS\Downloaded Program Files\v3.dll
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab\DownloadInformation CODEBASE http://searchmiracle.com/cab/v3cab.cab
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab\DownloadInformation OSD C:\WINDOWS\Downloaded Program Files\OSD25.OSD
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab\InstalledVersion 1,0,0,1
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab\InstalledVersion LastModified Sat, 27 Aug 2005 11:24:32 GMT
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab v3cab
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab SystemComponent 0
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\v3cab Installer MSICD
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab\Contains\Files C:\WINDOWS\Downloaded Program Files\v3.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab\DownloadInformation CODEBASE http://searchmiracle.com/cab/v3cab.cab
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab\DownloadInformation OSD C:\WINDOWS\Downloaded Program Files\OSD25.OSD
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab\InstalledVersion 1,0,0,1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab\InstalledVersion LastModified Sat, 27 Aug 2005 11:24:32 GMT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab SystemComponent 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\v3cab Installer MSICD
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform iebar
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\Control
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\InprocServer32 C:\WINDOWS\DOWNLO~1\v3.dll
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\InprocServer32 ThreadingModel Apartment
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\MiscStatus\1 131473
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\MiscStatus 0
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\ProgID PLOT.PlotCtrl.1
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\ToolboxBitmap32 C:\WINDOWS\DOWNLO~1\v3.dll, 1
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\TypeLib {DF54D7DD-EA6F-11D4-ABF3-000102378429}
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD}\Version 1.0
HKEY_CLASSES_ROOT\clsid\{E2E40140-76F8-4763-83D5-B660107BABCD} {E2E40140-76F8-4763-83D5-B660107BABCD}
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer SearchURL http://www.search101online.com/sp2.php
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main Search Bar http://www.search101online.com/sp2.php
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform acc=none


WindUpdates.MediaGateway Adware more information...
Details: WindUpdates is responsible for downloading adware.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Media Gateway
HKEY_CLASSES_ROOT\MediaGatewayX.Installer
HKEY_CLASSES_ROOT\MediaGatewayX.Installer\CLSID {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}
HKEY_CLASSES_ROOT\MediaGatewayX.Installer MediaGatewayX.Installer
HKEY_CLASSES_ROOT\MediaGateway.Installer
HKEY_CLASSES_ROOT\MediaGateway.Installer\CLSID {1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}
HKEY_CLASSES_ROOT\MediaGateway.Installer\CurVer MediaGateway.Installer
HKEY_CLASSES_ROOT\MediaGateway.Installer Installer Class
HKEY_LOCAL_MACHINE\Software\microsoft\windows\currentversion\uninstall\Media Gateway
HKEY_LOCAL_MACHINE\Software\microsoft\windows\currentversion\uninstall\Media Gateway UninstallString C:\Program Files\Media Gateway\MediaGateway.exe /Remove
HKEY_LOCAL_MACHINE\Software\microsoft\windows\currentversion\uninstall\Media Gateway DisplayName Media Gateway
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll 1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll .Owner {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}
HKEY_CLASSES_ROOT\AppID\MediaGateway.EXE
HKEY_CLASSES_ROOT\AppID\MediaGateway.EXE AppID {735C5A0C-F79F-47A1-8CA1-2A2E482662A8}
HKEY_CLASSES_ROOT\CLSID\{D676F999-4608-4dc5-A135-4F51F4212739}
HKEY_CLASSES_ROOT\CLSID\{D676F999-4608-4dc5-A135-4F51F4212739} rsp 15E4C914295BCC3D6EACF6EF8D85B671BF440B51
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\LocalServer32 C:\PROGRA~1\MEDIAG~1\MEDIAG~1.EXE
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\ProgID MediaGateway.Installer
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\TypeLib {15696AE2-6EA4-47F4-BEA6-A3D32693EFC7}
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\VersionIndependentProgID MediaGateway.Installer
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C} Installer Class
HKEY_CLASSES_ROOT\CLSID\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C} AppID {735C5A0C-F79F-47A1-8CA1-2A2E482662A8}
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 ThreadingModel Apartment
HKEY_CLASSES_ROOT\clsid\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}
HKEY_CLASSES_ROOT\clsid\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll
HKEY_CLASSES_ROOT\clsid\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 ThreadingModel Apartment


