Sujet Précédent Sujet Suivant

Erreur p2esocks_1049.dll

loutchoc Messages postés 6 Statut Membre -  
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité -
bonsoir,

j'ai windows xp et à l'ouverture de mon pc le message suivant apparait: erreur de chargement de p2esocks_1049.dll, qui peut me venir en aide?
Meri beaucoup

10 réponses

Réponse 1 / 10
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

c'est une infection !

Télécharge Blacklight (de F-Secure) :

https://www.f-secure.com/en

et sauvegarde le sur ton Bureau.

Double-clique blbeta.exe et accepte la licence ; laisse [X]scan through Windows Explorer activé ; clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse

a+
0
Réponse 2 / 10
loutchoc Messages postés 6 Statut Membre
 
merci beaucoup
je fais la manip et te donnerai le contenu du rapport
0
Réponse 3 / 10
loutchoc Messages postés 6 Statut Membre
 
voici ce qui s'affiche sur fsbl.log
05/15/06 23:42:16 [Info]: BlackLight Engine 1.0.36 initialized
05/15/06 23:42:16 [Info]: OS: 5.1 build 2600 (Service Pack 2)
05/15/06 23:42:16 [Note]: 7019 4
05/15/06 23:42:16 [Note]: 7005 0
05/15/06 23:42:27 [Note]: 7006 0
05/15/06 23:42:27 [Note]: 7011 1348
05/15/06 23:42:27 [Note]: 7026 0
05/15/06 23:42:27 [Note]: 7026 0
05/15/06 23:42:35 [Note]: FSRAW library version 1.7.1015
05/15/06 23:45:51 [Note]: 2000 1006
05/15/06 23:45:51 [Note]: 2000 1006
05/15/06 23:45:51 [Note]: 2000 1006
05/15/06 23:45:51 [Note]: 2000 1006
05/15/06 23:46:24 [Note]: 7007 0
0
Réponse 4 / 10
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

suis cette procedure stp :

https://www.commentcamarche.net/faq/2490-supprimer-les-adwares-publicites-intempestives-pop-up-etc

++

***j'ai decidé d'être heureux parce que c'est bon pour la santé ! ( Voltaire )***
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
loutchoc Messages postés 6 Statut Membre
 
Merci pour ton aide
J'ai suivi la procédure et voici les trois rapport
BITFENDER:
Scanned File
Status

C:\Documents and Settings\All Users\Application Data\LIES SEND LOVE VC\extra site.exe
Infected with: Trojan.Swizzor.AX

C:\Documents and Settings\All Users\Application Data\LIES SEND LOVE VC\extra site.exe
Disinfection failed

C:\Documents and Settings\All Users\Application Data\LIES SEND LOVE VC\extra site.exe
Deleted

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\2F9D0953d01=>wise0016
Detected with: Application.Adware.NewDotNet.B.Dropper

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\2F9D0953d01=>wise0016
Deleted

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\2F9D0953d01
Update failed

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01=>wise0042
Detected with: Application.Adware.NewDotNet.B.Dropper

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01=>wise0042
Deleted

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01
Update failed

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01=>wise0088
Suspected of: Trojan.Downloader.QQHelper.P

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01=>wise0088
Disinfection failed

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01=>wise0088
Deleted

C:\Documents and Settings\neo.GUIGUI\Local Settings\Application Data\Mozilla\Firefox\Profiles\wmh3y5p0.default\Cache\B0048B9Cd01
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\0C7B4BCF.exe=>(Quarantine-2)
Infected with: Trojan.Lopad.C

C:\Program Files\Norton AntiVirus\Quarantine\0C7B4BCF.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0C7B4BCF.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\0E542CD5.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Istbar.JM

C:\Program Files\Norton AntiVirus\Quarantine\0E542CD5.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\0E542CD5.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1A0D68B3.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\1A0D68B3.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1A0D68B3.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1AC558E4.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\1AC558E4.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1AC558E4.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1ACE3417.exe=>(Quarantine-2)
Infected with: Trojan.Dialer.EG

