Ai je un virus ?????

marina -  
aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur -
Bonjour tous le monde

Voila j'aimerais savoir si quelqu'un pourrais voir si g des virus Platform: Windows 98
Windows version: 4.10.2222 A
Username: Utilisateur
Processor: Pentium
Working memory: 228796 KB free
Guard: active

Version information:
AVWIN.DLL : 6.32.00.51 561192 04.11.2005 12:58:52
AVEWIN32.DLL : 6.33.0.75 1008128 07.01.2006 13:11:08
SYS_RW16.DLL : 6.19.0 12800 25.10.2004 12:33:28
SYS_RW32.DLL : 6.19.0 16384 25.10.2004 12:33:28
AVGCTRL.EXE : 6.32.00.04 127031 04.11.2005 12:58:52
AVGUARD.VXD : 6.33.0.75 565527 07.01.2006 13:11:08
AVPACK32.DLL : 6.32.00.02 319528 04.11.2005 12:58:52
AVGETVER.DLL : 6.30.00.00 24576 28.01.2005 18:10:20
AVSHLEXT.DLL : 6.30.00.01 40960 28.01.2005 18:10:22
AVSched32.EXE : 6.32.00.01 110632 20.09.2005 14:16:24
AVSched32.DLL : 6.30.00.00 122880 01.02.2005 11:24:10
AVREG.DLL : 6.31.00.05 41000 07.09.2005 16:34:50
AVRep.DLL : 6.33.00.100 1617960 07.01.2006 13:11:10
INETUPD.EXE : 6.32.00.53 262203 04.11.2005 12:58:52
INETUPD.DLL : 6.32.00.53 143360 04.11.2005 12:58:52
MFC42.DLL : 6.00.8447.0 995383 05.05.1999 22:22:00
MSVCRT.DLL : 6.10.8293.0 278581 24.05.2000 13:12:04
CTL3D32.DLL : 2.31.000 45056 05.05.1999 22:22:00
CTL3DV2.DLL : 2.31.000 27632 05.05.1999 22:22:00

Configuration file:

Name of configuration file: C:\PROGRAM FILES\AVPERSONAL\AVWIN.INI
Name of report file: C:\PROGRAM FILES\AVPERSONAL\LOGFILES\AVWIN.LOG
Start path: C:\PROGRAM FILES\AVPERSONAL
Command line:
Start mode: unknown

Mode of report file:
[ ] Do not create report
[X] Overwrite report
[ ] Append new report

Data in report file:
[X] Infected files
[ ] Infected files with paths
[ ] All scanned files
[ ] Full information

Abridge report file:
[ ] Abridge report file

Warnings in report:
[X] Access denied/file locked
[X] Wrong file size in directory
[X] Wrong creation time in directory
[ ] COM file is too large
[X] Invalid start address
[X] Invalid EXE header
[X] Possibly damaged

Summary report:
[X] Create summary report
Output file: AVWIN.ACT
Maximum number of entries: 100

Where to search:
[X] Memory
[X] Boot record of selected drives
[ ] Report unknown boot sectors
[ ] All files
[X] Program files
Extensions: .386 .?HT* .ACM .ADE .ADP .ANI .APP .ASD .ASF .ASP .ASX .AWX .AX .BAS .BAT .BIN .BOO .CDF .CHM .CLASS .CMD .CNV .COM .CPL .CRT .CSH .DLL .DLO .DO? .DRV .EMF .EML .EXE* .FLT .FOT .HLP .HT* .INF .INI .INS .ISP .J2K .JAR .JFF .JFI .JFIF .JIF .JMH .JNG .JP2 .JPE .JPEG .JPG .JS* .JSE .LNK .MD? .MDB .MOD .MS? .NWS .OBJ .OCX .OLB .OSD .OV? .PCD .PDR .PGM .PHP .PIF .PKG .PL* .PNG .POT .PPS .PPT .PRG .RAR .REG .RPL .RTF .SBF .SCR .SCRIPT .SCT .SH .SHA .SHB .SHS .SHTM* .SPL .SWF .SYS .TLB .TMP .TSP .TTF .URL .VB? .VCS .VLM .VXD .VXO .WIZ .WLL .WMD .WMF .WMS .WMZ .WPC .WSC .WSF .WSH .WWK .XL? .XML .ZIP