Adw.RegClean32 Adware more information...
Details: Adw.RegClean32 is a program used to scan and fix registry errors.
Status: Deleted

Infected files detected
c:\documents and settings\anthony\application data\registry cleaner\regclean.ini
c:\program files\registry cleaner trial\rcs_enif.exe
c:\program files\registry cleaner trial\install.log


WindUpdates Browser Plug-in more information...
Status: Deleted

Infected files detected
c:\windows\system32\ide21201.vxd


MediaTickets CDT Spyware more information...
Details: Mediatickets is a spyware program that displays advertisements, reduces the security settings for the Trusted Sites zone in Internet Explorer, and attempts to fraudulently install trusted publishers.
Status: Deleted

Infected files detected
c:\windows\downloaded program files\mediaticketsinstaller.inf

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs C:\WINDOWS\Downloaded Program Files\MediaTicketsInstaller.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaTicketsInstaller.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaTicketsInstaller.ocx .Owner {9EB320CE-BE1D-4304-A081-4B4665414BEF}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MediaTicketsInstaller.ocx {9EB320CE-BE1D-4304-A081-4B4665414BEF}


ShopAtHome Spyware more information...
Details: ShopAtHome installs itself in the Winsock layer of your computer and redirects visits to merchant sites in order to take the affiliate fees from them automatically without your knowledge.
Status: Deleted

Infected files detected
c:\windows\downloaded program files\install.inf


AvenueMedia.DyFuCA.InternetOptimizer Browser Plug-in more information...
Details: DyFuCA Internet Optimizer is an adware which also hijacks your browser error page. It opens pop-up windows to display ads from its network sites periodically, also is known to update itself.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer SlowInfoCache
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer Changed 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSEM Update
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSEM Update DisplayName WSEM Update
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSEM Update UninstallString "C:\Program Files\Internet Optimizer\optimize.exe" /u 1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer Active Alert
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer Active Alert SlowInfoCache
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Internet Optimizer Active Alert Changed 0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks _{CFBFAE00-17A6-11D0-99CB-00C04FD64497}


IST.ISTbar.ActiveX Spyware more information...
Details: ISTactivex is an Internet Explorer hijacker, which modifies your homepages and searches without a user’s consent using an Internet Explorer toolbar.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shareddlls c:\windows\downloaded program files\istactivex.dll


IST.PowerScan Adware more information...
Details: PowerScan is advertised through in ordinary web pop-ups, but recently it started to install with help from the the ISTBar adware.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\main bandrest


IST.SlotchBar Toolbar more information...
Details: An adware toolbar program for affiliates to distrubute on sites. Affiliates get paid per install of the toolbar.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc SlowInfoCache
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc Changed 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs C:\WINDOWS\Downloaded Program Files\ISTactivex.dll


IST.ISTbar Browser Hijacker more information...
Details: ISTbar is an Internet Explorer Hijacker, which modifies your homepages and searches without a user’s consent using an Internet Explorer toolbar.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\windows\currentversion\run IST Service
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run IST Service
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shareddlls c:\windows\downloaded program files\istactivex.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run IST Service C:\Program Files\ISTsvc\istsvc.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc SlowInfoCache
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTsvc Changed 0


IST.XXXToolbar Toolbar more information...
Details: Adult adware search toolbar for Internet Explorer. XXXToolbar displays a number of pop-up ads when Internet Explorer is running.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run IST Service
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs C:\WINDOWS\Downloaded Program Files\ISTactivex.dll