C:\Program Files\Norton AntiVirus\Quarantine\1ACE3417.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1ACE3417.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1B9A04EC.cla=>(Quarantine-2)
Infected with: Trojan.Clicker.Spywad.B

C:\Program Files\Norton AntiVirus\Quarantine\1B9A04EC.cla=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1B9A04EC.cla=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1C4113C5.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\1C4113C5.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1C4113C5.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1D601E19.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\1D601E19.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1D601E19.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2377355E=>(Quarantine-2)=>(JAVASCRIPT 7)
Infected with: Trojan.Clicker.Js.Linker.H

C:\Program Files\Norton AntiVirus\Quarantine\2377355E=>(Quarantine-2)=>(JAVASCRIPT 7)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\2377355E=>(Quarantine-2)=>(JAVASCRIPT 7)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2377355E=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\2377355E
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\240139D4.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.CZ

C:\Program Files\Norton AntiVirus\Quarantine\240139D4.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\240139D4.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\286067D6.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.IstBar.IJ

C:\Program Files\Norton AntiVirus\Quarantine\286067D6.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2E5179FA.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.Ieax.A

C:\Program Files\Norton AntiVirus\Quarantine\2E5179FA.tmp=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\2E5179FA.tmp=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\306C5A11.tmp=>(Quarantine-2)
Infected with: Win32.Wurmark.K@mm

C:\Program Files\Norton AntiVirus\Quarantine\306C5A11.tmp=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\306C5A11.tmp=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\36784A75.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\Program Files\Norton AntiVirus\Quarantine\36784A75.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\36784A75.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\3EE52BB7.wmf
Infected with: Exploit.Win32.WMF-PFV.G

C:\Program Files\Norton AntiVirus\Quarantine\3EE52BB7.wmf
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\3EE52BB7.wmf
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\3F3C1EC3.tmp=>(Quarantine-2)
Infected with: Trojan.Bagle.BK

C:\Program Files\Norton AntiVirus\Quarantine\3F3C1EC3.tmp=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\3F3C1EC3.tmp=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\462F237E.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Istbar.JM

C:\Program Files\Norton AntiVirus\Quarantine\462F237E.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\462F237E.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\54CF7018.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Swizzor.DV

C:\Program Files\Norton AntiVirus\Quarantine\54CF7018.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\54D21A15.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Swizzor.DE

C:\Program Files\Norton AntiVirus\Quarantine\54D21A15.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\54D21A15.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\5E1F06E4.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Adload.A

C:\Program Files\Norton AntiVirus\Quarantine\5E1F06E4.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\5E1F06E4.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.dll=>(Quarantine-2)
Detected with: Application.Adware.Sidefind.B

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.dll=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.dll=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Dyfuca.EI

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\5E2230E1.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\5FAC45B9.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\Program Files\Norton AntiVirus\Quarantine\5FAC45B9.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\5FAC45B9.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\62525608.exe=>(Quarantine-2)
Detected with: Application.SurfAccuracy.A

C:\Program Files\Norton AntiVirus\Quarantine\62525608.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\62525608.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\62592A01.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\Program Files\Norton AntiVirus\Quarantine\62592A01.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\62592A01.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>BlackBox.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>BlackBox.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>BlackBox.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>VerifierBug.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>VerifierBug.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>VerifierBug.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Dummy.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Dummy.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Dummy.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Beyond.class
Infected with: Java.Trojan.Exploit.Bytverify.C

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Beyond.class
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)=>Beyond.class
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip=>(Quarantine-2)
Updated

C:\Program Files\Norton AntiVirus\Quarantine\63AA6CD3.zip
Update failed

C:\Program Files\Norton AntiVirus\Quarantine\69CA17D3.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.CK

C:\Program Files\Norton AntiVirus\Quarantine\69CA17D3.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\69CA17D3.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6A2078E4.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\6A2078E4.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6A2078E4.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6AC9595C.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\6AC9595C.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6AC9595C.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6CC96D03.exe=>(Quarantine-2)
Infected with: Trojan.Small.CY

C:\Program Files\Norton AntiVirus\Quarantine\6CC96D03.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6CC96D03.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\70F43762.exe=>(Quarantine-2)
Infected with: Trojan.Dialer.EG