Response in case of a detection:
[X] Repair with prompt
[ ] Repair without prompt
[ ] Delete with prompt
[ ] Delete without prompt
[ ] Write in report file only
[X] Acoustic alarm

Response in case of destroyed files:
[X] Delete with prompt
[ ] Delete without prompt
[ ] Ignore

Response in case of destroyed files:
[X] No change
[ ] Current system time
[ ] Correct date

Drag&drop settings:
[X] Scan subdirectories

Profile settings:
[X] Scan subdirectories

Archive options
[X] Search archive
[X] All archive types

Miscellaneous options:
Temporary path: %TEMP% -> C:\WINDOWS\TEMP
[X] Overwrite infected files
[ ] Detect idle time
[X] Allow interruptions of scan
[X] Load AVWin®/9x Guard on System start

General settings:
[X] Save options on exiting AntiVir
Priority: medium

Drives:
A: Floppy drive
C: Hard disk
D: Hard disk
E: CD-ROM

Start of scan: lundi 15 mai 2006 17:32

Memory test OK
Master boot record of hard disk HD0 OK
Boot record of drive C: OK
Boot record of drive D: OK

C:\WIN98
DRIVER14.CAB
ArchiveType: CAB (Microsoft)
NOTE! The archive is created by multiple volumes
C:\WINDOWS\Temporary Internet Files\Content.IE5\4D63G12J
wchatsign[1].cab
ArchiveType: CAB (Microsoft)
--> Interface Chat Wanadoo.osd
NOTE! Bad header
--> fr\wanadoo\a\a.class
NOTE! Bad header
--> fr\wanadoo\a\b.class
NOTE! Bad header
--> fr\wanadoo\a\c.class
NOTE! Bad header
--> fr\wanadoo\a\d.class
NOTE! Bad header
--> fr\wanadoo\a\e.class
NOTE! Bad header
--> fr\wanadoo\a\a\a.class
NOTE! Bad header
--> fr\wanadoo\a\a\b.class
NOTE! Bad header
--> fr\wanadoo\a\a\c.class
NOTE! Bad header
--> fr\wanadoo\b\a.class
NOTE! Bad header
--> fr\wanadoo\b\aa.class
NOTE! Bad header
--> fr\wanadoo\b\ab.class
NOTE! Bad header
--> fr\wanadoo\b\b.class
NOTE! Bad header
--> fr\wanadoo\b\c.class
NOTE! Bad header
--> fr\wanadoo\b\d.class
NOTE! Bad header
--> fr\wanadoo\b\e.class
NOTE! Bad header
--> fr\wanadoo\b\f.class
NOTE! Bad header
--> fr\wanadoo\b\g.class
NOTE! Bad header
--> fr\wanadoo\b\h.class
NOTE! Bad header
--> fr\wanadoo\b\i.class
NOTE! Bad header
--> fr\wanadoo\b\j.class
NOTE! Bad header
--> fr\wanadoo\b\k.class
NOTE! Bad header
--> fr\wanadoo\b\l.class
NOTE! Bad header
--> fr\wanadoo\b\m.class
NOTE! Bad header
--> fr\wanadoo\b\n.class
NOTE! Bad header
--> fr\wanadoo\b\o.class
NOTE! Bad header
--> fr\wanadoo\b\p.class
NOTE! Bad header
--> fr\wanadoo\b\q.class
NOTE! Bad header
--> fr\wanadoo\b\r.class
NOTE! Bad header
--> fr\wanadoo\b\s.class
NOTE! Bad header
--> fr\wanadoo\b\t.class
NOTE! Bad header
--> fr\wanadoo\b\u.class
NOTE! Bad header
--> fr\wanadoo\b\v.class
NOTE! Bad header
--> fr\wanadoo\b\w.class
NOTE! Bad header
--> fr\wanadoo\b\x.class
NOTE! Bad header
--> fr\wanadoo\b\y.class
NOTE! Bad header
--> fr\wanadoo\b\z.class
NOTE! Bad header
--> fr\wanadoo\b\a\a.class
NOTE! Bad header
--> fr\wanadoo\b\a\b.class
NOTE! Bad header