WindUpdates.MediaAccess Adware more information...
Status: Deleted

Infected registry entries detected
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\LocalServer32 C:\PROGRA~1\MEDIAG~1\MEDIAG~1.EXE
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\ProgID MediaGateway.Installer
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\TypeLib {15696AE2-6EA4-47F4-BEA6-A3D32693EFC7}
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C}\VersionIndependentProgID MediaGateway.Installer
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C} Installer Class
HKEY_CLASSES_ROOT\clsid\{1E5F0D38-214B-4085-AD2A-D2290E6A2D2C} AppID {735C5A0C-F79F-47A1-8CA1-2A2E482662A8}
HKEY_LOCAL_MACHINE\Software\Media Gateway
HKEY_LOCAL_MACHINE\Software\Media Gateway zuk 0
HKEY_LOCAL_MACHINE\Software\Media Gateway param aebd84e5171866cce09ecf08b7014ca6d4460b418530376ad00f8dd9aa7fb0f626586714283d2ab9e3ab26:3262333636663636646564326536623864353437376237623236616162313265:msie:6:0:win:winxp:sp1:javascript
HKEY_LOCAL_MACHINE\Software\Media Gateway SetupCompleteURL 3F1DC0FA1778F9AEF1859914E6A43CF9514CB9536F9700EC4A38BFF1D6E27C77F0763E7FB925703B6C259E86ED953F17C97A805245C8EE25B8D0D7C8B7B159A7DF8A037B5F61F9F6F6
HKEY_LOCAL_MACHINE\Software\Media Gateway SetupCompleteTimeout 1128768740
HKEY_LOCAL_MACHINE\Software\Media Gateway LastUpdate 1138484102
HKEY_LOCAL_MACHINE\Software\Media Gateway reqcount 170
HKEY_LOCAL_MACHINE\Software\Media Gateway track 0
HKEY_LOCAL_MACHINE\Software\Media Gateway DownloadPath \temp
HKEY_LOCAL_MACHINE\Software\Media Gateway Language en
HKEY_LOCAL_MACHINE\Software\Media Gateway SoftwareTable 436D8EB9402BABFFB0F49002FEB138DB7435F775768219FC3D53D89F85C8593AAF6A613F9D4E3B550F03A095DD9F2F078716D10107FBED24A98BF4AACAD509D09CCB44560E23BFC4902026DA7EF75BEFE944E5E8BF67D3C6D3748BBA90709B707A177B
HKEY_LOCAL_MACHINE\Software\Media Gateway Request 436C84AE4139B9F9EBADFB69AE8467A41F51F55D678510FA043CE4A78EB02532AE3B3E75E433603B633A91CBA9C07A56DA44D5591C8CB470AE81C898F6EF05B1CE944B414A72B590B72B6AD56BFE10BFE50D81BFE03C98848529D3CBC7369136257848514896
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\ProxyStubClsid {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\ProxyStubClsid32 {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\TypeLib {15696AE2-6EA4-47F4-BEA6-A3D32693EFC7}
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\TypeLib Version 1.0
HKEY_CLASSES_ROOT\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9} IInstaller
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\ProxyStubClsid {00020424-0000-0000-C000-000000000046}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\ProxyStubClsid32 {00020424-0000-0000-C000-000000000046}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\TypeLib {15696AE2-6EA4-47F4-BEA6-A3D32693EFC7}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9}\TypeLib Version 1.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{00ADA225-EA6C-4FB3-82E8-68189201CCB9} IInstaller
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll
HKEY_CLASSES_ROOT\CLSID\{8FCDF9D9-A28B-480f-8C3D-581F119A8AB8}\InprocServer32 ThreadingModel Apartment


TinyBar Browser Hijacker more information...
Details: TinyBar is an Internet Explorer toolbar that adds registry entries that use the Windows system file shdocvw.dll to display a web page as a toolbar.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shareddlls c:\windows\downloaded program files\istactivex.dll


WinAD Adware more information...
Details: WinAd open pop-up windows, displaying german language content.
Status: Deleted

