Sujet Précédent Sujet Suivant

[TROJAN] Infecté par Trojan Downloader.Win32.

vdmvdm -  
 vdmvdm -
Bonjour à tous,

Je suis sous windows XP édition familiale avec Office 2000.

Il y a quelques jours, mon PC n'a plus voulu m'ouvrir Microsoft Outlook sous prétexte qu'il manquait de mémoire virtuelle.
J'ai réalisé les updates conseillés par Office mais cela n'a rien changé.
J'ai laissé le PC décider lui-même de la taille de la mémoire virtuelle : Microsoft Outlook peut alors s'ouvrir mais il utilise toute la mémoire et je ne peux donc rien faire tellement le PC est lent. De plus, le programme à l'ouverture me dit qu'il ne trouve plus le fichier contact.pst.

J'ai passé a2 squared en mode sans échec (après avoir désactivé la restauration du système) et le programme a trouvé 2 fichiers vérolés avec Trojan Downloader.Win32.ZLOBABZ et Trojan.Win32.BUTANO.

J'ai effacé ces 2 fichiers avec ce même programme, redémarré le PC en mode sans échec, relancé a2 squared, et le programme n'a plus trouvé de virus.
J'ai redémarré le PC et remis la restauration du système.
Mais le problème à l'ouverture de Microsoft Outlook était toujours présent.

J'ai alors téléchargé CCleaner et effectué un nettoyage.

Puis j'ai passé Ewido anti-spyware dont voici le rapport.

ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 19:47:20 16/08/2006

+ Scan result:

:mozilla.423:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.424:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.425:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.426:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.278:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.279:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.280:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.909:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.910:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.911:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.856:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.857:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.858:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.859:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.860:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.188:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.189:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.345:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.350:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.351:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.352:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.353:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.354:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.355:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.356:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.357:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.358:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.439:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.43:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.431:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.432:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.593:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.957:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.958:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.959:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.960:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.961:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.472:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Centrport : Cleaned.
:mozilla.336:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.337:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.346:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.347:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.348:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.349:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.13:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.131:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Estat : Cleaned.
:mozilla.331:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.332:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.333:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.334:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.527:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.528:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.529:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.530:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.531:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.522:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.6:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.7:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.8:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.10:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Mainentrypoint : Cleaned.
:mozilla.157:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.303:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.304:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.14:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.15:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.16:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.473:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.474:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.475:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.476:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.133:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.134:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.135:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.136:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.137:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.362:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.363:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.364:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.365:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.366:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.367:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.368:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.369:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.370:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.371:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.372:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.373:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.374:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.375:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.376:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.377:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.378:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.379:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.380:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.381:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.385:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.185:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.186:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.187:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.190:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.198:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.199:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.584:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.878:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.897:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.904:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.62:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.63:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.64:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.65:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.8:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.469:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.470:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.471:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.115:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.521:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.421:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.422:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.748:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.749:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.750:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.138:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.139:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.140:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.294:C:\Documents and Settings\Christophe\Application Data\Mozilla\Firefox\Profiles\9912hdve.default\cookies-1.txt -> TrackingCookie.Webtrendslive : Cleaned.

::Report end

J'ai également utilisé Hijackthis dont voici le rapport.