--> fr\wanadoo\b\a\c.class
NOTE! Bad header
--> fr\wanadoo\b\a\d.class
NOTE! Bad header
--> fr\wanadoo\view\a.class
NOTE! Bad header
--> fr\wanadoo\view\b.class
NOTE! Bad header
--> fr\wanadoo\view\c.class
NOTE! Bad header
--> fr\wanadoo\view\Chat$COMClassObject.class
NOTE! Bad header
--> fr\wanadoo\view\Chat.class
NOTE! Bad header
--> fr\wanadoo\view\ChatBeanInfo.class
NOTE! Bad header
--> fr\wanadoo\view\d$1.class
NOTE! Bad header
--> fr\wanadoo\view\d$10.class
NOTE! Bad header
--> fr\wanadoo\view\d$11.class
NOTE! Bad header
--> fr\wanadoo\view\d$12.class
NOTE! Bad header
--> fr\wanadoo\view\d$13.class
NOTE! Bad header
--> fr\wanadoo\view\d$14.class
NOTE! Bad header
--> fr\wanadoo\view\d$15.class
NOTE! Bad header
--> fr\wanadoo\view\d$16.class
NOTE! Bad header
--> fr\wanadoo\view\d$17.class
NOTE! Bad header
--> fr\wanadoo\view\d$2.class
NOTE! Bad header
--> fr\wanadoo\view\d$3.class
NOTE! Bad header
--> fr\wanadoo\view\d$4.class
NOTE! Bad header
--> fr\wanadoo\view\d$5.class
NOTE! Bad header
--> fr\wanadoo\view\d$6.class
NOTE! Bad header
--> fr\wanadoo\view\d$7.class
NOTE! Bad header
--> fr\wanadoo\view\d$8.class
NOTE! Bad header
--> fr\wanadoo\view\d$9.class
NOTE! Bad header
--> fr\wanadoo\view\d.class
NOTE! Bad header
--> fr\wanadoo\view\e.class
NOTE! Bad header
--> fr\wanadoo\view\f.class
NOTE! Bad header
--> fr\wanadoo\view\g.class
NOTE! Bad header
--> fr\wanadoo\view\h.class
NOTE! Bad header
--> fr\wanadoo\view\i$a.class
NOTE! Bad header
--> fr\wanadoo\view\i.class
NOTE! Bad header
--> fr\wanadoo\view\j.class
NOTE! Bad header
--> fr\wanadoo\view\k.class
NOTE! Bad header
--> fr\wanadoo\view\l.class
NOTE! Bad header
--> fr\wanadoo\view\m.class
NOTE! Bad header
--> fr\wanadoo\view\n.class
NOTE! Bad header
--> fr\wanadoo\view\o.class
NOTE! Bad header
--> fr\wanadoo\view\p.class
NOTE! Bad header
--> fr\wanadoo\view\q$1.class
NOTE! Bad header
--> fr\wanadoo\view\q$2.class
NOTE! Bad header
--> fr\wanadoo\view\q$3.class
NOTE! Bad header
--> fr\wanadoo\view\q$4.class
NOTE! Bad header
--> fr\wanadoo\view\q.class
NOTE! Bad header
--> fr\wanadoo\view\r$1.class
NOTE! Bad header
--> fr\wanadoo\view\r$2.class
NOTE! Bad header
--> fr\wanadoo\view\r$3.class
NOTE! Bad header
--> fr\wanadoo\view\r$4.class
NOTE! Bad header
--> fr\wanadoo\view\r$5.class
NOTE! Bad header
--> fr\wanadoo\view\r$6.class
NOTE! Bad header
--> fr\wanadoo\view\r$7.class
NOTE! Bad header
--> fr\wanadoo\view\r$8.class
NOTE! Bad header
--> fr\wanadoo\view\r$9.class
NOTE! Bad header
--> fr\wanadoo\view\r.class
NOTE! Bad header
--> fr\wanadoo\view\s.class
NOTE! Bad header
--> fr\wanadoo\view\t.class
NOTE! Bad header
--> fr\wanadoo\view\u.class
NOTE! Bad header
--> fr\wanadoo\view\a\a.class
NOTE! Bad header
--> fr\wanadoo\view\b\a.class
NOTE! Bad header
--> fr\wanadoo\view\b\aa.class
NOTE! Bad header
--> fr\wanadoo\view\b\ab.class
NOTE! Bad header
--> fr\wanadoo\view\b\ac.class