Infected registry entries detected
HKEY_CLASSES_ROOT\appid\{735c5a0c-f79f-47a1-8ca1-2a2e482662a8}
HKEY_CLASSES_ROOT\appid\{735c5a0c-f79f-47a1-8ca1-2a2e482662a8} MediaGateway
HKEY_CLASSES_ROOT\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}
HKEY_CLASSES_ROOT\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\0\win32 C:\Program Files\Media Gateway\MediaGateway.exe
HKEY_CLASSES_ROOT\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\FLAGS 0
HKEY_CLASSES_ROOT\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\HELPDIR C:\Program Files\Media Gateway\
HKEY_CLASSES_ROOT\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0 LoaderX 1.0 Type Library
HKEY_LOCAL_MACHINE\software\classes\appid\{735c5a0c-f79f-47a1-8ca1-2a2e482662a8}
HKEY_LOCAL_MACHINE\software\classes\appid\{735c5a0c-f79f-47a1-8ca1-2a2e482662a8} MediaGateway
HKEY_LOCAL_MACHINE\software\classes\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}
HKEY_LOCAL_MACHINE\software\classes\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\0\win32 C:\Program Files\Media Gateway\MediaGateway.exe
HKEY_LOCAL_MACHINE\software\classes\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\FLAGS 0
HKEY_LOCAL_MACHINE\software\classes\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0\HELPDIR C:\Program Files\Media Gateway\
HKEY_LOCAL_MACHINE\software\classes\typelib\{15696ae2-6ea4-47f4-bea6-a3d32693efc7}\1.0 LoaderX 1.0 Type Library
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\MediaGateway.EXE AppID {735C5A0C-F79F-47A1-8CA1-2A2E482662A8}
HKEY_LOCAL_MACHINE\SOFTWARE\Media Gateway DownloadPath \temp
HKEY_LOCAL_MACHINE\SOFTWARE\Media Gateway Language en


MediaMotor Trojan Downloader more information...
Details: Service that bundles and downloads spyware and adware programs for distribution.
Status: Deleted

Infected files detected
C:\WINDOWS\System32\objsafe.tlb
C:\WINDOWS\Downloaded Program Files\m67m.inf

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\Contains\Files C:\WINDOWS\System32\objsafe.tlb
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\Contains\Files C:\WINDOWS\Downloaded Program Files\mm81.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\DownloadInformation CODEBASE http://cabs.media-motor.net/cabs/joysaver.cab
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\DownloadInformation INF C:\WINDOWS\Downloaded Program Files\m67m.inf
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\InstalledVersion 6,3,0,0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\InstalledVersion LastModified Thu, 01 Sep 2005 10:26:26 GMT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9} SystemComponent 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9} Installer MSICD
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\Control
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\Implemented Categories\{7DD95801-9882-11CF-9FA9-00AA006C42C4}
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\Implemented Categories\{7DD95802-9882-11CF-9FA9-00AA006C42C4}
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\InprocServer32 C:\WINDOWS\Downloaded Program Files\mm81.ocx
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\InprocServer32 ThreadingModel Apartment
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\MiscStatus\1 131473
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\MiscStatus 0
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\ProgID IObjSafety.DemoCtl
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\ToolboxBitmap32 C:\WINDOWS\Downloaded Program Files\mm81.ocx, 30000
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\TypeLib {466C63AC-F26E-49F1-861A-E07DA768A46A}
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9}\VERSION 1.1
HKEY_CLASSES_ROOT\clsid\{7149E79C-DC19-4C5E-A53C-A54DDF75EEE9} IObjSafety.DemoCtl


Misc.Winsoftware.Winfixer Misc. more information...
Details: WinFixer is a disabled, data repair utility that nags the user to purchase it in order to fix the problems reported in its scan.
Status: Deleted

Infected files detected
c:\program files\fichiers communs\winsoftware\pcheck.dll

Infected registry entries detected
HKEY_CURRENT_USER\Software\WinSoftware
HKEY_CLASSES_ROOT\AppID\{8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\AppID\{8C65AEF6-E413-4314-815B-82717A3F1603} CheckProduct2
HKEY_CLASSES_ROOT\AppID\CheckProduct2.DLL
HKEY_CLASSES_ROOT\AppID\CheckProduct2.DLL AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CurVer CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct CheckProduct Class
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1 CheckProduct Class
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 ThreadingModel Both
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\ProgID CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\TypeLib {30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\VersionIndependentProgID CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B} CheckProduct Class
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B} AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\ProxyStubClsid {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\ProxyStubClsid32 {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\TypeLib {30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\TypeLib Version 1.0
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA} ICheckProduct
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\0\win32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\FLAGS 0
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\HELPDIR C:\Program Files\Fichiers communs\WinSoftware\
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0 CheckProduct2 1.0 Type Library
HKEY_LOCAL_MACHINE\SOFTWARE\WinSoftware


