PC trop lent, et autres nb pbs...HELP !
sophie
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour, j'ai besoin d'aide !
Mon PC met plus de 3 min à démarrer, internet rame et des erreurs ferment les applications. parfois, me PC s'éteint même tout seul !
Quand j'essaie d'aller dans panneau de configuration, il est parfois impossible car la fenetre se ferme tout seul après un popup d'erreur.....
et je ne sais pas defragmenter un disk (l'un est plein l'autre vide...snif).
pas facile tout ca.
Après lecture des échanges sur ce forum j'ai installé spybot, avast et zonealarm. Pleins d'erreurs et autres diagnostiqués et je pense éliminiés mais mon pc rame toujours.
Merci mille fois pour votre aide à une jeune femme un peu perdue....
Mon PC met plus de 3 min à démarrer, internet rame et des erreurs ferment les applications. parfois, me PC s'éteint même tout seul !
Quand j'essaie d'aller dans panneau de configuration, il est parfois impossible car la fenetre se ferme tout seul après un popup d'erreur.....
et je ne sais pas defragmenter un disk (l'un est plein l'autre vide...snif).
pas facile tout ca.
Après lecture des échanges sur ce forum j'ai installé spybot, avast et zonealarm. Pleins d'erreurs et autres diagnostiqués et je pense éliminiés mais mon pc rame toujours.
Merci mille fois pour votre aide à une jeune femme un peu perdue....
A voir également:
- PC trop lent, et autres nb pbs...HELP !
- Pc lent - Guide
- Mon pc est trop lent et se bloque - Guide
- Reinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
34 réponses
bonjour sophie,
jettes un coup d'oeil par ici:
virus methode preliminaire de desinfection version fr
et colles, ici les 3 rapports. ((merci lyonnais92))
---
on y verra + clair après!
a+
jettes un coup d'oeil par ici:
virus methode preliminaire de desinfection version fr
et colles, ici les 3 rapports. ((merci lyonnais92))
---
on y verra + clair après!
a+
rapport HiJackthis:
Logfile of HijackThis v1.99.1
Scan saved at 18:50:21, on 27/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\sony\giga pocket\shwserv.exe
C:\Program Files\Parental Filter\ServiceEPCP.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\sony\vaio media music server\SSSvr.exe
C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
C:\Program Files\sony\giga pocket\GPVSvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\Program Files\Sony\Wireless Panel\WPanel.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\sony\giga pocket\RM_SV.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\WINDOWS\msagent\AgentSvr.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Documents and Settings\Sophie\Local Settings\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe
C:\Program Files\Messenger\msmsgs.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.sony-europe.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O1 - Hosts: 169.254.217.252 NPIF921E6
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Install_BlueDSL] F:\Install.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [LOGGING_EPCP] "C:\Program Files\Parental Filter\LoggingEPCP.exe" start
O4 - HKLM\..\Run: [kzgbjvhc] c:\windows\system32\kzgbjvhc.exe kzgbjvhc
O4 - HKLM\..\Run: [xrnazwyvtb] c:\windows\system32\xrnazwyvtb.exe xrnazwyvtb
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O4 - Global Startup: Wireless Panel.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\parental filter\hooklib.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1064_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {0878F049-D33E-45E0-A157-C36A6683CF25} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1063_XP.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {17E7DE1A-E636-46E2-B626-E928F7966A2F} (hWebPass Control) - http://www.internetpayant.com/kit/ctrl/hWebPass.ocx
O16 - DPF: {1CD4E2DC-2DA0-4154-8723-38CB04FB6A58} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1062_XP.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} - http://www.edipole.fr/kits/WebInstall.dll
O16 - DPF: {82FC4503-8459-4239-9B85-0617BEAA950A} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1061_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} (MastaCash Loader Class) - http://dx.mastacash.com/loader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://ww1.dlv4.com
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_XP.cab
O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - https://www.afternic.com/domains/downloadv3.com
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: x-mem3n - {0F4413E7-5D3B-4B1A-8AA2-E2307F06B228} - C:\Program Files\Parental Filter\eztoolslib.net.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\sony\giga pocket\shwserv.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Parental Filter (ServiceEPCP) - - C:\Program Files\Parental Filter\ServiceEPCP.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Logfile of HijackThis v1.99.1
Scan saved at 18:50:21, on 27/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\sony\giga pocket\shwserv.exe
C:\Program Files\Parental Filter\ServiceEPCP.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\sony\vaio media music server\SSSvr.exe
C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
C:\Program Files\sony\giga pocket\GPVSvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\Program Files\Sony\Wireless Panel\WPanel.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\sony\giga pocket\RM_SV.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\WINDOWS\msagent\AgentSvr.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Documents and Settings\Sophie\Local Settings\Temp\Répertoire temporaire 1 pour hijackthis[1].zip\HijackThis.exe
C:\Program Files\Messenger\msmsgs.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.sony-europe.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O1 - Hosts: 169.254.217.252 NPIF921E6
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Install_BlueDSL] F:\Install.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [LOGGING_EPCP] "C:\Program Files\Parental Filter\LoggingEPCP.exe" start
O4 - HKLM\..\Run: [kzgbjvhc] c:\windows\system32\kzgbjvhc.exe kzgbjvhc
O4 - HKLM\..\Run: [xrnazwyvtb] c:\windows\system32\xrnazwyvtb.exe xrnazwyvtb
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O4 - Global Startup: Wireless Panel.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\parental filter\hooklib.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1064_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {0878F049-D33E-45E0-A157-C36A6683CF25} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1063_XP.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {17E7DE1A-E636-46E2-B626-E928F7966A2F} (hWebPass Control) - http://www.internetpayant.com/kit/ctrl/hWebPass.ocx
O16 - DPF: {1CD4E2DC-2DA0-4154-8723-38CB04FB6A58} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1062_XP.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} - http://www.edipole.fr/kits/WebInstall.dll
O16 - DPF: {82FC4503-8459-4239-9B85-0617BEAA950A} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1061_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} (MastaCash Loader Class) - http://dx.mastacash.com/loader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://ww1.dlv4.com
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_XP.cab
O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - https://www.afternic.com/domains/downloadv3.com
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: x-mem3n - {0F4413E7-5D3B-4B1A-8AA2-E2307F06B228} - C:\Program Files\Parental Filter\eztoolslib.net.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\sony\giga pocket\shwserv.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Parental Filter (ServiceEPCP) - - C:\Program Files\Parental Filter\ServiceEPCP.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Merci lance_yien... c'est un peu long, le rapport bitdefender tournent encore et ca a l'air d'etre la cata.
