Sujet Précédent Sujet Suivant

Probléme avec un virus trojan Agent

Fermé
mousquetaire Messages postés 6 Date d'inscription mardi 27 juin 2006 Statut Membre Dernière intervention 7 juillet 2006 - 27 juin 2006 à 15:25
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 - 12 juil. 2006 à 13:35
Bonjour .J'ai un probléme avec mon ordinateur qui s'éteint tout seul par moment et qui beug (plus rien ne répond).Et vlc n'émet plus d'image,je n'ai que le son alors qu'il marchait trés bien avant l'arrivée d'un virus(un trojan) sur mon pc.Mon antivirus l'a détecté et maintenant il n'apparait plus aprés analyse mais mon pc déconne toujours.Merci de m'aider.J'ai fais une analyse avec hijackthis voici le rapport http://www.commentcamarche.net/forumhttp://www.commentcamarche.net/forumhttp://ww... of HijackThis v1.99.1
Scan saved at 14:59:59, on 27/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\htpatch.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\CalCheck.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\eMule\emule.exe
C:\Documents and Settings\Roxia\Mes documents\Mes fichiers reçus\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://portail.free.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [BDSwitchAgent] "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [BDMCon] c:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] "c:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Cammaestro 4.2GU build 1104.72
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB002" /M "Stylus DX3800"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /M "Stylus DX3800" /EF "HKCU"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Photo Express Calendar Checker SE.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\CalCheck.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Alice ADSL - {578A22C7-123D-40BE-BDC5-79A1596895BB} - https://portail.free.fr/ (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=https://portail.free.fr/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://kaena2.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
O23 - Service: PDEngine - Unknown owner - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (file missing)
O23 - Service: PDScheduler (PDSched) - Unknown owner - C:\Program Files\Raxco\PerfectDisk\PDSched.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

Merci de me répondre,bonne journée
A voir également:

29 réponses

  • 1
  • 2
Réponse 1 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
27 juin 2006 à 15:33
hello
Merci de procéder dans l’ordre,
Télécharge TOUS ces programmes (si tu ne les as pas), installe-les.
Fais les mises à jour des progr 1/, 2/, 3/
Scan avec TOUS, COLLE comme demandé les rapports de 0/, 3/ & 6/

0/ - Smitfraudfix
(A)-Télécharger ceci (merci a S!RI pour ce petit programme) :
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
L'exécuter, puis double-cliquer sur Smitfraudfix.cmd
Choisir l’option 1, elle va générer un rapport
Copie-COLLE ce dernier dans un message sur le forum.
Tutorial imagée à lire :
http://siri.urz.free.fr/Fix/SmitfraudFix.php
(B)- Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du PC sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape ‘Entrée’ sur ton clavier.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres, c’est normal !
(Si F8 ne marche pas utilise la touche F5).
(C)--Relance le programme Smitfraud,
Cette fois choisit l’option 2, répond OUI à tout ;
Sauvegarde le rapport, redémarre en mode normal, copie-COLLE le rapport sauvegardé sur le forum.

1/ -Ad-Aware (gratuit) :
Tutorial et téléchargement ici :
https://forums.cnetfrance.fr

2/ - Spybot (gratuit) :
http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/26157.html

3/ - Ewido (download)- gratuit même après 14 jours d’essai
http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
Copie/COLLE le rapport généré sur ce forum
Pour Win 98, Ewido non compatible
Dans ce cas, il te faudra utiliser a-squared free et demander une clef pour son usage gratuit
https://www.emsisoft.com/fr/

4/ - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

5/ - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
0
Réponse 2 / 29
mousquetaire Messages postés 6 Date d'inscription mardi 27 juin 2006 Statut Membre Dernière intervention 7 juillet 2006
27 juin 2006 à 19:13
merci de ton aide aranjuez31
0
Réponse 3 / 29
mousquetaire Messages postés 6 Date d'inscription mardi 27 juin 2006 Statut Membre Dernière intervention 7 juillet 2006
27 juin 2006 à 20:00
SAlut.J'ai fais une analyse avec Spybot,il n'a trouvé aucun mouchard.j'ai fais une analyse avec ad-aware il bloque,s'arréte à
c:\System Volume Information\restore.j'ai rééssayé une deuxiéme fois et obtenu la méme chose.
0
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
28 juin 2006 à 13:11
hello

explication suit :

- * System volume information


Si à la suite d'analyse, l'infection se situe dans :

C:\system volume information\_Restore....