Misc.WinFixer Misc. more information...
Details: WinFixer is a disabled, data repair utility that nags the user to purchase it in order to fix the problems reported in its scan.
Status: Deleted

Infected files detected
c:\program files\fichiers communs\winsoftware\pcheck.dll

Infected registry entries detected
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CurVer CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct CheckProduct Class
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1 CheckProduct Class
HKEY_CURRENT_USER\Software\WinSoftware
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 ThreadingModel Both
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}\ProgID CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}\TypeLib {30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B}\VersionIndependentProgID CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B} CheckProduct Class
HKEY_CLASSES_ROOT\clsid\{C427B3E3-28DC-4001-9590-D99B6776119B} AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_LOCAL_MACHINE\Software\WinSoftware


ErrorGuard 2.5.0 Adware more information...
Details: ErrorGuard is a fake AntiSpyware. Displays popup/popunder ads that cannot be closed by clicking a clearly visible close button.
Status: Deleted

Infected files detected
C:/WINDOWS/Downloaded Program Files/Install.dll

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Install.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Install.dll .Owner {205FF73B-CA67-11D5-99DD-444553540013}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Install.dll {205FF73B-CA67-11D5-99DD-444553540013}


Adw.WinSoftware.WinAntiSpyware Adware more information...
Details: Adw.WinSoftware.WinAnitspyware is a rogue antispyware product which pesters users with scareware tactics to purchase the product.
Status: Deleted

Infected files detected
c:\program files\fichiers communs\winsoftware\pcheck.dll

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\CheckProduct2.DLL AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B} AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\0\win32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\FLAGS 0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\HELPDIR C:\Program Files\Fichiers communs\WinSoftware\
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0 CheckProduct2 1.0 Type Library
HKEY_CURRENT_USER\Software\WinSoftware
HKEY_CLASSES_ROOT\AppID\{8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\AppID\{8C65AEF6-E413-4314-815B-82717A3F1603} CheckProduct2
HKEY_CLASSES_ROOT\AppID\CheckProduct2.DLL
HKEY_CLASSES_ROOT\AppID\CheckProduct2.DLL AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct\CurVer CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct CheckProduct Class
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1\CLSID {C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CheckProduct2.CheckProduct.1 CheckProduct Class
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\InprocServer32 ThreadingModel Both
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\ProgID CheckProduct2.CheckProduct.1
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\TypeLib {30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B}\VersionIndependentProgID CheckProduct2.CheckProduct
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B} CheckProduct Class
HKEY_CLASSES_ROOT\CLSID\{C427B3E3-28DC-4001-9590-D99B6776119B} AppID {8C65AEF6-E413-4314-815B-82717A3F1603}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\ProxyStubClsid {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\ProxyStubClsid32 {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\TypeLib {30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA}\TypeLib Version 1.0
HKEY_CLASSES_ROOT\Interface\{4F79D1C5-24F9-4E59-8022-604D4B41D5CA} ICheckProduct
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\0\win32 C:\Program Files\Fichiers communs\WinSoftware\PCheck.dll
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\FLAGS 0
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0\HELPDIR C:\Program Files\Fichiers communs\WinSoftware\
HKEY_CLASSES_ROOT\TypeLib\{30ED49A5-CA6C-4918-B5F3-5E6818C91D8B}\1.0 CheckProduct2 1.0 Type Library
HKEY_LOCAL_MACHINE\SOFTWARE\WinSoftware


Trojan.vxgame Trojan more information...
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4781DAA6-4DE5-47A1-B02A-945F0D017A9E}\TypeLib Version 1.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0\0\win32 C:\WINDOWS\Downloaded Program Files\MediaTicketsInstaller.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0\FLAGS 2
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0\HELPDIR C:\WINDOWS\Downloaded Program Files
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0 MEDIATICKETSINSTALLERLib
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0\0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{5530D356-0063-41B9-B20D-E9D799E8D907}\1.0\0\win32 C:\WINDOWS\Downloaded Program Files\MediaTicketsInstaller.ocx