J'ai l'impression que je suis infestée de virus....
vois tu qqchose qui puisse m'aider à la lecture du premier rapport ?
Merci encore de ton aide
sophie
J'ai l'impression que je suis infestée de virus....
vois tu qqchose qui puisse m'aider à la lecture du premier rapport ?
Merci encore de ton aide
sophie
Salut,
celui-ci aussi je suppose l'ance_yien ? j'trouve pas les deux autres :-/
Sophie,
rien ne sera supprimé sauf si indiqué
___
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Install_BlueDSL] F:\Install.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [kzgbjvhc] c:\windows\system32\kzgbjvhc.exe kzgbjvhc
O4 - HKLM\..\Run: [xrnazwyvtb] c:\windows\system32\xrnazwyvtb.exe xrnazwyvtb
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1064_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {0878F049-D33E-45E0-A157-C36A6683CF25} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1063_XP.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {17E7DE1A-E636-46E2-B626-E928F7966A2F} (hWebPass Control) - http://www.internetpayant.com/kit/ctrl/hWebPass.ocx
O16 - DPF: {1CD4E2DC-2DA0-4154-8723-38CB04FB6A58} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1062_XP.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} - http://www.edipole.fr/kits/WebInstall.dll
O16 - DPF: {82FC4503-8459-4239-9B85-0617BEAA950A} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1061_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} (MastaCash Loader Class) - http://dx.mastacash.com/loader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://ww1.dlv4.com
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_XP.cab
O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - https://www.afternic.com/domains/downloadv3.com
Fait ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Télécharger Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Clic sur démarrer, rechercher ,cherche et supprime ces fichiers si présent:
zgbjvhc.exe
xrnazwyvtb.exe
**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement
Télécharges Blacklight et sauvegarde le sur ton bureau.
https://www.f-secure.com/en
Double cliques sur " blbeta.exe " et acceptes la licence; clic sur "Scan" puis "Next"
Un rapport, va se créer sur ton bureau "fslb-....."
Copies et colles le contenu de ce rapport ici.
Ne touche à rien d'autre!
Redémarre ton Pc et dis nous si ça va mieux
celui-ci aussi je suppose l'ance_yien ? j'trouve pas les deux autres :-/
Sophie,
rien ne sera supprimé sauf si indiqué
___
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Install_BlueDSL] F:\Install.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [kzgbjvhc] c:\windows\system32\kzgbjvhc.exe kzgbjvhc
O4 - HKLM\..\Run: [xrnazwyvtb] c:\windows\system32\xrnazwyvtb.exe xrnazwyvtb
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1064_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {0878F049-D33E-45E0-A157-C36A6683CF25} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1063_XP.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {17E7DE1A-E636-46E2-B626-E928F7966A2F} (hWebPass Control) - http://www.internetpayant.com/kit/ctrl/hWebPass.ocx
O16 - DPF: {1CD4E2DC-2DA0-4154-8723-38CB04FB6A58} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1062_XP.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} - http://www.edipole.fr/kits/WebInstall.dll
O16 - DPF: {82FC4503-8459-4239-9B85-0617BEAA950A} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1061_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} (MastaCash Loader Class) - http://dx.mastacash.com/loader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://ww1.dlv4.com
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_XP.cab
O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - https://www.afternic.com/domains/downloadv3.com
Fait ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Télécharger Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Clic sur démarrer, rechercher ,cherche et supprime ces fichiers si présent:
zgbjvhc.exe
xrnazwyvtb.exe
**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement
Télécharges Blacklight et sauvegarde le sur ton bureau.
https://www.f-secure.com/en
Double cliques sur " blbeta.exe " et acceptes la licence; clic sur "Scan" puis "Next"
Un rapport, va se créer sur ton bureau "fslb-....."
Copies et colles le contenu de ce rapport ici.
Ne touche à rien d'autre!
Redémarre ton Pc et dis nous si ça va mieux
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
bonjour à tous,
@ boulepate62
** non celui-ci tu l'as vu avant moi .
** concerne les autres: t'as répondu, à toi seul, à 4/5 et c'est déjà TB
bravo et surtout merci
@ boulepate62
** non celui-ci tu l'as vu avant moi .
** concerne les autres: t'as répondu, à toi seul, à 4/5 et c'est déjà TB
bravo et surtout merci
Bonjour messieurs et merci pour vos réponses
3eme fois qie j'écris ce message, ce matin ca rame !!! j'ai tout rebooté.
Je vais suivre vos procédures et je vous fais un copy/paste des deux autres rapports demandés.
A tout à l'heure
sophie
EWIDO:
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 19:37:58 27/09/2006
+ Scan result:
C:\WINDOWS\system32\egaccess4_1064.dll -> Dialer.EgroupDial.x : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Instant Access -> Dialer.Generic : No action taken.
C:\WINDOWS\system32\dialx.exe -> Dialer.Masta.a : No action taken.
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\5A22HK60\popup[1].php -> Downloader.IstBar.ai : No action taken.
C:\WINDOWS\Downloaded Program Files\WebInstall.dll -> Downloader.WebInstall : No action taken.
C:\WINDOWS\Downloaded Program Files\UWAS6_0001_N57M1312NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : No action taken.