C:\Program Files\Norton AntiVirus\Quarantine\70F43762.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\70F43762.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\746F3EA6.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.BR

C:\Program Files\Norton AntiVirus\Quarantine\746F3EA6.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\746F3EA6.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\75C91B0F.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\Program Files\Norton AntiVirus\Quarantine\75C91B0F.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\75C91B0F.exe=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\7CD94941.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.VB.CC

C:\Program Files\Norton AntiVirus\Quarantine\7CD94941.exe=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\7CD94941.exe=>(Quarantine-2)
Deleted

C:\Program Files\SoftwareOnline\soproc.exe
Detected with: Adware.MyWebSearch.AE

C:\Program Files\SoftwareOnline\soproc.exe
Disinfection failed

C:\Program Files\SoftwareOnline\soproc.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP355\A0702282.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP355\A0702282.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP355\A0702282.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703321.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703321.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703321.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703323.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703323.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP358\A0703323.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703431.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703431.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703431.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703432.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703432.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703432.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703433.dll
Infected with: Trojan.P2e.CL

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703433.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP359\A0703433.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP369\A0723091.exe
Infected with: MemScan:Trojan.Mailskinner.A

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP369\A0723091.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP369\A0723091.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP427\A0742310.exe
Infected with: Trojan.Dialer.EG

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP427\A0742310.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP427\A0742310.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801420.exe=>wise0016
Detected with: Application.Adware.NewDotNet.B.Dropper

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801420.exe=>wise0016
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801420.exe
Update failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe=>wise0042
Detected with: Application.Adware.NewDotNet.B.Dropper

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe=>wise0042
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe
Update failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe=>wise0088
Suspected of: Trojan.Downloader.QQHelper.P

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe=>wise0088
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe=>wise0088
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP470\A0801421.exe
Update failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0811400.exe=>(Quarantine-2)
Infected with: Trojan.Delf.JO

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0811400.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812420.exe
Infected with: Trojan.Downloader.IstBar.IJ

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812420.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812421.exe
Detected with: Application.IstBar.Q

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812421.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812421.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812422.exe
Infected with: Trojan.Downloader.Vb.FI

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812422.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812422.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812423.exe
Infected with: Trojan.Small.CY

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812423.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812423.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812439.dll
Detected with: Application.Adware.NewDotNet.B

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812439.dll
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812439.dll
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812473.exe
Infected with: Trojan.Swizzor.AX

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812473.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812473.exe
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812474.exe=>(Quarantine-2)
Infected with: Trojan.Lopad.C

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812474.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812474.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812475.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Istbar.JM

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812475.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812475.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812476.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812476.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812476.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812477.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812477.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812477.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812478.exe=>(Quarantine-2)
Infected with: Trojan.Dialer.EG

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812478.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812478.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812479.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812479.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812479.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812480.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812480.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812480.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812481.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.CZ

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812481.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812481.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812482.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.IstBar.IJ

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812482.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812483.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812483.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812483.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812484.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Istbar.JM

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812484.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812484.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812485.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Swizzor.DV

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812485.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812486.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Swizzor.DE

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812486.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812486.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812487.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Adload.A

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812487.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812487.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812488.dll=>(Quarantine-2)
Detected with: Application.Adware.Sidefind.B

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812488.dll=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812488.dll=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812489.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Dyfuca.EI

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812489.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812489.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812490.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812490.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812490.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812491.exe=>(Quarantine-2)
Detected with: Application.SurfAccuracy.A

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812491.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812491.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812492.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.DH

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812492.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812492.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812493.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.CK

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812493.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812493.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812494.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812494.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812494.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812495.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812495.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812495.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812496.exe=>(Quarantine-2)
Infected with: Trojan.Small.CY

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812496.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812496.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812497.exe=>(Quarantine-2)
Infected with: Trojan.Dialer.EG

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812497.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812497.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812498.exe=>(Quarantine-2)
Infected with: Trojan.Swizzor.BR

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812498.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812498.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812499.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.Vb.FT

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812499.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812499.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812500.exe=>(Quarantine-2)
Infected with: Trojan.Downloader.VB.CC