Spyspotter Potentially Unwanted Software more information...
Status: Deleted

Infected files detected
C:\WINDOWS\Downloaded Program Files\SETUP.INF

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0}\DownloadInformation CODEBASE http://download.spyspotter.com/spyspotter/spsp29953.01noopt/spyspottercabinstall.cab
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0}\DownloadInformation INF C:\WINDOWS\Downloaded Program Files\SETUP.INF
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0}\InstalledVersion 1,0,0,3
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0}\InstalledVersion LastModified Tue, 16 Aug 2005 18:29:29 GMT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} SystemComponent 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} Installer MSICD


180search Assistant Adware more information...
Details: 180search Assistant logs the web pages you visit, when you visit them and uploads the data to its servers.
Status: Deleted

Infected registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}\Contains\Files C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}\DownloadInformation CODEBASE http://static.zangocash.com/cab/Zango/ie/bridge-c11.cab
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}\InstalledVersion 0,0,0,1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}\InstalledVersion LastModified Fri, 23 Sep 2005 20:35:18 GMT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} SystemComponent 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} Installer MSICD


YourSiteBar Spyware more information...
Details: YourSiteBar from IST, the makers of numerous spyware threats, is an affiliate based marketing toolbar.
Status: Deleted

Infected registry entries detected
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main BandRest Never
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main BandRest Never


Radar Spy 1.0 Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@yourmedia[1].txt


Ajan 1.0 Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@xiti[1].txt


Weborama Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@weborama[1].txt


ClickBank Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@clickbank[1].txt


Claria.DashBar Cookie Cookie more information...
Details: DashBar cookie is a small text file placed on the user's computer after when visiting the Claria/GAIN DashBar website.
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@belnk[1].txt


ATDMT.com Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@atdmt[2].txt


QuestionMarket.com Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@questionmarket[1].txt


CGI-Bin Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@cgi-bin[1].txt


Cok.PriceBandit Cookie more information...
Status: Deleted

Infected cookies detected
c:\documents and settings\anthony\cookies\anthony@apmebf[2].txt
0
Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009 106
30 janv. 2006 à 21:21
Bonsoir anthony,

Je n'avais demandé aucun rapport...

Relis les manip. du poste < 8 > et applique les.

Tiens moi au courant quant à l'évolution de ton problème.

Occupé à oeuvrer, je dois y aller.

++
0
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354 > Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009
31 janv. 2006 à 00:39
hello kris & co

impressionnant le résultat de counterspy
vais le faire jouer sur mon pc- au cas où......
0
Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009 106 > aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006
31 janv. 2006 à 14:43
Hello l'ami aran

impressionnant le résultat de counterspy

Bah ouai, c'est le meilleur c'est tout, il suffit de s'avoir s'en servir...
J'vous l'avez dit depuis longtemps mais personne n'avais l'air de m'croire...

vais le faire jouer sur mon pc- au cas où......

Ok mais j'te file un tuyau, ça l'fra pas si tu as déjà Ad-Aware + SpyBot Search & Destroy + Spy catcher + a² free etc...
Enfin tu vois quoi, perso je pense qu'un bon antispyware suffit, pas besoin d'en avoir 50... (Suffit de faire des scans d'antispyware en ligne pour vérifier...)

Comme antispyware j'utilise seulement CounterSpy (voir fiche perso pour + d'info).

Bonne journée aran.

++
0
lerital013 Messages postés 18 Date d'inscription dimanche 29 janvier 2006 Statut Membre Dernière intervention 20 avril 2008 > Kristopher Messages postés 3731 Date d'inscription vendredi 18 novembre 2005 Statut Contributeur Dernière intervention 10 juillet 2009
31 janv. 2006 à 14:00
bjr,

je te remercie, le problème a l'air d'être résolu, peux tu me dire si j'ai bien compris comment fonctionne mon PC maintenant :

mon antivirus c'est tjs Norton non ?
les logiciels que j'ai téléchargé m'ont servi à virer les trojans et autres virus qui trainaient sur mon PC ?
Counterspy a vacciné mon PC contre les autres attaques et les nouvelles à venir ?
en fait la véritable question c'est qu'est ce qui fait que mon PC tourne bien et que j'ai pas de virus qui viennent après toutes les manip' qu'on a effectué.

merci de ta réponse.
0

Discussions similaires

[virus] trojan.elitebar et cmd.exe fou
arphen -
bernie61 -

4 réponses