C:\WINDOWS\loader.dll -> Not-A-Virus.PornDownloader.Win32.Masta.a : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ads.addynamix[2].txt -> TrackingCookie.Addynamix : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@gde.adocean[2].txt -> TrackingCookie.Adocean : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@z1.adserver[1].txt -> TrackingCookie.Adserver : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@adtech[1].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@servedby.advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@atdmt[1].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bfast[1].txt -> TrackingCookie.Bfast : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casalemedia[1].txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinodelrio[1].txt -> TrackingCookie.Casinodelrio : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinoking[1].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.casinolasvegas[2].txt -> TrackingCookie.Casinolasvegas : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinolasvegas[1].txt -> TrackingCookie.Casinolasvegas : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinopays[1].txt -> TrackingCookie.Casinopays : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@clickbank[1].txt -> TrackingCookie.Clickbank : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@com[1].txt -> TrackingCookie.Com : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@a.as-us.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@as-us.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@grandonline[2].txt -> TrackingCookie.Grandonline : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@www.grandonline[1].txt -> TrackingCookie.Grandonline : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@ehg-yvesrocher.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-adversitement.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-dig.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-ogilvy.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-sonyeu.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-sonyny.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-ubisoft.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@phg.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@counter2.hitslink[2].txt -> TrackingCookie.Hitslink : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@mediaplex[2].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@overture[1].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@c.porngraph[2].txt -> TrackingCookie.Porngraph : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@qksrv[1].txt -> TrackingCookie.Qksrv : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@questionmarket[2].txt -> TrackingCookie.Questionmarket : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@realmedia[1].txt -> TrackingCookie.Realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@revenue[2].txt -> TrackingCookie.Revenue : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@serving-sys[2].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@serving-sys[2].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@sexlist[1].txt -> TrackingCookie.Sexlist : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@counter15.sextracker[1].txt -> TrackingCookie.Sextracker : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@sextracker[1].txt -> TrackingCookie.Sextracker : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ads.specificpop[1].txt -> TrackingCookie.Specificpop : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@statcounter[1].txt -> TrackingCookie.Statcounter : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@valueclick[2].txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@yadro[1].txt -> TrackingCookie.Yadro : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@zedo[1].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@zedo[1].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@zedo[2].txt -> TrackingCookie.Zedo : No action taken.
C:\WINDOWS\system32\EGAUTH.dll -> Trojan.P2E.ah : No action taken.
C:\WINDOWS\system32\p2esocks_1020.dll -> Trojan.P2E.ah : No action taken.
C:\WINDOWS\system32\authclient.exe -> Trojan.P2E.al : No action taken.
::Report end
BITDEFENDER:
BitDefender Online Scanner
Scan report generated at: Wed, Sep 27, 2006 - 20:12:24
Scan path: A:\;C:\;D:\;E:\;F:\;H:\;I:\;J:\;K:\;
Statistics
Time
01:22:57
Files
457685
Folders
6744
Boot Sectors
3
Archives
7754
Packed Files
50679
Results
Identified Viruses
26
Infected Files
33
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
56
Engines Info
Virus Definitions
456075
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Infected with: DeepScan:Generic.Dialer.7762AD77
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Disinfection failed
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Deleted
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.E841D137
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Infected with: DeepScan:Generic.Dialer.42698220
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Detected with: Dialer.EGroupDial.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.791300BD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.42698220
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Infected with: Trojan.Downloader.782
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Infected with: Trojan.Downloader.Agent.AD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Infected with: Trojan.Spy.Mslagent.E
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.NAG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.NI
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Infected with: Trojan.Dialer.PC
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.DA4CFC17
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.BA
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.CL
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Infected with: Trojan.Spy.Mslagent.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDC28EF=>(Quarantine-2)
Infected with: Trojan.Mailskinner.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDC28EF=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Infected with: Trojan.Wintrim.CN
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.B
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.CJ
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Infected with: Trojan.Dialer.FA
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Infected with: DeepScan:Generic.Dialer.791300BD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6B91276E=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.AZ
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6B91276E=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.949C67F6
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Deleted
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Infected with: Trojan.Downloader.WebInstall.A
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Disinfection failed
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Deleted
C:\WINDOWS\system32\authclient.exe
Infected with: Trojan.P2E.AI
C:\WINDOWS\system32\authclient.exe
Disinfection failed
C:\WINDOWS\system32\authclient.exe
Deleted
C:\WINDOWS\system32\egaccess4_1064.dll
Detected with: Dialer.EGroupDial.A
C:\WINDOWS\system32\egaccess4_1064.dll
Disinfection failed
C:\WINDOWS\system32\egaccess4_1064.dll
Deleted
C:\WINDOWS\system32\egaccess4_1065.dll
Infected with: DeepScan:Generic.Dialer.7762AD77
C:\WINDOWS\system32\egaccess4_1065.dll
Disinfection failed
C:\WINDOWS\system32\egaccess4_1065.dll
Deleted
C:\WINDOWS\system32\EGAUTH.dll
Infected with: Trojan.P2e.AH
C:\WINDOWS\system32\EGAUTH.dll
Disinfection failed
C:\WINDOWS\system32\EGAUTH.dll
Deleted
C:\WINDOWS\system32\p2esocks_1020.dll
Infected with: Trojan.P2e.AH
C:\WINDOWS\system32\p2esocks_1020.dll
Disinfection failed
C:\WINDOWS\system32\p2esocks_1020.dll
Deleted
3eme fois qie j'écris ce message, ce matin ca rame !!! j'ai tout rebooté.
Je vais suivre vos procédures et je vous fais un copy/paste des deux autres rapports demandés.
A tout à l'heure
sophie
EWIDO:
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 19:37:58 27/09/2006
+ Scan result:
C:\WINDOWS\system32\egaccess4_1064.dll -> Dialer.EgroupDial.x : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Instant Access -> Dialer.Generic : No action taken.
C:\WINDOWS\system32\dialx.exe -> Dialer.Masta.a : No action taken.
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\5A22HK60\popup[1].php -> Downloader.IstBar.ai : No action taken.
C:\WINDOWS\Downloaded Program Files\WebInstall.dll -> Downloader.WebInstall : No action taken.
C:\WINDOWS\Downloaded Program Files\UWAS6_0001_N57M1312NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : No action taken.