NOTE! Bad header
--> fr\wanadoo\view\b\ad.class
NOTE! Bad header
--> fr\wanadoo\view\b\ae.class
NOTE! Bad header
--> fr\wanadoo\view\b\af.class
NOTE! Bad header
--> fr\wanadoo\view\b\ag.class
NOTE! Bad header
--> fr\wanadoo\view\b\ah.class
NOTE! Bad header
--> fr\wanadoo\view\b\b.class
NOTE! Bad header
--> fr\wanadoo\view\b\c.class
NOTE! Bad header
--> fr\wanadoo\view\b\d$a.class
NOTE! Bad header
--> fr\wanadoo\view\b\d.class
NOTE! Bad header
--> fr\wanadoo\view\b\e.class
NOTE! Bad header
--> fr\wanadoo\view\b\f.class
NOTE! Bad header
--> fr\wanadoo\view\b\g.class
NOTE! Bad header
--> fr\wanadoo\view\b\h$a.class
NOTE! Bad header
--> fr\wanadoo\view\b\h.class
NOTE! Bad header
--> fr\wanadoo\view\b\i.class
NOTE! Bad header
--> fr\wanadoo\view\b\j.class
NOTE! Bad header
--> fr\wanadoo\view\b\k.class
NOTE! Bad header
--> fr\wanadoo\view\b\l.class
NOTE! Bad header
--> fr\wanadoo\view\b\m.class
NOTE! Bad header
--> fr\wanadoo\view\b\n.class
NOTE! Bad header
--> fr\wanadoo\view\b\o.class
NOTE! Bad header
--> fr\wanadoo\view\b\p.class
NOTE! Bad header
--> fr\wanadoo\view\b\q.class
NOTE! Bad header
--> fr\wanadoo\view\b\r.class
NOTE! Bad header
--> fr\wanadoo\view\b\s.class
NOTE! Bad header
--> fr\wanadoo\view\b\t.class
NOTE! Bad header
--> fr\wanadoo\view\b\u.class
NOTE! Bad header
--> fr\wanadoo\view\b\v.class
NOTE! Bad header
--> fr\wanadoo\view\b\w.class
NOTE! Bad header
--> fr\wanadoo\view\b\x$a.class
NOTE! Bad header
--> fr\wanadoo\view\b\x$b.class
NOTE! Bad header
--> fr\wanadoo\view\b\x.class
NOTE! Bad header
--> fr\wanadoo\view\b\y.class
NOTE! Bad header
--> fr\wanadoo\view\b\z.class
NOTE! Bad header
--> fr\wanadoo\view\c\a.class
NOTE! Bad header
--> fr\wanadoo\view\c\b$a.class
NOTE! Bad header
--> fr\wanadoo\view\c\b.class
NOTE! Bad header
--> fr\wanadoo\view\c\c.class
NOTE! Bad header
--> fr\wanadoo\view\c\d$1.class
NOTE! Bad header
--> fr\wanadoo\view\c\d.class
NOTE! Bad header
--> fr\wanadoo\view\c\e.class
NOTE! Bad header
--> fr\wanadoo\view\c\f.class
NOTE! Bad header
--> fr\wanadoo\view\c\g.class
NOTE! Bad header
--> fr\wanadoo\view\c\h.class
NOTE! Bad header
--> fr\wanadoo\view\c\i.class
NOTE! Bad header
--> fr\wanadoo\view\c\j.class
NOTE! Bad header
--> fr\wanadoo\view\c\k.class
NOTE! Bad header
--> fr\wanadoo\view\c\l.class
NOTE! Bad header
--> fr\wanadoo\view\c\m.class
NOTE! Bad header
--> fr\wanadoo\view\c\n.class
NOTE! Bad header
--> fr\wanadoo\view\c\o.class
NOTE! Bad header
--> fr\wanadoo\view\c\p$a.class
NOTE! Bad header
--> fr\wanadoo\view\c\p.class
NOTE! Bad header
--> fr\wanadoo\view\c\q.class
NOTE! Bad header
--> fr\wanadoo\view\c\r.class
NOTE! Bad header
--> fr\wanadoo\view\c\s.class
NOTE! Bad header
--> fr\wanadoo\view\c\t$a.class
NOTE! Bad header
--> fr\wanadoo\view\c\t.class
NOTE! Bad header
--> fr\wanadoo\view\c\u.class
NOTE! Bad header
--> img\!.gif
NOTE! Bad header