Logfile of HijackThis v1.99.0
Scan saved at 19:57:55, on 16/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\GSICON.EXE
C:\WINDOWS\system32\dslagent.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
C:\Program Files\Softwin\BitDefender8\bdoesrv.exe
C:\Program Files\Softwin\BitDefender8\bdnagent.exe
C:\Program Files\Softwin\BitDefender8\bdswitch.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender8\vsserv.exe
c:\program files\softwin\bitdefender8\bdmcon.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\dumprep.exe
C:\Documents and Settings\Christophe\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [system32.dll] C:\WINDOWS\system\systeminit.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [BDMCon] C:\Program Files\Softwin\BitDefender8\\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\Program Files\Softwin\BitDefender8\\bdnagent.exe
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender8\\bdswitch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [I/O Controllers] svcnet.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Enregistrement PhotoFrame 2.5.lnk = C:\Program Files\Extensis\PhotoFrame 2.5\Enregistrement PhotoFrame 2.5.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} (ICSScannerLight Class) - http://download.zonelabs.com/bin/free/cm/ICSCM.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientIn...2/OCI/setup.exe
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {72C23FEC-3AF9-48FC-9597-241A8EBDFE0A} (InstallShield International Setup Player) - http://ftp.hp.com/pub/automatic/player/isetupML.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/7/532/6712/2.0.0....0/Installer.exe
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/hpdj/fr/check/qdiagh.cab?312
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/...323/mcfscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1E0756FE-AA6D-4CFF-BC43-7E668C666CC3}: NameServer = 195.238.2.22 195.238.2.21
O17 - HKLM\System\CS1\Services\Tcpip\..\{1E0756FE-AA6D-4CFF-BC43-7E668C666CC3}: NameServer = 195.238.2.22 195.238.2.21
O19 - User stylesheet: (file missing)
O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ADSLAutoconnect - Unknown - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
O23 - Service: BitDefender Scan Server - Unknown - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: Service d'administration du Gestionnaire de disque logique - Unknown - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements - Unknown - C:\WINDOWS\system32\services.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI - Unknown - C:\WINDOWS\System32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting - Unknown - C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Plug-and-Play - Unknown - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance - Unknown - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce - Unknown - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ScsiAccess - Unknown - C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: SmartLinkService - Unknown - slserv.exe (file missing)
O23 - Service: Journaux et alertes de performance - Unknown - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Ulead Burning Helper - Unknown - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe (file missing)
O23 - Service: Cliché instantané de volume - Unknown - C:\WINDOWS\System32\vssvc.exe
O23 - Service: BitDefender Virus Shield - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender8\vsserv.exe
O23 - Service: Carte de performance WMI - Unknown - C:\WINDOWS\System32\wbem\wmiapsrv.exe
O23 - Service: BitDefender Communicator - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe

Voici le lien pour l'évaluation du rapport : http://www.hijackthis.de/logfiles/1a0caa08...e871f1181d.html confused.gif

Pouvez-vous m'aider à résoudre mon problème SVP?

Merci d'avance.
A voir également:

9 réponses

Réponse 1 / 9
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Slt,

Essaie de faire les choses correctement.
Dans ton Ewido ce ne sont que des Cookies, donc rien de grave........

Mais fais ce qui suit,
bon décapage :
Il est important d’effectuer la manip dans sa totalité et dans l’ordre :

Télécharge (sauf si tu les as) et colle les 3 rapports dans l’ordre

A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip

B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

D – Ewido
https://www.malekal.com/tutorial-et-guide-ewido-v4/
ou
http://www.infos-du-net.com/telecharger/Ewido-Anti-Malware.html

Mets le à jour en cliquant update now.
Fais un "complete system scan".
A la fin du scan, vérifie qu'il y est bien marqué "delete à côté de chaque malware et clique seulement sur : "Apply all actions"
Ensuite, clique sur "Save Report " puis "Save report as" et sauve le rapport dans tes documents.

Copie/colle le rapport

E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier

F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
Copie/colle le rapport

Bon courage

A++

0
Réponse 2 / 9
vdmvdm
 
OK merci, je verrai ça ce soir (suis pas sur le PC actuellement)
0
Réponse 3 / 9
vdmvdm
 
Salut Marie, j'ai bien tout fait (j'espère), et ça a déjà l'airbien plus propre. Voici les rapports
1. rapport Ewido : RIEN
wido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 22:00:20 17/08/2006
+ Scan result:
Nothing found.
::Report end

2. Rapport scan bit defender : RIEN
BitDefender Online Scanner - Rapport virus en temps réel
Généré à: Fri, Aug 18, 2006 - 07:09:21
Info d'analyse
Fichiers scannés 492436
Infectés Fichiers 0
Virus Détectés Aucun virus trouvé.

3. Rapport hijjack
Logfile of HijackThis v1.99.1
Scan saved at 7:13:47, on 18/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\GSICON.EXE
C:\WINDOWS\system32\dslagent.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
C:\Program Files\Softwin\BitDefender8\bdoesrv.exe
C:\Program Files\Softwin\BitDefender8\bdnagent.exe
C:\Program Files\Softwin\BitDefender8\bdswitch.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender8\vsserv.exe
c:\program files\softwin\bitdefender8\bdmcon.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [system32.dll] C:\WINDOWS\system\systeminit.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [BDMCon] C:\Program Files\Softwin\BitDefender8\\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\Program Files\Softwin\BitDefender8\\bdnagent.exe
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender8\\bdswitch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [I/O Controllers] svcnet.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} - http://download.zonelabs.com/bin/free/cm/ICSCM.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {72C23FEC-3AF9-48FC-9597-241A8EBDFE0A} (InstallShield International Setup Player) - http://ftp.hp.com/pub/automatic/player/isetupML.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/7/532/6712/2.0.0.33/player.virtools.com/downloads/player...
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/hpdj/fr/check/qdiagh.cab?312
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/1,5,0,4323/mcfs...
O17 - HKLM\System\CCS\Services\Tcpip\..\{1E0756FE-AA6D-4CFF-BC43-7E668C666CC3}: NameServer = 195.238.2.22 195.238.2.21
O17 - HKLM\System\CS1\Services\Tcpip\..\{1E0756FE-AA6D-4CFF-BC43-7E668C666CC3}: NameServer = 195.238.2.22 195.238.2.21
O19 - User stylesheet: (file missing)
O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Unknown owner - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender8\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

