Sujet Précédent Sujet Suivant

Virus malwarewipe et w32.myzor.fk@yf

fidou27 Messages postés 10 Statut Membre -  
 Utilisateur anonyme -
Bonjour, je viens de me faire infecter par malwarewipe et w32.wyzor.fk@yf.

Il semble que ce soit des virus permettant de connaitre les codes secrets ainsi que les données des cartes bancaire. Cela est-il vrai pour des anciennes transactions réalisées (en https biensur) avant que ces virus ne ce soient déclarées.

Il parait que dans XP toutes les touches du clavier appuyées sont enregistrées et que les hackers s'en servent .
Cela est-il vrai et est-il possible de supprimer l'historique s'il y en a un.

Je suis tres soucieux et désirerai avoir de l'aide de votre part en répondant à mes interrogations et ensuite en m'aidant à supprimer ces virus.

Mercid'avance de bien vouloir me consacrer du temps

Cordialement

Fidou27
A voir également:

18 réponses

Réponse 1 / 18
Utilisateur anonyme
 
Salut,

la solution serait de supprimer ce(s) virus et ensuite changer tes mots de passe si l'envie te dit

Télécharge HijackThis:
http://www.infos-du-net.com/telecharger/HijackThis.html

Installe le dans son propre dossier:
-clic droit sur le bureau, choisis "nouveau dossier" puis installe le dedans.
Lance le, clic sur "do a system scan and save logfile"
Puis copie et colle le rapport ici stp
0
Réponse 2 / 18
fidou27 Messages postés 10 Statut Membre
 
Bonjour, merci tout d'abord de bien vouloir m'aider dans mes démarches.
Voici le résultat du log