--> img\.#arrow_left.removed.gif
NOTE! Bad header
--> img\.#arrow_right.removed.gif
NOTE! Bad header
--> img\aide.gif
NOTE! Bad header
--> img\attendre.gif
NOTE! Bad header
--> img\away.gif
NOTE! Bad header
--> img\away_gui.gif
NOTE! Bad header
--> img\banane.gif
NOTE! Bad header
--> img\biere.gif
NOTE! Bad header
--> img\blank.gif
NOTE! Bad header
--> img\blue_arrow_left.gif
NOTE! Bad header
--> img\blue_arrow_right.gif
NOTE! Bad header
--> img\bombe.gif
NOTE! Bad header
--> img\cadeau.gif
NOTE! Bad header
--> img\cafe.gif
NOTE! Bad header
--> img\cd.gif
NOTE! Bad header
--> img\chagrin.gif
NOTE! Bad header
--> img\channel_icon.gif
NOTE! Bad header
--> img\chien.gif
NOTE! Bad header
--> img\clindoeil.gif
NOTE! Bad header
--> img\close.gif
NOTE! Bad header
--> img\coeur.gif
NOTE! Bad header
--> img\creer_un_salon.gif
NOTE! Bad header
--> img\danger.gif
NOTE! Bad header
--> img\danger2.gif
NOTE! Bad header
--> img\dial_priv.gif
NOTE! Bad header
--> img\droits.gif
NOTE! Bad header
--> img\ecouterasvv.gif
NOTE! Bad header
--> img\enregistrer.gif
NOTE! Bad header
--> img\entrer_dans_un_salon.gif
NOTE! Bad header
--> img\envoimv.gif
NOTE! Bad header
--> img\fantome.gif
NOTE! Bad header
--> img\fille.gif
NOTE! Bad header
--> img\fleurbleu.gif
NOTE! Bad header
--> img\foot.gif
NOTE! Bad header
--> img\gateau.gif
NOTE! Bad header
--> img\give_op.gif
NOTE! Bad header
--> img\give_voice.gif
NOTE! Bad header
--> img\halloween.gif
NOTE! Bad header
--> img\hotdog.gif
NOTE! Bad header
--> img\ignorer.gif
NOTE! Bad header
--> img\ignorer_gui.gif
NOTE! Bad header
--> img\images.gif
NOTE! Bad header
--> img\interdit.gif
NOTE! Bad header
--> img\inviter.gif
NOTE! Bad header
--> img\langue.gif
NOTE! Bad header
--> img\listasvv.gif
NOTE! Bad header
--> img\liste_ignore.gif
NOTE! Bad header
--> img\mail.gif
NOTE! Bad header
--> img\maison.gif
NOTE! Bad header
--> img\mecontent.gif
NOTE! Bad header
--> img\messages_pv.gif
NOTE! Bad header
--> img\messages_pv_alt.gif
NOTE! Bad header
--> img\mobile.gif
NOTE! Bad header
--> img\mobilegris.gif
NOTE! Bad header
--> img\moderer.gif
NOTE! Bad header
--> img\mode_change.gif
NOTE! Bad header
--> img\monasvv.gif
NOTE! Bad header
--> img\musique.gif
NOTE! Bad header
--> img\oeil.gif
NOTE! Bad header
--> img\ok.gif
NOTE! Bad header
--> img\op.gif
NOTE! Bad header
--> img\options_pv.gif
NOTE! Bad header
--> img\options_salon.gif
NOTE! Bad header
--> img\orage.gif
NOTE! Bad header
--> img\peacelove.gif
NOTE! Bad header
--> img\picto_listbox.gif
NOTE! Bad header
--> img\picto_systeme.gif
NOTE! Bad header
--> img\picto_texte.gif
NOTE! Bad header
--> img\pict_video_mess.gif
NOTE! Bad header
--> img\pleure.gif
NOTE! Bad header
--> img\plus_ignorer.gif
NOTE! Bad header
--> img\poisson.gif
NOTE! Bad header
--> img\poubelle.gif
NOTE! Bad header
--> img\pv.gif
NOTE! Bad header
--> img\pv_alert.gif
NOTE! Bad header