Cela signifie que c'est un point de restauration qui est infecté (à savoir que l'infection est inactive). Pour résoudre le souci :

¤Désactive la restauration système (uniquement si tu es sous XP):
Cliquer droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
Cocher la case « désactiver la restauration » et applique.

Puis,

¤Réactiver la restauration système (uniquement si tu es sous XP):
Cliquer droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
Décocher la case « désactiver la restauration » et applique.
0
Réponse 4 / 29
mousquetaire Messages postés 6 Date d'inscription mardi 27 juin 2006 Statut Membre Dernière intervention 7 juillet 2006
27 juin 2006 à 20:07
J'ai utilisé smitfraudfix mais j'ai ommis d'enregistrer le rapport.
Suite à ça vlc marche impeccablement pur l'instant.Pas de probléme en vue avec l'ordi pour le moment.UN grand remerciement pour ton aide.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 29
mousquetaire Messages postés 6 Date d'inscription mardi 27 juin 2006 Statut Membre Dernière intervention 7 juillet 2006
27 juin 2006 à 20:30
Voila le rapport de spybot:
Félicitations!: Aucun mouchard n'a été trouvé. ()



--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-06-19 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2006-02-06 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2006-02-20 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-06-16 Includes\Cookies.sbi (*)
2006-06-16 Includes\Dialer.sbi (*)
2006-06-16 Includes\Hijackers.sbi (*)
2006-06-16 Includes\Keyloggers.sbi (*)
2006-06-16 Includes\Malware.sbi (*)
2006-06-16 Includes\PUPS.sbi (*)
2006-06-16 Includes\Revision.sbi (*)
2006-06-16 Includes\Security.sbi (*)
2006-06-16 Includes\Spybots.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-06-16 Includes\Trojans.sbi (*)
0
Réponse 6 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
28 juin 2006 à 01:50
bsr
====
rapport spybot non ddé
====
merci de fournir ce qui est ddé
en quelle langue dois-je écrire ? javanais ? hébreu ?
========
ce n est pas fini

j attends la suite

3/ - Ewido (download)- gratuit même après 14 jours d’essai
http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
Copie/COLLE le rapport généré sur ce forum

4/ - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

5/ - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
0
Réponse 7 / 29
mousquetaire
28 juin 2006 à 12:08
je sais pas ce que ça veux dire : ddé .
0
Réponse 8 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
28 juin 2006 à 13:01
hello
pardon !
ddé = demandé

continue ce qui est ddé
à savoir 3/ + 4/ + 5/

à l issue de la production des rapports ddés, tu remettras un hijack
0
Réponse 9 / 29
mousquetaire
28 juin 2006 à 13:12
ok merci.
0
Réponse 10 / 29
mousquetaire
28 juin 2006 à 14:16
Voila le rapport de Ewido:
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 13:08:24 28/06/2006

+ Scan result:



C:\Documents and Settings\Roxia\Bureau\Scrabblev2-dm.exe -> Adware.Trymedia : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.6:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.7:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.98:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.99:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.19:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.20:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.202:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.203:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.204:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.205:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.206:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.207:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.208:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.30:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.31:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.32:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.33:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.34:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.35:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.36:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.37:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.38:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.39:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.40:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.41:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.42:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.43:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Centrport : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@cz4.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.44:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.45:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.163:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.164:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.165:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.166:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.167:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.168:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.66:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.75:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.80:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Ivwbox : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@mediaplex[2].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.184:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.185:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.186:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.187:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.188:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.189:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.190:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.191:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.110:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.111:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.112:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.113:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.114:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.46:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.47:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.234:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.235:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.236:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.125:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.126:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.127:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.128:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.129:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Trafic : No action taken.
:mozilla.130:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.141:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.142:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.143:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\Roxia\Cookies\roxia@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\FRED\Cookies\fred@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.149:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.150:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.151:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.158:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : No action taken.


::Report end
0
Réponse 11 / 29
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
28 juin 2006 à 14:37
slt Mousquetaire,

Si tu utilises un log de "désinfection" tel que Ewido et que tu refuses de supprimer toutes les merdes qu'il te trouve on va pas aller loin ...