Logfile of HijackThis v1.99.1
Scan saved at 16:11:48, on 03/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ishost.exe
C:\WINDOWS\system32\ismini.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\isnotify.exe
C:\WINDOWS\system32\issearch.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ChrisTV\ChrisTV_Agent.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Norton Password Manager\AcctMgr.exe
C:\Program Files\Companion Photo\AzAgent.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKTOPASS.EXE
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKSlapi.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Frédéric\Bureau\Nouveau dossier\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Tiscali
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 205.238.40.2 www.winmx.com
O1 - Hosts: 205.238.40.2 err.winmx.com
O1 - Hosts: 205.238.40.2 c3310.z1301.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1301.winmx.com
O1 - Hosts: 82.43.224.20 c3312.z1301.winmx.com
O1 - Hosts: 209.67.209.50 c3313.z1301.winmx.com
O1 - Hosts: 212.227.64.159 c3314.z1301.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1301.winmx.com
O1 - Hosts: 67.18.233.36 c3316.z1301.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1301.winmx.com
O1 - Hosts: 209.67.209.50 c3318.z1301.winmx.com
O1 - Hosts: 212.227.64.159 c3319.z1301.winmx.com
O1 - Hosts: 205.238.40.2 c3310.z1302.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1302.winmx.com
O1 - Hosts: 82.43.224.20 c3312.z1302.winmx.com
O1 - Hosts: 209.67.209.50 c3313.z1302.winmx.com
O1 - Hosts: 212.227.64.159 c3314.z1302.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1302.winmx.com
O1 - Hosts: 67.18.233.36 c3316.z1302.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1302.winmx.com
O1 - Hosts: 209.67.209.50 c3318.z1302.winmx.com
O1 - Hosts: 212.227.64.159 c3319.z1302.winmx.com
O1 - Hosts: 82.43.224.20 c3310.z1303.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3312.z1303.winmx.com
O1 - Hosts: 82.43.224.20 c3313.z1303.winmx.com
O1 - Hosts: 67.18.233.36 c3314.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1303.winmx.com
O1 - Hosts: 82.43.224.20 c3316.z1303.winmx.com
O1 - Hosts: 67.18.233.36 c3317.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3318.z1303.winmx.com
O1 - Hosts: 82.43.224.20 c3319.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3310.z1304.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1304.winmx.com
O1 - Hosts: 82.43.224.20 c3312.z1304.winmx.com
O1 - Hosts: 209.67.209.50 c3313.z1304.winmx.com
O1 - Hosts: 212.227.64.159 c3314.z1304.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1304.winmx.com
O1 - Hosts: 67.18.233.36 c3316.z1304.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1304.winmx.com
O1 - Hosts: 209.67.209.50 c3318.z1304.winmx.com
O1 - Hosts: 212.227.64.159 c3319.z1304.winmx.com
O1 - Hosts: 205.238.40.2 c3310.z1305.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1305.winmx.com
O1 - Hosts: 82.43.224.20 c3312.z1305.winmx.com
O1 - Hosts: 209.67.209.50 c3313.z1305.winmx.com
O1 - Hosts: 212.227.64.159 c3314.z1305.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1305.winmx.com
O1 - Hosts: 67.18.233.36 c3316.z1305.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1305.winmx.com
O1 - Hosts: 209.67.209.50 c3318.z1305.winmx.com
O1 - Hosts: 212.227.64.159 c3319.z1305.winmx.com
O1 - Hosts: 205.238.40.2 c3310.z1306.winmx.com
O1 - Hosts: 67.18.233.36 c3311.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3312.z1306.winmx.com
O1 - Hosts: 209.67.209.50 c3313.z1306.winmx.com
O1 - Hosts: 212.227.64.159 c3314.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3315.z1306.winmx.com
O1 - Hosts: 67.18.233.36 c3316.z1306.winmx.com
O1 - Hosts: 82.43.224.20 c3317.z1306.winmx.com
O1 - Hosts: 209.67.209.50 c3318.z1306.winmx.com
O1 - Hosts: 212.227.64.159 c3319.z1306.winmx.com
O1 - Hosts: 205.238.40.2 c3520.z1301.winmx.com
O1 - Hosts: 67.18.233.36 c3521.z1301.winmx.com
O1 - Hosts: 82.43.224.20 c3522.z1301.winmx.com
O1 - Hosts: 209.67.209.50 c3523.z1301.winmx.com
O1 - Hosts: 212.227.64.159 c3524.z1301.winmx.com
O1 - Hosts: 205.238.40.2 c3525.z1301.winmx.com
O1 - Hosts: 67.18.233.36 c3526.z1301.winmx.com
O1 - Hosts: 82.43.224.20 c3527.z1301.winmx.com
O1 - Hosts: 209.67.209.50 c3528.z1301.winmx.com
O1 - Hosts: 212.227.64.159 c3529.z1301.winmx.com
O1 - Hosts: 205.238.40.2 c3520.z1302.winmx.com
O1 - Hosts: 67.18.233.36 c3521.z1302.winmx.com
O1 - Hosts: 82.43.224.20 c3522.z1302.winmx.com
O1 - Hosts: 209.67.209.50 c3523.z1302.winmx.com
O1 - Hosts: 212.227.64.159 c3524.z1302.winmx.com
O1 - Hosts: 205.238.40.2 c3525.z1302.winmx.com
O1 - Hosts: 67.18.233.36 c3526.z1302.winmx.com
O1 - Hosts: 82.43.224.20 c3527.z1302.winmx.com
O1 - Hosts: 209.67.209.50 c3528.z1302.winmx.com
O1 - Hosts: 212.227.64.159 c3529.z1302.winmx.com
O1 - Hosts: 205.238.40.2 c3520.z1303.winmx.com
O1 - Hosts: 67.18.233.36 c3521.z1303.winmx.com
O1 - Hosts: 82.43.224.20 c3522.z1303.winmx.com
O1 - Hosts: 209.67.209.50 c3523.z1303.winmx.com
O1 - Hosts: 212.227.64.159 c3524.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3525.z1303.winmx.com
O1 - Hosts: 67.18.233.36 c3526.z1303.winmx.com
O1 - Hosts: 82.43.224.20 c3527.z1303.winmx.com
O1 - Hosts: 209.67.209.50 c3528.z1303.winmx.com
O1 - Hosts: 212.227.64.159 c3529.z1303.winmx.com
O1 - Hosts: 205.238.40.2 c3520.z1304.winmx.com
O1 - Hosts: 67.18.233.36 c3521.z1304.winmx.com
O1 - Hosts: 82.43.224.20 c3522.z1304.winmx.com
O1 - Hosts: 209.67.209.50 c3523.z1304.winmx.com
O1 - Hosts: 212.227.64.159 c3524.z1304.winmx.com
O1 - Hosts: 205.238.40.2 c3525.z1304.winmx.com
O1 - Hosts: 67.18.233.36 c3526.z1304.winmx.com
O1 - Hosts: 82.43.224.20 c3527.z1304.winmx.com
O1 - Hosts: 209.67.209.50 c3528.z1304.winmx.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4B01EC94-7707-C9A5-0AE0-0AF56DCE862D} - C:\WINDOWS\system32\eeoayud.dll
O2 - BHO: (no name) - {83DE62E0-5805-11D8-9B25-00E04C60FAF2} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt0.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Safety Bar - {052b12f7-86fa-4921-8482-26c42316b522} - C:\Program Files\Safety Bar\SafetyBar.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ChrisTV Agent] "C:\Program Files\ChrisTV\ChrisTV_Agent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] C:\Program Files\Norton Password Manager\AcctMgr.exe /startup
O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Companion Photo\AzAgent.exe"
O4 - HKLM\..\Run: [tutflmk.dll] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\tutflmk.dll,sczoybc
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\NERO 6\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [gStart] C:\Program Files\Garmin\gStart.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Mémento.lnk = C:\Program Files\billmind.exe
O4 - Global Startup: Travaux PageKeeper.lnk = C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9db7d0a9ed51425fbf8c5d8a99eb59b7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9db7d0a9ed51425fbf8c5d8a99eb59b7
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: *.softpedia.com
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/SU/ocx/12119/CTSUEng.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - public.windupdates.com
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - v5.windowsupdate.microsoft.com
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://register.tiscali.fr/configurateur/AccountHelper.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/SU/ocx/15008/CTPID.cab
O18 - Protocol: bw+0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {D19B94DE-88E6-440A-A235-78513C90F45B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winexy32 - C:\WINDOWS\SYSTEM32\winexy32.dll
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - C:\WINDOWS\system32\urroxtl.dll (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 3 / 18
Utilisateur anonyme
 