C:\WINDOWS\loader.dll -> Not-A-Virus.PornDownloader.Win32.Masta.a : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ads.addynamix[2].txt -> TrackingCookie.Addynamix : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@gde.adocean[2].txt -> TrackingCookie.Adocean : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@z1.adserver[1].txt -> TrackingCookie.Adserver : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@adtech[1].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@servedby.advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@atdmt[1].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bfast[1].txt -> TrackingCookie.Bfast : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casalemedia[1].txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinodelrio[1].txt -> TrackingCookie.Casinodelrio : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinoking[1].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.casinolasvegas[2].txt -> TrackingCookie.Casinolasvegas : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinolasvegas[1].txt -> TrackingCookie.Casinolasvegas : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinopays[1].txt -> TrackingCookie.Casinopays : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@clickbank[1].txt -> TrackingCookie.Clickbank : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@com[1].txt -> TrackingCookie.Com : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@a.as-us.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@as-us.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@grandonline[2].txt -> TrackingCookie.Grandonline : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@www.grandonline[1].txt -> TrackingCookie.Grandonline : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@ehg-yvesrocher.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-adversitement.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-dig.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-ogilvy.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-sonyeu.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-sonyny.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg-ubisoft.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ehg.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@phg.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@counter2.hitslink[2].txt -> TrackingCookie.Hitslink : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@mediaplex[2].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@overture[1].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@c.porngraph[2].txt -> TrackingCookie.Porngraph : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@qksrv[1].txt -> TrackingCookie.Qksrv : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@questionmarket[2].txt -> TrackingCookie.Questionmarket : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@realmedia[1].txt -> TrackingCookie.Realmedia : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@revenue[2].txt -> TrackingCookie.Revenue : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@serving-sys[2].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@serving-sys[2].txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@sexlist[1].txt -> TrackingCookie.Sexlist : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@counter15.sextracker[1].txt -> TrackingCookie.Sextracker : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@sextracker[1].txt -> TrackingCookie.Sextracker : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@ads.specificpop[1].txt -> TrackingCookie.Specificpop : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@statcounter[1].txt -> TrackingCookie.Statcounter : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\antoine planche\Cookies\antoine planche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@valueclick[2].txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@yadro[1].txt -> TrackingCookie.Yadro : No action taken.
C:\Documents and Settings\Sophie\Cookies\sophie@zedo[1].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\louis planche\Cookies\louis planche@zedo[1].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\patrick planche\Cookies\patrick planche@zedo[2].txt -> TrackingCookie.Zedo : No action taken.
C:\WINDOWS\system32\EGAUTH.dll -> Trojan.P2E.ah : No action taken.
C:\WINDOWS\system32\p2esocks_1020.dll -> Trojan.P2E.ah : No action taken.
C:\WINDOWS\system32\authclient.exe -> Trojan.P2E.al : No action taken.
::Report end
BITDEFENDER:
BitDefender Online Scanner
Scan report generated at: Wed, Sep 27, 2006 - 20:12:24
Scan path: A:\;C:\;D:\;E:\;F:\;H:\;I:\;J:\;K:\;
Statistics
Time
01:22:57
Files
457685
Folders
6744
Boot Sectors
3
Archives
7754
Packed Files
50679
Results
Identified Viruses
26
Infected Files
33
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
56
Engines Info
Virus Definitions
456075
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Infected with: DeepScan:Generic.Dialer.7762AD77
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Disinfection failed
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab=>egaccess4_1065.dll
Deleted
C:\Documents and Settings\patrick planche\Local Settings\Temporary Internet Files\Content.IE5\G5EWUMT4\egaccess4_1065_XP[1].cab
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.E841D137
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\03C07794=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Infected with: DeepScan:Generic.Dialer.42698220
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)=>egaccess4_1063.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\075C56AE=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Detected with: Dialer.EGroupDial.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)=>egaccess4_1064.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\111A14E7=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.791300BD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6864C5=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.42698220
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1D6C0EC1=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Infected with: Trojan.Downloader.782
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24C5638C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Infected with: Trojan.Downloader.Agent.AD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C9496F=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Infected with: Trojan.Spy.Mslagent.E
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2C0B06EA=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.NAG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFB0062=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.NI
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2CFE2A5F=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Infected with: Trojan.Dialer.PC
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D01545B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.DA4CFC17
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D057E58=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D082854=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.BA
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\332B58E6=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\368161B1=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.CL
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\381167EA=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Infected with: Trojan.Spy.Mslagent.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CE9416C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDC28EF=>(Quarantine-2)
Infected with: Trojan.Mailskinner.A
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3DDC28EF=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Infected with: Trojan.Wintrim.CN
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\44395C7B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.B
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5062510B=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.CJ
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A12398E=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Infected with: Trojan.Dialer.FA
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5C8A459C=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Infected with: DeepScan:Generic.Dialer.791300BD
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)=>egaccess4_1062.dll
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\656605C4=>(Quarantine-2)
Update failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6B91276E=>(Quarantine-2)
Infected with: Trojan.Downloader.Wintrim.AZ
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6B91276E=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Infected with: Trojan.Dialer.EG
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\760279B5=>(Quarantine-2)
Deleted
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Infected with: DeepScan:Generic.Dialer.949C67F6
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Disinfection failed
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7721636D=>(Quarantine-2)
Deleted
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Infected with: Trojan.Downloader.WebInstall.A
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Disinfection failed
C:\WINDOWS\Downloaded Program Files\WebInstall.dll
Deleted
C:\WINDOWS\system32\authclient.exe
Infected with: Trojan.P2E.AI
C:\WINDOWS\system32\authclient.exe
Disinfection failed
C:\WINDOWS\system32\authclient.exe
Deleted
C:\WINDOWS\system32\egaccess4_1064.dll
Detected with: Dialer.EGroupDial.A
C:\WINDOWS\system32\egaccess4_1064.dll
Disinfection failed
C:\WINDOWS\system32\egaccess4_1064.dll
Deleted
C:\WINDOWS\system32\egaccess4_1065.dll
Infected with: DeepScan:Generic.Dialer.7762AD77
C:\WINDOWS\system32\egaccess4_1065.dll
Disinfection failed
C:\WINDOWS\system32\egaccess4_1065.dll
Deleted
C:\WINDOWS\system32\EGAUTH.dll
Infected with: Trojan.P2e.AH
C:\WINDOWS\system32\EGAUTH.dll
Disinfection failed
C:\WINDOWS\system32\EGAUTH.dll
Deleted
C:\WINDOWS\system32\p2esocks_1020.dll
Infected with: Trojan.P2e.AH
C:\WINDOWS\system32\p2esocks_1020.dll
Disinfection failed
C:\WINDOWS\system32\p2esocks_1020.dll
Deleted
Salut Sophie
pour avancer un peu Boulepate ;-)
tu es pas mal infecté !!!