--> img\remove_ban.gif
NOTE! Bad header
--> img\reveil.gif
NOTE! Bad header
--> img\revenir.gif
NOTE! Bad header
--> img\robot.gif
NOTE! Bad header
--> img\search.gif
NOTE! Bad header
--> img\sourire.gif
NOTE! Bad header
--> img\sourire2.gif
NOTE! Bad header
--> img\take_op.gif
NOTE! Bad header
--> img\take_voice.gif
NOTE! Bad header
--> img\tchat_options.gif
NOTE! Bad header
--> img\telephone.gif
NOTE! Bad header
--> img\terre.gif
NOTE! Bad header
--> img\topic_change.gif
NOTE! Bad header
--> img\triste.gif
NOTE! Bad header
--> img\triste2.gif
NOTE! Bad header
--> img\v.gif
NOTE! Bad header
--> img\vache.gif
NOTE! Bad header
--> img\voice.gif
NOTE! Bad header
--> img\voiture.gif
NOTE! Bad header
--> img\v_sms.gif
NOTE! Bad header
--> img\w_sms.gif
NOTE! Bad header
--> img\yellow_arrow_left.gif
NOTE! Bad header
--> img\yellow_arrow_right.gif
NOTE! Bad header
--> img\yingyang.gif
NOTE! Bad header
--> img\_i_invite.gif
NOTE! Bad header
--> img\_i_inviteliste.gif
NOTE! Bad header
--> img\_i_reporter.gif
NOTE! Bad header
--> img\_i_reporterliste.gif
NOTE! Bad header
--> img\_i_reporterq.gif
NOTE! Bad header
--> img\_me.gif
NOTE! Bad header
--> img\_pj.gif
NOTE! Bad header
--> img\_pmk.gif
NOTE! Bad header
--> img\_pp.gif
NOTE! Bad header
--> img\_pq.gif
NOTE! Bad header
--> img\_ptn.gif
NOTE! Bad header
--> img\buttons\blue_but_left_down.gif
NOTE! Bad header
--> img\buttons\blue_but_left_up.gif
NOTE! Bad header
--> img\buttons\blue_but_midd_down.gif
NOTE! Bad header
--> img\buttons\blue_but_midd_up.gif
NOTE! Bad header
--> img\buttons\blue_but_right_down.gif
NOTE! Bad header
--> img\buttons\blue_but_right_up.gif
NOTE! Bad header
--> img\buttons\but_left_down.gif
NOTE! Bad header
--> img\buttons\but_left_up.gif
NOTE! Bad header
--> img\buttons\but_midd_down.gif
NOTE! Bad header
--> img\buttons\but_midd_up.gif
NOTE! Bad header
--> img\buttons\but_right_down.gif
NOTE! Bad header
--> img\buttons\but_right_up.gif
NOTE! Bad header
--> img\buttons\onglet_left.gif
NOTE! Bad header
--> img\buttons\onglet_mid.gif
NOTE! Bad header
--> img\buttons\onglet_right.gif
NOTE! Bad header
--> img\buttons\scrl_l_0.gif
NOTE! Bad header
--> img\buttons\scrl_l_1.gif
NOTE! Bad header
--> img\buttons\scrl_r_0.gif
NOTE! Bad header
--> img\buttons\scrl_r_1.gif
NOTE! Bad header
--> img\buttons\yellow_but_left_down.gif
NOTE! Bad header
--> img\buttons\yellow_but_left_up.gif
NOTE! Bad header
--> img\buttons\yellow_but_midd_down.gif
NOTE! Bad header
--> img\buttons\yellow_but_midd_up.gif
NOTE! Bad header
--> img\buttons\yellow_but_right_down.gif
NOTE! Bad header
--> img\buttons\yellow_but_right_up.gif
NOTE! Bad header
--> languages\client_fr.txt
NOTE! Bad header
--> languages\image_fr.txt
NOTE! Bad header
--> languages\server_fr.txt
NOTE! Bad header
--> languages\smiley_fr.txt
NOTE! Bad header
--> languages\userlist_fr.txt
NOTE! Bad header