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812500.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812500.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812501.exe
Detected with: Adware.MyWebSearch.AE

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812501.exe
Disinfection failed

C:\System Volume Information\_restore{A4511C76-C71D-4548-9379-27464E80927B}\RP472\A0812501.exe
Deleted

C:\WINDOWS\wsem303.dll
Infected with: Trojan.Downloader.Dyfuca.DT

C:\WINDOWS\wsem303.dll
Disinfection failed

C:\WINDOWS\wsem303.dll
Deleted

EWIDO:

+ Résultats du scan:

HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Erreur durant le nettoyage
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@ehg-finaref.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\marie.GUIGUI\Cookies\marie@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\ABox.exe -> Not-A-Virus.PornTool.Win32.ABox.a : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall5_64.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_38-1.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_90.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_98-1.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\system32\msclock32.dll -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\WINDOWS\Temp\IAUninstall\uninstall.exe -> Dialer.InstantAccess.o : Nettoyer et sauvegarder

::Fin du rapport

HijackThis
Logfile of HijackThis v1.99.1
Scan saved at 23:28:09, on 16/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\marie.GUIGUI\Mes documents\Mes fichiers reçus\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {B4F3CDFF-C500-245C-900B-A6594E8A5055} - C:\DOCUME~1\GUILLA~1\APPLIC~1\SURFVG~1\viewmpeg.exe (file missing)
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB001" /M "Stylus CX3600"
O4 - HKLM\..\Run: [V÷h$vùõš/‚²‘ÆßfÏNbC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\ftnayf.exe
O4 - HKLM\..\Run: [vyzyx] C:\WINDOWS\vyzyx.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Love vc hole ante] C:\Documents and Settings\All Users\Application Data\LIES SEND LOVE VC\file start.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [VniDmMn] C:\WINDOWS\xowcvpcx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [gblrify] c:\windows\system32\gblrify.exe gblrify
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Butbgi] C:\Program Files\Ncky\Lubifuf.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Accoona Desktop] C:\Program Files\Accoona\ADTIndexAgent.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [Instant Access] rundll32.exe p2esocks_1049.dll,InstantAccess
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet6_38-1.dll' missing
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39EA2F6F-3F50-4F58-9C63-4B3D53B0926E} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {91433D86-9F27-402C-B5E3-DEBDD122C339} - http://www.playqames.com/default.cab?uid=9&id=60953&1s&ex&ppd=4
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B7E76C25-791F-432E-BDB7-748D01A93FC2} (VacPro.int_ver30) - http://advnt01.com/dialer/int_ver30.CAB
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe

Je ne sais pas ce que tu vas faire avec tout ca...mais merci d'avance
0
Réponse 6 / 10
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

"ptite manip" :

1)Affiche les dossiers système et fichiers cachés :
Ouvrir le poste de travail
- Outils --> Options des dossiers
- Affichage --> zone Paramètres avancés
- Cocher : Afficher le contenu des dossiers système
- Cocher : Afficher les fichiers et dossiers cachés
- Décocher : Masquer les extensions des fichiers dont le type est connu
- Décocher : Masquer les fichiers protégés du système d'exploitation (recommandé)
répondre Oui au message
Clique sur "Appliquer à tous les dossiers"
Clique sur OK

2) Désactiver la Restauration du système

* Cliquez sur le bouton Démarrer.
* Cliquez avec le bouton droit de la souris sur Poste de travail puis cliquez sur Propriétés.
* Dans l'onglet Restauration du système, sélectionnez l'option Désactiver la Restauration du système ou Désactiver la Restauration du système sur tous les lecteurs

3) Redémarre en mode sans échec
Redémarre le pc, laisse passer l'écran du bios, puis tapote sur la touche F8 avant qu'apparaisse l'écran de chargement de windows.
Choisis le mode sans échec dans les options et valide avec entrée.
( si F8 ne fonctionne pas essaie avec F5)

4) Relance hijackthis :

choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

demo : http://pageperso.aol.fr/balltrap34/demohijack.htm

O2 - BHO: (no name) - {B4F3CDFF-C500-245C-900B-A6594E8A5055} - C:\DOCUME~1\GUILLA~1\APPLIC~1\SURFVG~1\viewmpeg.exe (file missing)