1/
Télécharge Blacklight (de F-Secure) :
https://www.f-secure.com/en
et sauvegarde le sur ton Bureau.
Double-clique blbeta.exe et accepte la licence ; laisse [X]scan through Windows Explorer activé ; clique Scan puis Next
Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Copie et colle le contenu de ce rapport dans ta prochaine réponse
2/ ensuite refais un scan evec ewido ( car là il n'as rien fait ! ) et et regle ewido sur "deleted" pour qu'a chaque fois q'il te trouve une salté, il te la vire !
@+
pour avancer un peu Boulepate ;-)
tu es pas mal infecté !!!
1/
Télécharge Blacklight (de F-Secure) :
https://www.f-secure.com/en
et sauvegarde le sur ton Bureau.
Double-clique blbeta.exe et accepte la licence ; laisse [X]scan through Windows Explorer activé ; clique Scan puis Next
Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Copie et colle le contenu de ce rapport dans ta prochaine réponse
2/ ensuite refais un scan evec ewido ( car là il n'as rien fait ! ) et et regle ewido sur "deleted" pour qu'a chaque fois q'il te trouve une salté, il te la vire !
@+
Miracle, j'arrive de nouveau à me connecter sur ce forum après des heures de non dispo !!! (c'est moi ou c'est le site ?)
Alors j'ai fait tout ce que tu m'as dit, voici le rapport demandé:
09/28/06 10:49:12 [Info]: BlackLight Engine 1.0.46 initialized
09/28/06 10:49:12 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/28/06 10:49:12 [Note]: 7019 4
09/28/06 10:49:12 [Note]: 7005 0
09/28/06 10:49:14 [Note]: 7006 0
09/28/06 10:49:14 [Note]: 7011 3976
09/28/06 10:49:14 [Note]: 7026 0
09/28/06 10:49:14 [Note]: 7026 0
09/28/06 10:49:14 [Note]: 7024 3
09/28/06 10:49:14 [Info]: Hidden process: C:\windows\system32\yznrhk.exe
09/28/06 10:49:14 [Note]: FSRAW library version 1.7.1019
09/28/06 10:54:36 [Note]: 4020 51564 458752
09/28/06 10:54:36 [Note]: 4020 51564 458752
09/28/06 10:54:36 [Note]: 4018 51564 458752
09/28/06 10:57:21 [Info]: Hidden file: c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf
09/28/06 10:57:21 [Note]: 10002 1
09/28/06 10:57:52 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
09/28/06 10:57:52 [Note]: 10002 1
09/28/06 10:57:58 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
09/28/06 10:57:58 [Note]: 10002 1
09/28/06 10:58:00 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk.dat
09/28/06 10:58:00 [Note]: 10002 1
09/28/06 10:58:01 [Info]: Hidden file: C:\windows\system32\yznrhk.exe
09/28/06 10:58:01 [Note]: 10002 1
09/28/06 10:58:02 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk_nav.dat
09/28/06 10:58:02 [Note]: 10002 1
09/28/06 10:58:04 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk_navps.dat
09/28/06 10:58:04 [Note]: 10002 1
09/28/06 11:01:01 [Note]: 7007 0
Alors j'ai fait tout ce que tu m'as dit, voici le rapport demandé:
09/28/06 10:49:12 [Info]: BlackLight Engine 1.0.46 initialized
09/28/06 10:49:12 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/28/06 10:49:12 [Note]: 7019 4
09/28/06 10:49:12 [Note]: 7005 0
09/28/06 10:49:14 [Note]: 7006 0
09/28/06 10:49:14 [Note]: 7011 3976
09/28/06 10:49:14 [Note]: 7026 0
09/28/06 10:49:14 [Note]: 7026 0
09/28/06 10:49:14 [Note]: 7024 3
09/28/06 10:49:14 [Info]: Hidden process: C:\windows\system32\yznrhk.exe
09/28/06 10:49:14 [Note]: FSRAW library version 1.7.1019
09/28/06 10:54:36 [Note]: 4020 51564 458752
09/28/06 10:54:36 [Note]: 4020 51564 458752
09/28/06 10:54:36 [Note]: 4018 51564 458752
09/28/06 10:57:21 [Info]: Hidden file: c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf
09/28/06 10:57:21 [Note]: 10002 1
09/28/06 10:57:52 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
09/28/06 10:57:52 [Note]: 10002 1
09/28/06 10:57:58 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
09/28/06 10:57:58 [Note]: 10002 1
09/28/06 10:58:00 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk.dat
09/28/06 10:58:00 [Note]: 10002 1
09/28/06 10:58:01 [Info]: Hidden file: C:\windows\system32\yznrhk.exe
09/28/06 10:58:01 [Note]: 10002 1
09/28/06 10:58:02 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk_nav.dat
09/28/06 10:58:02 [Note]: 10002 1
09/28/06 10:58:04 [Info]: Hidden file: c:\WINDOWS\system32\yznrhk_navps.dat
09/28/06 10:58:04 [Note]: 10002 1
09/28/06 11:01:01 [Note]: 7007 0
Salut,
merci Green day
Sophie,
Télécharge BruteForce Uninstaller ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier sur le bureau par exemple, nomme le CCM, dezippe le fichier telechargé à l'interieur
Ensuite, télécharge EGDACCESS :
Fais un clic droit ici:
http://metallica.geekstogo.com/EGDACCESS.bfu et choisis
Enregistre le sur le bureau, puis mets le dans le dossier CCM que tu as créer, tu aura donc les deux fichiers BFU.exe et EGDACCESS.bfu à l'interieur de ce dossier CCM
----------
Lance "BruteForce Uninstaller" en cliquant sur BFU.exe
Clic sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
Coches la case "Show log" after script ends
Clique sur Execute pour que le fix fasse son boulot
Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le.