Salut,

Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"

coches toutes les casses devant les O1 et 018

Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (reste gratuit après la période d'essai)
Ewido
0
Réponse 4 / 18
fidou27 Messages postés 10 Statut Membre
 
Rebonjour, je viens de faire la manip que tu m'as indiqué et voici le résultat

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 19:12:14 03/10/2006

+ Scan result:

HKLM\SOFTWARE\msbb -> Adware.180Solutions : Cleaned with backup (quarantined).
C:\Program Files\Safety Bar -> Adware.Generic : Cleaned with backup (quarantined).
C:\Program Files\Safety Bar\__delete_on_reboot__s_a_f_e_t_y_b_a_r_._d_l_l_ -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\CLSID\{052b12f7-86fa-4921-8482-26c42316b522} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{052b12f7-86fa-4921-8482-26c42316b522} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-21-1645522239-616249376-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{052B12F7-86FA-4921-8482-26C42316B522} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-21-1645522239-616249376-725345543-1004\Software\IST -> Adware.ISTBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-1645522239-616249376-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{590FFB84-6A29-4797-9C0E-B15DF2C4CDCB} -> Adware.TrustCleaner : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\idd115.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd25F.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd290.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd46.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd476.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd491.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd5D.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd60.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd73C.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd7B1.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd817.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd87B.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd883.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\idd983.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\iddE4.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\iddE5.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\iddE6.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
C:\WINDOWS\Temp\iddF0.tmp.exe -> Heuristic.Win32.Dialer : Ignored.
Y:\Sauvegarde disque Z 15 08 2005\Mes applications téléchargées\Mes bêtises\InstallDialer1.exe/Dialer.exe -> Heuristic.Win32.Dialer : Ignored.
Y:\Sauvegarde disque Z 15 08 2005\Mes bêtises\InstallDialer1.exe/Dialer.exe -> Heuristic.Win32.Dialer : Ignored.
C:\Documents and Settings\Frédéric\Cookies\frédéric@adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@clickbank[1].txt -> TrackingCookie.Clickbank : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@estat[1].txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@weborama[2].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\Frédéric\Cookies\frédéric@yadro[1].txt -> TrackingCookie.Yadro : Cleaned.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\\kernel32.dll -> Trojan.Small : Cleaned with backup (quarantined).