C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : No action taken.


Le "no action taken" en gras veut dire que tu refuses de supprimer.

Donc tout ce que te trouve Ewido à chaque fois il doit y avoir une fenêtre qui te demande ce que tu veux faire .
Donc il faut que tu fasses "supprimer" et fais le pour tout ce qu'il te trouve.

PS: Tu dois avoir une petite case à cocher pour qu'il fasse cette action "supprimer" pour tout ce qu'il te trouve, comme ça pas besoin de le faire manuellement.

refait un scan car celui là n'a été d'aucune utilité.

A+
0
Réponse 12 / 29
mousquetaire
28 juin 2006 à 19:43
Salut j'ai refais un scan en applicant les actions que Ewido me disait et ça donne ça:
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 15:37:17 28/06/2006

+ Scan result:



C:\Documents and Settings\Roxia\Bureau\Scrabblev2-dm.exe -> Adware.Trymedia : Cleaned with backup (quarantined).
C:\Documents and Settings\Roxia\Mes documents\Scrabblev2-dm.exe -> Adware.Trymedia : Cleaned with backup (quarantined).
C:\Documents and Settings\Roxia\Cookies\roxia@247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.6:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.7:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.98:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.99:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Roxia\Cookies\roxia@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.19:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.20:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Roxia\Cookies\roxia@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.202:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.203:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.204:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.205:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.206:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.207:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.208:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.30:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.31:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.32:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.33:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.34:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.35:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.36:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.37:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.38:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.39:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.40:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.41:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.42:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.43:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Centrport : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@cz4.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.44:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.45:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.163:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.164:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.165:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.166:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.167:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.168:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.66:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
:mozilla.75:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.80:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Ivwbox : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@mediaplex[2].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.184:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.185:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.186:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.187:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.188:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.189:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.190:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.191:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.110:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.111:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.112:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.113:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.114:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.46:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.47:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.234:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.235:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.236:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.125:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.126:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.127:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.128:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.129:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.130:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.141:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.142:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.143:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\FRED\Cookies\fred@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.149:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.150:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.151:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.158:C:\Documents and Settings\Roxia\Application Data\Mozilla\Firefox\Profiles\7f1y63ii.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.


::Report end
0
Réponse 13 / 29
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
28 juin 2006 à 20:01
Pour vérifier, scanne ton PC avec cet antivirus en ligne :

https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr

Et colle le rapport

bonne soirée.

A+
0
Réponse 14 / 29
mousquetaire
28 juin 2006 à 20:42
J'ai fais le scan avec bitdefender en ligne,voila le rapport:
<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner - Rapport d'analyse</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >


<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
<p><font face="Arial" color=red><span style="font-size:14pt;"><b>BitDefender Online Scanner</b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan="3" width="912">
<p><font face="Arial"><span style="font-size:11pt;"><B>Rapport d'analyse généré à: Wed, Jun 28, 2006 - 20:34:51</b></span></font></p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>Voie d'analyse: </b></span><span style="font-size:10pt;">A:\;C:\;D:\;E:\;F:\;G:\;H:\;</span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Statistiques</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Temps</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">00:39:00</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Fichiers</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">113294</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Directoires</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">3070</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Secteurs de boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">2</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">2086</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Paquets programmes</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">8003</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>



<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Résultats</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Virus identifiés</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Fichiers infectés</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Fichiers suspects</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Avertissements</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Désinfectés</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Fichiers effacés</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Info sur les moteurs</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Définition virus</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">389910</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Version des moteurs</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyse des plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">13</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archive des plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">39</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Unpack des plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">E-mail plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Système plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">1</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Paramètres d'analyse</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Première action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Désinfecté</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Seconde Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Supprimé</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Heuristique</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Acceptez les avertissements</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Extensions analysées</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">*;</font></p>
</td>
</tr>

<tr>
<td width="57%">
<p><font face="Arial" size="2">Excludez les extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2"> </font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyse d'emails</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyse des Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyser paquets programmes</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyse des fichiers</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Analyse de boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Oui</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td colspan=2>  
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Fichier analysé</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial"> Statut</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Aucun virus trouvé.</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2"> </font></p>
</td>
</tr>
</table>
</td>