Clique Exit pour fermer le programme BFU.
Ensuite, lance Blacklight en double cliquant sur blbeta.exe et accepte la licence.
Clique sur Scan pour lancer l'analyse.
Une fois fait, selectionnes chaques fichiers trouvés et clic sur "RENAME"
Puis valide.
Réponds oui aux messages d'avertissements et te demandant si tu autorises le reboot du pc.
------------------
Après le reboot du pc, les fichiers :
c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf
c:\WINDOWS\system32\msplock32.dll
c:\WINDOWS\system32\yznrhk.dat
C:\windows\system32\yznrhk.exe
c:\WINDOWS\system32\yznrhk_nav.dat
c:\WINDOWS\system32\yznrhk_navps.dat
devraient être visible et pouvoir être supprimés sans aucuns soucis.
Blacklight ne les supprimes pas, il les renommes simplement et il va falloir que tu les vires toi même:
Va dans C:\Windows\system32\ et recherches et effaces:
c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf.ren
c:\WINDOWS\system32\msplock32.dll.ren
c:\WINDOWS\system32\yznrhk.dat.ren
C:\windows\system32\yznrhk.exe.ren
c:\WINDOWS\system32\yznrhk_nav.dat.ren
c:\WINDOWS\system32\yznrhk_navps.dat.ren
Une fois fait, poste le rapport de BFU que tu auras sauvegardé et un nouveau rapport de blacklight stp
merci Green day
Sophie,
Télécharge BruteForce Uninstaller ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier sur le bureau par exemple, nomme le CCM, dezippe le fichier telechargé à l'interieur
Ensuite, télécharge EGDACCESS :
Fais un clic droit ici:
http://metallica.geekstogo.com/EGDACCESS.bfu et choisis
Enregistre le sur le bureau, puis mets le dans le dossier CCM que tu as créer, tu aura donc les deux fichiers BFU.exe et EGDACCESS.bfu à l'interieur de ce dossier CCM
----------
Lance "BruteForce Uninstaller" en cliquant sur BFU.exe
Clic sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
Coches la case "Show log" after script ends
Clique sur Execute pour que le fix fasse son boulot
Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le.
Clique Exit pour fermer le programme BFU.
Ensuite, lance Blacklight en double cliquant sur blbeta.exe et accepte la licence.
Clique sur Scan pour lancer l'analyse.
Une fois fait, selectionnes chaques fichiers trouvés et clic sur "RENAME"
Puis valide.
Réponds oui aux messages d'avertissements et te demandant si tu autorises le reboot du pc.
------------------
Après le reboot du pc, les fichiers :
c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf
c:\WINDOWS\system32\msplock32.dll
c:\WINDOWS\system32\yznrhk.dat
C:\windows\system32\yznrhk.exe
c:\WINDOWS\system32\yznrhk_nav.dat
c:\WINDOWS\system32\yznrhk_navps.dat
devraient être visible et pouvoir être supprimés sans aucuns soucis.
Blacklight ne les supprimes pas, il les renommes simplement et il va falloir que tu les vires toi même:
Va dans C:\Windows\system32\ et recherches et effaces:
c:\WINDOWS\Prefetch\YZNRHK.EXE-0B1D6B26.pf.ren
c:\WINDOWS\system32\msplock32.dll.ren
c:\WINDOWS\system32\yznrhk.dat.ren
C:\windows\system32\yznrhk.exe.ren
c:\WINDOWS\system32\yznrhk_nav.dat.ren
c:\WINDOWS\system32\yznrhk_navps.dat.ren
Une fois fait, poste le rapport de BFU que tu auras sauvegardé et un nouveau rapport de blacklight stp
Hello,
merci je vais faire ca mais juste une petite question d'une novice comme moi et complètement assistée en matière de PC....:
ca ne fait rien de télécharger autant de soft sur son pc ? y a pas des pbs ensuite de mémoire ou de conflit ?
j'ai aussi un autre pb, comme je le disais lors du premier message: j'ai 2 disques durs, l'un plein à 98% et l'autre vide à 98%. Je n'ai aucune idée de comment régler ca et ce que signifie "defragmenter" un dd.
Autre question (désolée) est ce que tu pourrais me dire, grosso modo, quels sont les pbs que tu vois qd tu me donnes toutes les manip à faire ?
Merci encore pour ton temps, c'est vraiment sympa et ca me sauve la vie !!!
merci je vais faire ca mais juste une petite question d'une novice comme moi et complètement assistée en matière de PC....:
ca ne fait rien de télécharger autant de soft sur son pc ? y a pas des pbs ensuite de mémoire ou de conflit ?
j'ai aussi un autre pb, comme je le disais lors du premier message: j'ai 2 disques durs, l'un plein à 98% et l'autre vide à 98%. Je n'ai aucune idée de comment régler ca et ce que signifie "defragmenter" un dd.
Autre question (désolée) est ce que tu pourrais me dire, grosso modo, quels sont les pbs que tu vois qd tu me donnes toutes les manip à faire ?
Merci encore pour ton temps, c'est vraiment sympa et ca me sauve la vie !!!
je n'arrive pas à ouvrir le 2eme fichier, un pop up s'ouvre et me dit que windows ne peut pas ouvrir le fichier car programme inconnu ????
non, ça ne risque rien d'en télécharger autant au contraire ça nous aide.
Pour ton DD plein il faut que tu fasses un transfére(si tu le souhaites) de ton DD plein vers le vide, ça l'allégera un peu.
Les problémes que t uas c'est que tu n'as pas l'air de faire souvent le ménage, donc des bestioles y ont prises place, et comme certaines sont bien cachées ils faut vers plusieurs manipulations pour les virer :-)
Pour ton DD plein il faut que tu fasses un transfére(si tu le souhaites) de ton DD plein vers le vide, ça l'allégera un peu.