3 réponses

  1. marina
     
    Logfile of HijackThis v1.99.1
    Scan saved at 18:06:40, on 15/05/06
    Platform: Windows 98 SE (Win9x 4.10.2222A)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\SYSTEM\KERNEL32.DLL
    C:\WINDOWS\SYSTEM\MSGSRV32.EXE
    C:\WINDOWS\SYSTEM\MPREXE.EXE
    C:\WINDOWS\SYSTEM\MSTASK.EXE
    C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
    C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE
    C:\WINDOWS\SYSTEM\mmtask.tsk
    C:\WINDOWS\EXPLORER.EXE
    C:\WINDOWS\TASKMON.EXE
    C:\WINDOWS\SYSTEM\SYSTRAY.EXE
    C:\WINDOWS\SYSTEM\VTTIMER.EXE
    C:\PROGRAM FILES\VIAUDIOI\SBADECK\ADECK.EXE
    C:\PROGRAM FILES\WANADOO\CNXMON.EXE
    C:\PROGRAM FILES\MESSAGER WANADOO\STARTMESSAGER.EXE
    C:\PROGRAM FILES\WANADOO\TASKBARICON.EXE
    C:\WINDOWS\LOADQM.EXE
    C:\PROGRAM FILES\AVPERSONAL\AVSCHED32.EXE
    C:\PROGRAM FILES\WINAMP\WINAMPA.EXE
    C:\PROGRAM FILES\AVPERSONAL\AVGCTRL.EXE
    C:\PROGRAM FILES\ZONE LABS\ZONEALARM\ZLCLIENT.EXE
    C:\WINDOWS\SYSTEM\QTTASK.EXE
    C:\PROGRAM FILES\MSN APPS\UPDATER\01.03.0000.1005\FR\MSNAPPAU.EXE
    C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE
    C:\PROGRAM FILES\SAGEM\SAGEM F@ST 800-840\DSLMON.EXE
    C:\PROGRAM FILES\NIKON\NKVIEW5\NKVMON.EXE
    C:\PROGRAM FILES\FOTOSTATION EASY\FOTOSTATION EASY AUTOLAUNCH.EXE
    C:\PROGRAM FILES\ULEAD SYSTEMS\ULEAD PHOTO EXPRESS 2 SE\CALCHECK.EXE
    C:\WINDOWS\SYSTEM\WMIEXE.EXE
    C:\PROGRAM FILES\OPENOFFICE.ORG 2.0\PROGRAM\SOFFICE.EXE
    C:\WINDOWS\SYSTEM\DDHELP.EXE
    C:\PROGRAM FILES\OPENOFFICE.ORG 2.0\PROGRAM\SOFFICE.BIN
    C:\WINDOWS\SYSTEM\TAPISRV.EXE
    C:\WINDOWS\SYSTEM\RNAAPP.EXE
    C:\PROGRAM FILES\WANADOO\ESPACEWANADOO.EXE
    C:\PROGRAM FILES\WANADOO\COMCOMP.EXE
    C:\PROGRAM FILES\WANADOO\WATCH.EXE
    C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
    C:\WINDOWS\BUREAU\HIJACKTHIS.EXE
    C:\WINDOWS\NOTEPAD.EXE