<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

</table>
<p> </p>

</body>
</html>



Puis j'ai fais un scan avecHijackthis,voila le rapport:
Logfile of HijackThis v1.99.1
Scan saved at 20:37:39, on 28/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\htpatch.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Documents and Settings\Roxia\Mes documents\Mes fichiers reçus\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [BDSwitchAgent] "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [BDMCon] c:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] "c:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Cammaestro 4.2GU build 1104.72
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB002" /M "Stylus DX3800"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /M "Stylus DX3800" /EF "HKCU"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Photo Express Calendar Checker SE.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\CalCheck.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Alice ADSL - {578A22C7-123D-40BE-BDC5-79A1596895BB} - https://portail.free.fr/ (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=https://portail.free.fr/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://kaena2.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
O23 - Service: PDEngine - Unknown owner - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe (file missing)
O23 - Service: PDScheduler (PDSched) - Unknown owner - C:\Program Files\Raxco\PerfectDisk\PDSched.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

MERci de toute votre attention.
0
Réponse 15 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
29 juin 2006 à 04:03
bsr
===========
pas conforme à ce qu il devrait être ton rapport de bitdef
ya du y avoir un bogue
à refaire
===========
pas le tps d étudier ton log en détail
je ferai cela jeudi

néanmoins
coche et fixe tout cela :

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://kaena2.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
=============

pare-feu incorporé à bitdef ???

================
fais cet autre online
et colle rapport :

https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
0
Réponse 16 / 29
mousquetaire
29 juin 2006 à 13:49
Salut.Je comprend pas quand tu dis" coche et fixe tout cela.."Merci de me donner des détails.
0
Réponse 17 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
29 juin 2006 à 14:35
re

Ah ! Excuse-moi de n'avoir point détaillé
lis ce tuto et ta lanterne brillera
http://pageperso.aol.fr/balltrap34/demohijack.htm
0
Réponse 18 / 29
mousquetaire
29 juin 2006 à 20:28
hello,voila le rapport de kaspersky:

<html>
<head>
<title>KASPERSKY ONLINE SCANNER REPORT</title>
<meta http-equiv='Content-Type' content='text/html; charset=utf-8'>
</head>

<style>
.pagetitle { font-size:20px; color:#FFFFFF; font-family: Arial, Geneva, sans-serif; }
.text { font-size:11px; font-family: Arial, Geneva, sans-serif; }
TD { font-size:11px; font-family: Arial, Geneva, sans-serif; }
</style>