Les problémes que t uas c'est que tu n'as pas l'air de faire souvent le ménage, donc des bestioles y ont prises place, et comme certaines sont bien cachées ils faut vers plusieurs manipulations pour les virer :-)
ca y est j'ai reussi, ca tourne et non tu as raison je ne fais jamais le menage et l'homme a qui appartient ce pc est encore pire que moi en matiere d'IT... c'est pas peu dire......autant dire qu'il n'y avait pas de firewall, ni d'anti virus qui tienne la route avant moi, imagines le carnage !!!!
bonjour à tous,
désolé pour la déconnection momentanée,
merci encore, boulepate62 et green day pour le relais.
@sophie: t'en as fait des choses, dis donc, Félicitations!!!!
tu vas y arriver.
continues à suivre les consignes à fur et à mesure sans t'inquiéter pour quoi que ce soit...
bonne chasse!!!
bon courage à tous
a+
désolé pour la déconnection momentanée,
merci encore, boulepate62 et green day pour le relais.
@sophie: t'en as fait des choses, dis donc, Félicitations!!!!
tu vas y arriver.
continues à suivre les consignes à fur et à mesure sans t'inquiéter pour quoi que ce soit...
bonne chasse!!!
bon courage à tous
a+
Salut green day ;
Astuces pour la manip avec le BFU pour cette infection :
1) Toujours passer egdaccess.bfu en mode Sans Échec. Je sais d'où vient la manip que tu utilises, et elle date malheureusement :-(
2) Pas nécessaire de faire cocher "Show log", car ce log est imprécis et ne nous aide pas. Par contre... tu demandes au visiteur de poster le contenu du fichier "C:\egd.txt" qui est généré par le script ; celui-ci va te montrer si la clé "Run" est toujours présente (celle qui correspond à la ligne O4 qui est souvent cachée). Tu peux même en voir plus d'une parfois, si le processus caché mute. Si la clé est repérée, demande un rapport HJT fait en Sans Échec, et là tu verras la (ou les) ligne O4 associée au processus. Demande de fixer celle-ci en Sans Échec, avec HJT.
Bon succès..
Astuces pour la manip avec le BFU pour cette infection :
1) Toujours passer egdaccess.bfu en mode Sans Échec. Je sais d'où vient la manip que tu utilises, et elle date malheureusement :-(
2) Pas nécessaire de faire cocher "Show log", car ce log est imprécis et ne nous aide pas. Par contre... tu demandes au visiteur de poster le contenu du fichier "C:\egd.txt" qui est généré par le script ; celui-ci va te montrer si la clé "Run" est toujours présente (celle qui correspond à la ligne O4 qui est souvent cachée). Tu peux même en voir plus d'une parfois, si le processus caché mute. Si la clé est repérée, demande un rapport HJT fait en Sans Échec, et là tu verras la (ou les) ligne O4 associée au processus. Demande de fixer celle-ci en Sans Échec, avec HJT.
Bon succès..
bonjour,
j'ai été interrompue hier soir, je reprends...
Je suis en train de faire retourner blacklight après avoir suivi des instructions. Par contre maintenant est apparu un nouveau phénomnène qui m'inquiète beaucoup:
Après avoir rebooté mon pc hier soir, est apparu le message suivant provenant de windows microsoft: "vous etes peut etre victime d'une contrzfaçon de logiciel" !!!!
alors la j'ai tres peur....
en attendant voici le rappport BFU:
BFU v1.00.9
Windows XP SP2 (WinNT 5.01.2600 SP2)
Script started at 19:02:43, on 28/09/2006
Option Delete files to Recycle Bin: Yes
Failed: RegDelValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices|MC (key not found)
Failed: RegDelValue HKCU\software\microsoft\windows\currentversion\wintrust\trust providers\software publishing\trust database\0|ELECTRONIC GROUP (key not found)
Failed: DllUnregister C:\WINDOWS\System32\MSWBM32.DLL|1 (file not found)
Failed: FileDelete C:\WINDOWS\System32\msclock32.dll (operation failed)
Failed: FileDelete C:\WINDOWS\System32\msplock32.dll (operation failed)
Failed: FolderDelete C:\Program Files\dialpass (folder not found)
Failed: FolderDelete C:\Program Files\eghtmldialer (folder not found)
Failed: FolderDelete C:\Program Files\egroup (folder not found)
Failed: FolderDelete C:\Program Files\Instant Access (folder not found)
Failed: FolderDelete C:\Program Files\InternetGameBox (folder not found)
Failed: FolderDelete C:\Program Files\GoRecord2 (folder not found)
Failed: FolderDelete C:\Program Files\GoAstro (folder not found)
Failed: FolderDelete C:\Program Files\SudoPlanet (folder not found)
Failed: FolderDelete C:\Program Files\WebMediaPlayer (folder not found)
Failed: DllUnregister C:\WINDOWS\mslagent\2_mslagent.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\navmpc\2_navmpc.dll|1 (file not found)
Failed: FolderDelete C:\WINDOWS\mslagent (folder not found)
Failed: FolderDelete C:\WINDOWS\navmpc (folder not found)
Failed: FolderDelete C:\WINDOWS\wintrim (folder not found)
Failed: FolderDelete C:\WINDOWS\wincomp (folder not found)
Failed: FolderDelete C:\WINDOWS\winmgts (folder not found)
Failed: FolderDelete C:\WINDOWS\simcss (folder not found)
Failed: FolderDelete C:\WINDOWS\mc (folder not found)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\Perflib_Perfdata_30c.dat (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\Perflib_Perfdata_544.dat (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR10.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR11.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR12.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR13.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR14.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR15.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR16.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR17.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR18.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR19.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR25.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR26.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR27.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR28.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR29.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR30.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR31.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR32.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR33.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR34.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR35.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR36.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR37.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR38.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR39.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR40.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR41.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR42.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR43.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR44.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR45.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR46.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR47.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR48.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR49.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR50.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR51.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR52.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR53.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR54.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR55.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR56.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR57.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR58.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR59.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR60.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR61.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR62.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR63.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR64.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR65.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR66.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR67.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR68.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR69.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR70.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR71.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR72.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR73.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR74.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR75.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR76.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR77.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR78.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR79.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR80.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR81.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR82.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR83.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR84.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR85.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR86.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR87.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR88.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR89.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR90.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR91.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR92.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR93.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR94.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR95.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR96.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR97.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR98.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR99.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA0.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA1.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA2.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA3.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA5.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA6.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA7.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA8.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA9.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAA.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAB.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAC.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAD.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAE.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAF.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB0.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB1.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB2.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB3.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB5.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB6.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB7.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB8.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB9.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRBA.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRBB.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF16F4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF3FEC.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF403F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF5D17.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF5D34.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF7E74.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DFA445.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DFFAE4.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\JET330C.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\JET4E06.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\Perflib_Perfdata_6f4.dat (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\ZLT004bf.TMP (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\ZLT032f6.TMP (operation failed)
Failed: FolderDelete C:\WINDOWS\Temp\_avast4_ (operation failed)
Script completed.