::Report end

Logfile of HijackThis v1.99.1
Scan saved at 19:15:19, on 03/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ChrisTV\ChrisTV_Agent.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Norton Password Manager\AcctMgr.exe
C:\Program Files\Companion Photo\AzAgent.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKTOPASS.EXE
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKSlapi.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\wisptis.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Frédéric\Bureau\Hijackthis\HijackThis.exe
C:\Program Files\Messenger\msmsgs.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Tiscali
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4B01EC94-7707-C9A5-0AE0-0AF56DCE862D} - C:\WINDOWS\system32\eeoayud.dll
O2 - BHO: (no name) - {83DE62E0-5805-11D8-9B25-00E04C60FAF2} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt1.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ChrisTV Agent] "C:\Program Files\ChrisTV\ChrisTV_Agent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] C:\Program Files\Norton Password Manager\AcctMgr.exe /startup
O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Companion Photo\AzAgent.exe"
O4 - HKLM\..\Run: [tutflmk.dll] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\tutflmk.dll,sczoybc
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\NERO 6\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [gStart] C:\Program Files\Garmin\gStart.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Mémento.lnk = C:\Program Files\billmind.exe
O4 - Global Startup: Travaux PageKeeper.lnk = C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9db7d0a9ed51425fbf8c5d8a99eb59b7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9db7d0a9ed51425fbf8c5d8a99eb59b7
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: *.softpedia.com
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/SU/ocx/12119/CTSUEng.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - public.windupdates.com
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - v5.windowsupdate.microsoft.com
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://register.tiscali.fr/configurateur/AccountHelper.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/SU/ocx/15008/CTPID.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winexy32 - C:\WINDOWS\SYSTEM32\winexy32.dll
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - C:\WINDOWS\system32\urroxtl.dll (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 18
Utilisateur anonyme
 
ok, c'est mieux, maintenant

Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"

O2 - BHO: (no name) - {4B01EC94-7707-C9A5-0AE0-0AF56DCE862D} - C:\WINDOWS\system32\eeoayud.dll
O2 - BHO: (no name) - {83DE62E0-5805-11D8-9B25-00E04C60FAF2} - (no file)
O4 - HKLM\..\Run: [tutflmk.dll] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\tutflmk.dll,sczoybc
O16 - DPF: teleir_cert - static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - www.creative.com/SU/ocx/12119/CTSUEng.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - public.windupdates.com
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - v5.windowsupdate.microsoft.com
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - register.tiscali.fr/configurateur/AccountHelper.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - www.creative.com/SU/ocx/15008/CTPID.cab
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - C:\WINDOWS\system32\urroxtl.dll (file missing)

Telecharges Killbox:
www.killbox.net/downloads/KillBox.exe

Doubles clique sur killbox.exe (Pocket Killbox)

- coches: delete on reboot
dans la barre vide entre ceci: (exactement)

C:\WINDOWS\SYSTEM32\winexy32.dll

- cliques sur le rond rouge avec la croix blanche
- une fenetre va apparaitre pour confirmation cliques sur YES
- une seconde fenetre te demande si tu veux redemarrer cliques sur YES

Laisses le pc redemarrer s'il ne redémarre pas fais le par toi même

Clic sur démarrer, rechercher et supprime ces fichiers si présent:

eeoayud.dll
tutflmk.dll

**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement

ensuite, Fait ce nettoyage: (à faire réguliérement)

¤Telecharges et installes ceci:
CCleaner:
Ccleaner

dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes

¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"

Puis:

Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2 (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp

www.bitdefender.com/scan8/ie.html
0
Réponse 6 / 18
fidou27 Messages postés 10 Statut Membre
 
Bonjour, et merci encore une fois de ton aide.
Voici le log suite à bitdefender

BitDefender Online Scanner

Scan report generated at: Tue, Jan 01, 2002 - 03:33:42

Scan path: A:\;C:\;D:\;E:\;F:\;G:\;H:\;I:\;Y:\;Z:\;

Statistics

Time
02:17:53

Files
281584

Folders
7642

Boot Sectors
6

Archives
6982

Packed Files
18881

Results

Identified Viruses
19

Infected Files
550

Suspect Files
0

Warnings
0

Disinfected
353

Deleted Files
213

Engines Info

Virus Definitions
474418

Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)