Je n'ai pas "osé" relancer Outlook pour voir si le problème persistait avant d'avoir ton feu vert, de peur de tout ré-infecter (quoique ça a qd même l'air propre)...

Merci
0
Réponse 4 / 9
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Bonjour,

Boonty dans ajout/supp des programmes ==> supprime

Méthode à suivre dans l'ordre...
----------------------------------------------------------------------------
Télécharger ces logiciels (sauf si tu les as)
A utiliser plus tard

A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip

B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

D - Ewido
https://www.malekal.com/tutorial-et-guide-ewido-v4/
----------------------------------------------------------------------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage

Coche « afficher les fichiers et dossiers cachés »

Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"

Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.

Et appliquer !
=================================
Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"

O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} - http://download.zonelabs.com/bin/free/cm/ICSCM.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {72C23FEC-3AF9-48FC-9597-241A8EBDFE0A} (InstallShield International Setup Player) - http://ftp.hp.com/pub/automatic/player/isetupML.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/7/532/6712/2.0.0.33/player.virtools.com/downloads/player...
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/hpdj/fr/check/qdiagh.cab?312
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/1,5,0,4323/mcfs...
O19 - User stylesheet: (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe

============ ============================
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:

Maintenant tu lances
A/ Ad-Aware supprime quarantaine
B/ Spybot Supprime quarantaine
C/ Ccleaner Ewido Copier/coller le rapport
D/
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.

Tiens nous au courant

A+
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
vdmvdm
 
OK, je ferai ça ce soir

Merci
0
Réponse 6 / 9
vdmvdm
 
Voilà : Adaware et spybot n'ont rien trouvé d'important
Rapport ewido : rien
wido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 20:03:58 18/08/2006
+ Scan result:
Nothing found.
::Report end

Rapport hijack
Logfile of HijackThis v1.99.1
Scan saved at 20:11:24, on 18/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender8\vsserv.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\GSICON.EXE
C:\WINDOWS\system32\dslagent.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
C:\Program Files\Softwin\BitDefender8\bdmcon.exe
C:\Program Files\Softwin\BitDefender8\bdoesrv.exe
C:\Program Files\Softwin\BitDefender8\bdnagent.exe
C:\Program Files\Softwin\BitDefender8\bdswitch.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [system32.dll] C:\WINDOWS\system\systeminit.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [BDMCon] C:\Program Files\Softwin\BitDefender8\\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\Program Files\Softwin\BitDefender8\\bdnagent.exe
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender8\\bdswitch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [I/O Controllers] svcnet.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Unknown owner - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender8\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

J'attends tes (judicieuses) instructions

Merci
0
Réponse 7 / 9
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Re,

Pour moi, ton log est ok.
Où en sont tes soucis.......

A++
0
Réponse 8 / 9
vdmvdm
 
Bon, j'ai essayé de démarrer outlook mais il foire car il cherche le fichier "contact.pst"...
Faut dire que j'avais essayé de "réparer" outlook avant de désinfecter comme tu m'as dit et que ça a probablement interféré ...
Mais bon, outlook ne me bouffe plus 550Mb de mémoire comme avant.
Yapuka essayer de réinstaller outlook (malheureusement, j'ai un CD office et je ne suis pas certain que ça se fasse aussi facilement que ça...).

D'abord remettre la main sur le CD...
0
Réponse 9 / 9
vdmvdm
 
Voilà, tout re-fonctionne de nouveau correctement.

Merci à toi de m'avoir aidé.

A+ (quoique, finalement je n'espère pas ;-)
0

Discussions similaires

Menace détectée TrojanSMS-PA sur Google Huawei/Android
Outmost -
bazfile -

6 réponses
Comment supprimer le virus Trojan
vitsou -
vitsou -

18 réponses
qu'est ce qu'un "trojan agent/gen" ? svp
Saber03 -
jacques.gache -

33 réponses
Comment enlever mon virus trojan:win32/si...
bryanoulet -
juju666 -

58 réponses
Trojan impossible à supprimer!
Gridouu -
Malekal_morte- -

12 réponses