j'ai été interrompue hier soir, je reprends...
Je suis en train de faire retourner blacklight après avoir suivi des instructions. Par contre maintenant est apparu un nouveau phénomnène qui m'inquiète beaucoup:
Après avoir rebooté mon pc hier soir, est apparu le message suivant provenant de windows microsoft: "vous etes peut etre victime d'une contrzfaçon de logiciel" !!!!
alors la j'ai tres peur....
en attendant voici le rappport BFU:
BFU v1.00.9
Windows XP SP2 (WinNT 5.01.2600 SP2)
Script started at 19:02:43, on 28/09/2006
Option Delete files to Recycle Bin: Yes
Failed: RegDelValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices|MC (key not found)
Failed: RegDelValue HKCU\software\microsoft\windows\currentversion\wintrust\trust providers\software publishing\trust database\0|ELECTRONIC GROUP (key not found)
Failed: DllUnregister C:\WINDOWS\System32\MSWBM32.DLL|1 (file not found)
Failed: FileDelete C:\WINDOWS\System32\msclock32.dll (operation failed)
Failed: FileDelete C:\WINDOWS\System32\msplock32.dll (operation failed)
Failed: FolderDelete C:\Program Files\dialpass (folder not found)
Failed: FolderDelete C:\Program Files\eghtmldialer (folder not found)
Failed: FolderDelete C:\Program Files\egroup (folder not found)
Failed: FolderDelete C:\Program Files\Instant Access (folder not found)
Failed: FolderDelete C:\Program Files\InternetGameBox (folder not found)
Failed: FolderDelete C:\Program Files\GoRecord2 (folder not found)
Failed: FolderDelete C:\Program Files\GoAstro (folder not found)
Failed: FolderDelete C:\Program Files\SudoPlanet (folder not found)
Failed: FolderDelete C:\Program Files\WebMediaPlayer (folder not found)
Failed: DllUnregister C:\WINDOWS\mslagent\2_mslagent.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\navmpc\2_navmpc.dll|1 (file not found)
Failed: FolderDelete C:\WINDOWS\mslagent (folder not found)
Failed: FolderDelete C:\WINDOWS\navmpc (folder not found)
Failed: FolderDelete C:\WINDOWS\wintrim (folder not found)
Failed: FolderDelete C:\WINDOWS\wincomp (folder not found)
Failed: FolderDelete C:\WINDOWS\winmgts (folder not found)
Failed: FolderDelete C:\WINDOWS\simcss (folder not found)
Failed: FolderDelete C:\WINDOWS\mc (folder not found)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\Perflib_Perfdata_30c.dat (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\Perflib_Perfdata_544.dat (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR10.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR11.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR12.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR13.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR14.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR15.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR16.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR17.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR18.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR19.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR1F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR25.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR26.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR27.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR28.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR29.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR2F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR30.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR31.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR32.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR33.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR34.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR35.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR36.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR37.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR38.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR39.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR3F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR40.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR41.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR42.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR43.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR44.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR45.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR46.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR47.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR48.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR49.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR4F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR50.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR51.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR52.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR53.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR54.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR55.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR56.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR57.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR58.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR59.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR5F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR60.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR61.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR62.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR63.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR64.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR65.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR66.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR67.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR68.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR69.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR6F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR70.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR71.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR72.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR73.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR74.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR75.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR76.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR77.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR78.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR79.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR7F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR80.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR81.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR82.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR83.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR84.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR85.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR86.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR87.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR88.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR89.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR8F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR90.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR91.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR92.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR93.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR94.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR95.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR96.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR97.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR98.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR99.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9B.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9C.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9D.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9E.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTR9F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA0.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA1.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA2.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA3.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA5.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA6.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA7.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA8.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRA9.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAA.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAB.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAC.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAD.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAE.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRAF.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB0.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB1.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB2.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB3.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB5.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB6.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB7.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB8.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRB9.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRBA.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\TTRBB.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF16F4.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF3FEC.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF403F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF5D17.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF5D34.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DF7E74.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DFA445.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\Sophie\LOCALS~1\Temp\~DFFAE4.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\JET330C.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\JET4E06.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\Perflib_Perfdata_6f4.dat (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\ZLT004bf.TMP (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\ZLT032f6.TMP (operation failed)
Failed: FolderDelete C:\WINDOWS\Temp\_avast4_ (operation failed)
Script completed.
Salut à tous
Lance_yien : pas d'quoi !
"de passage" : je crois avoir deviner qui c'est :-)
je note : Merci !
Sophie : ton windows est bien legal ???
télécharge ceci :
CleanUp40 : pageperso.aol.fr/Balltrap34/CleanUp40.exe
tuto : (Merci à Balltrap34 pour cette réalisation) pageperso.aol.fr/balltrap34/democleanup.htm
++
Lance_yien : pas d'quoi !
"de passage" : je crois avoir deviner qui c'est :-)
je note : Merci !
Sophie : ton windows est bien legal ???
télécharge ceci :
CleanUp40 : pageperso.aol.fr/Balltrap34/CleanUp40.exe
tuto : (Merci à Balltrap34 pour cette réalisation) pageperso.aol.fr/balltrap34/democleanup.htm
++