O4 - HKLM\..\Run: [V÷h$vùõš/‚²‘ÆßfÏNbC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\ftnayf.exe
O4 - HKLM\..\Run: [vyzyx] C:\WINDOWS\vyzyx.exe
O4 - HKLM\..\Run: [VniDmMn] C:\WINDOWS\xowcvpcx.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Love vc hole ante] C:\Documents and Settings\All Users\Application Data\LIES SEND LOVE VC\file start.exe

O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [gblrify] c:\windows\system32\gblrify.exe gblrify
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Butbgi] C:\Program Files\Ncky\Lubifuf.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Accoona Desktop] C:\Program Files\Accoona\ADTIndexAgent.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe p2esocks_1049.dll,InstantAccess
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html

O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39EA2F6F-3F50-4F58-9C63-4B3D53B0926E} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {91433D86-9F27-402C-B5E3-DEBDD122C339} - http://www.playqames.com/default.cab?uid=9&id=60953&1s&ex&ppd=4
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B7E76C25-791F-432E-BDB7-748D01A93FC2} (VacPro.int_ver30) - http://advnt01.com/dialer/int_ver30.CAB

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe

Cliques sur :

demarrer < executer < tapes " services.msc"

cherches dans la liste cette ligne et regles la sur "desactivé"

France Telecom Routing Table Service

5) Recherche et supprime les fichiers en gras : ( si present )

C:\WINDOWS\ftnayf.exe
C:\WINDOWS\vyzyx.exe
C:\Program Files\ISTsvc\istsvc.exe
c:\windows\system32\gblrify.exe
C:\Program Files\Ncky\Lubifuf.exe
C:\Program Files\Accoona\ADTIndexAgent.exe
(celui ci :Accoona, si tu connais, laisse le )
c:\program files\mailskinner\mailskinner.exe

ensuite :

*Telecharge et installe ceci, dans la colonne de gauche clique sur "erreurs" coche toute les cases, puis clique en bas sur "chercher des erreurs" une fois finit, clique sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs .

*Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoche la derniere case (Avancé si elle
est cochée) puis clique sur "lancer le nettoyage"

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

tuto: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

et enfin, remets un nouveau hijackthis stp

bon courage, @+
***j'ai decidé d'être heureux parce que c'est bon pour la santé ! ( Voltaire )***
0
Réponse 7 / 10
loutchoc Messages postés 6 Statut Membre
 
Je ne sais pas qui tu es mais en tout cas tu es vraiment pro!
Ce fut un peu fastidieux mais le résultat est etonnant!
J'ai du reinstaller la livebox mais a part ça tout a bien roulé et tout est rentré dans l'ordre.
Merci vraiment pour ton aide précieuse !
0
Réponse 8 / 10
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut :-)

pense à vider ta quarantaine norton, reactive ta restau systeme, recache les fichers et enfin reposte un nouveau hijackhis stp

++
0
Réponse 9 / 10
loutchoc Messages postés 6 Statut Membre
 
merci encore, j'ai suivi les consignes et voici le nouveau hijackhis .
Bien cordialement

C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\marie.GUIGUI\Mes documents\Mes fichiers reçus\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB001" /M "Stylus CX3600"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet6_38-1.dll' missing
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
0
Réponse 10 / 10
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

ça ma l'air tout beau, tout propre :-)

pour la suite : peti resumé pour l'entretien

https://www.commentcamarche.net/faq/2432-securite-proteger-un-ordinateur-contre-les-malwares

@+
0

Discussions similaires

XINPUT1_3.dll manquant (missing)
Maxirugue -
dan -

39 réponses
Erreur 3005 sur France TV
Cambodgil -
JeanPierre -

6 réponses
Probleme d'installation jeu pc (il manquerait " XINPUT1_3.dll)
Rogerleraton -
Rogerleraton -

6 réponses
Problème avec XINPUT1_3.dll
Albansineux02 -
Panth33ra -

1 réponse
Erreur de lecture sur iptv smarters
Bogs -
bazfile -

1 réponse