<body>
<table width='100%' height='110' border='0'>
<tr height='30' align='center' bgcolor='#005447'>
<td colspan='2' height='30' class='pagetitle'>
<b>KASPERSKY ONLINE SCANNER REPORT</b>
</td>
</tr>
<tr height='70'>
<td colspan='2' height='70'>
Thursday, June 29, 2006 6:41:02 PM<br>
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)<br>
Kaspersky Online Scanner version: 5.0.83.0<br>
Kaspersky Anti-Virus database last update: 29/06/2006<br>
Kaspersky Anti-Virus database records: 191432<br>
</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
</table>
<table width='100%' height='145' border='0'>
<tr height='20' bgcolor='#EFEBDE'>
<td colspan='2' height='20'><b>Scan Settings</b></td>
</tr>
<tr height='15'>
<td height='15' width='250'>Scan using the following antivirus database</td>
<td>standard</td>
</tr>
<tr height='15'>
<td height='15'>Scan Archives</td>
<td>true</td>
</tr>
<tr height='15'>
<td height='15'>Scan Mail Bases</td>
<td>true</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
<tr height='20' bgcolor='#EFEBDE'>
<td height='20'><b>Scan Target</b></td>
<td>Folders</td>
</tr>
<tr height='20'>
<td colspan='2' height='20'>
C:\
</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
<tr height='20' bgcolor='#EFEBDE'>
<td colspan='2' height='20'><b>Scan Statistics</b></td>
</tr>
<tr height='15'>
<td height='15'>Total number of scanned objects</td>
<td>38321</td>
</tr>
<tr height='15'>
<td height='15'>Number of viruses found</td>
<td>0</td>
</tr>
<tr height='15'>
<td height='15'>Number of infected objects</td>
<td>0 / 0</td>
</tr>
<tr height='15'>
<td height='15'>Number of suspicious objects</td>
<td>0</td>
</tr>
<tr height='15'>
<td height='15'>Duration of the scan process</td>
<td>00:36:28</td>
</tr>
</table>
<br>
<table width='100%' border='0'>
<tr height='20' bgcolor='#EFEBDE'>
<td height='20'><b>Infected Object Name</b></td>
<td width='200'><b>Virus Name</b></td>
<td width='100'><b>Last Action</b></td>
</tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Cookies\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\NTUSER.DAT </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\ntuser.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\NTUSER.DAT </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\ntuser.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Cookies\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\infected.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\Logs\Dfsr.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\pending.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\Working\database_4218_1580_1815_73DF\dfsr.db </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\Working\database_4218_1580_1815_73DF\fsr.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\Working\database_4218_1580_1815_73DF\fsrtmp.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Messenger\an.gel@hotmail.fr\SharingMetadata\Working\database_4218_1580_1815_73DF\tmp.edb </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Windows Live Contacts\an.gel@hotmail.fr\real\members.stg </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Application Data\Microsoft\Windows Live Contacts\an.gel@hotmail.fr\shadow\members.stg </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Historique\History.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Temp\~DF7B9.tmp </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Temp\~DF8EF.tmp </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Temp\~DFCB19.tmp </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Temp\~DFCD1E.tmp </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\Local Settings\Temporary Internet Files\Content.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\ntuser.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Roxia\ntuser.dat.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\logs\starwind.2006-06-29.12-22-53.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\MountPointManagerRemoteDatabase </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\_restore{ED9214C7-96B1-4E78-863C-23A7C1D600D7}\RP428\change.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Debug\PASSWD.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\SchedLgU.Txt </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\SoftwareDistribution\EventCache\{1A6CBAD1-E454-4C4E-9BFC-8135B878A286}.bin </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\SoftwareDistribution\ReportingEvents.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Sti_Trace.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\CatRoot2\edb.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\CatRoot2\tmp.edb </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\AppEvent.Evt </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\default </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\default.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SAM </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SAM.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SecEvent.Evt </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SECURITY </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SECURITY.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\software </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\software.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SysEvent.Evt </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\system </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\system.LOG </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\h323log.txt </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\Cookies\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\Historique\History.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\index.dat </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\tmp00006c71\tmp00000000 </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\wiadebug.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\wiaservc.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\WindowsUpdate.log </td>
<td>Object is locked </td>
<td>skipped </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td colspan='3' height='20'><b>Scan process completed.</b></td>
</tr>
</table>
</body>
</html>

Et pour répondre à ta question mon pare feu n'est pas incorporé à bitdefender(j'ai windows xp).J'ai coché et fixé toutes les lignes qu'il y avait à faire.Bonne soirée.
0
Réponse 19 / 29
aranjuez31 Messages postés 8052 Date d'inscription lundi 7 novembre 2005 Statut Contributeur Dernière intervention 9 juillet 2006 354
30 juin 2006 à 04:10
bsr
====
ah m...e !
encore un rapport qui ne ressemble à rien !
=======
fais ceci online pour voir
Trend de Housecall
https://www.trendmicro.com/fr_fr/business.html
tiens moi au courant de ses trouvailles
=====
le p-feu du sp2 ou rien, c'est du kif - faut un plus sérieux

(A)Si tu n’ as pas de pare-feu, autre que le ‘joujou’ de Windows (à désactiver), je te conseille Kerio (gratuit même après les 30 jours d’ essai)
Tutorial et téléchargement ici :
https://www.vulgarisation-informatique.com/kerio.php
(B)- Règle d’ or à respecter : 1 seul pare-feu, 1 seul antivirus
0
Réponse 20 / 29
mousquetaire
30 juin 2006 à 15:04
J'ai fais un scan avec ce que tu m'a dis et il a trouvé trois cookies http, quatre infections( adware hotbar,adware adtomi,freeloader spyspotter et dialerparisvoyeur).Il me demande si je veux nettoyer mais j'ose pas car il me dit que ça risque d'effacer d'importants fichiers.Que faire?
Merci de ton aide.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Boucle sur la première diapositive d'une présentation
ND83 -
ndubau -

3 réponses
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
qu'est ce qu'un "trojan agent/gen" ? svp
Saber03 -
jacques.gache -

33 réponses
QuickShare c'est quoi ce truc
edelweiss2604 -
edelweiss2604 -

41 réponses