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=55729C844D6A45819CAD368B3E178C9F
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - - (no file)
    F1 - win.ini: run=hpfsched
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
    O2 - BHO: (no name) - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - (no file)
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\FR\MSNTB.DLL
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\PROGRAM FILES\MSN APPS\ST\01.03.0000.1005\EN-XU\STMAIN.DLL
    O2 - BHO: Reactivator - {AC2E8306-D24E-4082-8669-7781499F4E03} - C:\PROGRA~1\EVERYT~1.1\EVERYCOM.DLL
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
    O3 - Toolbar: Every Toolbar - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - C:\PROGRA~1\EVERYT~1.1\EVERYCOM.DLL
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRAM FILES\YAHOO!\COMPANION\INSTALLS\CPN\YT.DLL
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.5000.1021\FR\MSNTB.DLL
    O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
    O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
    O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
    O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
    O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
    O4 - HKLM\..\Run: [AudioDeck] C:\PROGRAM FILES\VIAUDIOI\SBADECK\ADECK.EXE 1
    O4 - HKLM\..\Run: [CriticalUpdate] C:\WINDOWS\SYSTEM\wucrtupd.exe -startup
    O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\WANADOO\CnxMon.exe
    O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\TaskbarIcon.exe
    O4 - HKLM\..\Run: [LoadQM] loadqm.exe
    O4 - HKLM\..\Run: [AVSCHED32] C:\PROGRAM FILES\AVPERSONAL\AVSCHED32.EXE /min
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [AVGCtrl] C:\PROGRAM FILES\AVPERSONAL\AVGCTRL.EXE /min
    O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    O4 - HKLM\..\Run: [adiras] adiras.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
    O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe
    O4 - HKLM\..\Run: [msnappau] "c:\program files\MSN Apps\Updater\01.03.0000.1005\fr\msnappau.exe"
    O4 - HKLM\..\Run: [Firewall] "C:\Program Files\WinAntiVirus Pro 2006\FWSvc.exe" /win98
    O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
    O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
    O4 - HKLM\..\RunServices: [KB891711] C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE
    O4 - HKLM\..\RunServices: [TrueVector] C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE -service
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    O4 - Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView5\NkvMon.exe
    O4 - Startup: FotoStation Easy AutoLaunch.lnk = C:\Program Files\FotoStation Easy\FotoStation Easy AutoLaunch.exe
    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
    O4 - Startup: Photo Express Calendar Checker SE.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\CalCheck.exe
    O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO
    O8 - Extra context menu item: &Every Toolbar Search - res://C:\PROGRA~1\EVERYT~1.1\EVERYCOM.DLL/GoRSDN.dll.htm
    O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: Interface Chat Wanadoo - http://chat14.x-echo.com/version6/Applet/wchatsign.cab
    O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
    0
  2. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    hello

    commence par faire ceci :

    3/ - Ewido (download)- gratuit même après 14 jours d’essai
    http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
    Copie/COLLE le rapport généré sur ce forum

    4/ - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
    Télécharge ici :
    https://www.ccleaner.com/ccleaner/download
    Tutorial ici:
    https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    6/ - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
    https://assiste.com/404_La_page_demandee_n_existe_pas.php
    http://www.bitdefender.fr/scan8/ie.html
    Copie/COLLE le rapport entier
    0
  3. aranjuez31 Messages postés 8161 Date d'inscription   Statut Contributeur 354
     
    re
    ouvre ton hijack
    coche et fixe ces lignes /

    O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun

    O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe

    O4 - HKLM\..\Run: [SystemTray] VTTimer.exe

    O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

    O4 - HKLM\..\Run: [AudioDeck] C:\PROGRAM FILES\VIAUDIOI\SBADECK\ADECK.EXE 1

    O4 - HKLM\..\Run: [CriticalUpdate] C:\WINDOWS\SYSTEM\wucrtupd.exe -startup

    O4 - HKLM\..\Run: [LoadQM] loadqm.exe

    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe

    O4 - HKLM\..\Run: [adiras] adiras.exe

    O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime

    O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe

    O4 - HKLM\..\Run: [msnappau] "c:\program files\MSN Apps\Updater\01.03.0000.1005\fr\msnappau.exe"

    O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

    O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe

    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

    O4 - Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

    O4 - Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView5\NkvMon.exe

    O4 - Startup: FotoStation Easy AutoLaunch.lnk = C:\Program Files\FotoStation Easy\FotoStation Easy AutoLaunch.exe

    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe

    O4 - Startup: Photo Express Calendar Checker SE.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\CalCheck.exe
    +
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: Interface Chat Wanadoo - http://chat14.x-echo.com/version6/Applet/wchatsign.cab
    ====
    n ai pas encore fini
    0