Scan plugins
13

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1

Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions

Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes

Scanned File
Status

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00400553.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00400553.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00400553.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00432F50.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00432F50.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00432F50.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00704A77.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00704A77.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00704A77.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009548F6.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009548F6.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009548F6.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009F46EB.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009F46EB.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\009F46EB.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A270E7.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A270E7.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A270E7.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A51AE4.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A51AE4.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A51AE4.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A944E0.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A944E0.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A944E0.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00AC6EDD.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00AC6EDD.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00AC6EDD.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00BF6AC7.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00BF6AC7.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00BF6AC7.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C63EC0.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C63EC0.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C63EC0.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C968BC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C968BC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00C968BC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00CD12B9.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00CD12B9.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00CD12B9.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00ED3695.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00ED3695.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00ED3695.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00F7348A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00F7348A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00F7348A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00FE0883.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00FE0883.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00FE0883.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\010243E3.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\010243E3.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\010243E3.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\012F7E4D.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\012F7E4D.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\012F7E4D.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\013B7598.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\013B7598.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\013B7598.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0161601F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0161601F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0161601F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01684166.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01684166.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01684166.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01876BEC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01876BEC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01876BEC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\018D3FE5.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\018D3FE5.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\018D3FE5.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01AB39C4.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01AB39C4.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01AB39C4.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D80592.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D80592.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D80592.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01FC536A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01FC536A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01FC536A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02007D67.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02007D67.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02007D67.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02032763.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02032763.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02032763.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02137951.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02137951.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02137951.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021B42C6.tmp=>(Quarantine-2)=>(NSIS o)=>lzma_solid_nsis0003
Infected with: Trojan.Starter.V

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021B42C6.tmp=>(Quarantine-2)=>(NSIS o)=>lzma_solid_nsis0003
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021B42C6.tmp=>(Quarantine-2)=>(NSIS o)=>lzma_solid_nsis0003
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021B42C6.tmp=>(Quarantine-2)=>(NSIS o)
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02202143.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02202143.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02202143.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\023A7126.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\023A7126.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\023A7126.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02586B06.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02586B06.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02586B06.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02596082.dll=>(Quarantine-2)
Infected with: Trojan.FakeAlert.CX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02596082.dll=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02596082.dll=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\026168FB.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\026168FB.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\026168FB.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02820CD7.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02820CD7.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02820CD7.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\028C0ACC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\028C0ACC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\028C0ACC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02931F5A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02931F5A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02931F5A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BA569A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BA569A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BA569A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02DE2472.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02DE2472.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02DE2472.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03080623.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03080623.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03080623.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\037C6D61.EXE=>(Quarantine-2)
Infected with: Joke.Scrswitch

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\037C6D61.EXE=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\037C6D61.EXE=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03D47232.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03D47232.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03D47232.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\056D4A50.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\056D4A50.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\056D4A50.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0639365F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0639365F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0639365F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C2150F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C2150F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C2150F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06F75489.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06F75489.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06F75489.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089D57B0.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089D57B0.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089D57B0.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0979069E.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0979069E.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0979069E.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D85AC5.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D85AC5.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D85AC5.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB04E2F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB04E2F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB04E2F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C203642.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C203642.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C203642.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D7B436F.exe=>(Quarantine-2)=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D7B436F.exe=>(Quarantine-2)=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D7B436F.exe=>(Quarantine-2)
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DE2670B.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DE2670B.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DE2670B.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E984221.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E984221.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E984221.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F652E30.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F652E30.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F652E30.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCB2438.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCB2438.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCB2438.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCF3C32.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCF3C32.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FCF3C32.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12ED068F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12ED068F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12ED068F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1588185C.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1588185C.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1588185C.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\158C4259.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\158C4259.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\158C4259.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\173551E2.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\173551E2.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\173551E2.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\175E3A63.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\175E3A63.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\175E3A63.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\182A2FFA.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\182A2FFA.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\182A2FFA.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198C63D7.tmp=>(Quarantine-2)
Infected with: Trojan.Dropper.Vb.FV

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198C63D7.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198C63D7.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1A297E20.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1A297E20.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1A297E20.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5B6036.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5B6036.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5B6036.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C8D424D.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C8D424D.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C8D424D.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CE44793.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CE44793.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CE44793.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CF43855.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CF43855.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1CF43855.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D5A2E5C.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D5A2E5C.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D5A2E5C.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1DCB1C75.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1DCB1C75.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1DCB1C75.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20CC006E.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20CC006E.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20CC006E.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\222213DA.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\222213DA.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\222213DA.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22A6009D.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22A6009D.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22A6009D.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22B07E92.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22B07E92.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22B07E92.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22BD2684.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22BD2684.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22BD2684.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22C05080.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22C05080.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22C05080.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22D77667.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22D77667.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22D77667.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22E41E59.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22E41E59.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22E41E59.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2303452D.exe=>(Quarantine-2)
Detected with: Adware.180Solutions.5.11

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2303452D.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2303452D.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23BB6BF9.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23BB6BF9.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23BB6BF9.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23EE142A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23EE142A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23EE142A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2408640D.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2408640D.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2408640D.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\241F09F4.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\241F09F4.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\241F09F4.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24265DED.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24265DED.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24265DED.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243305DE.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243305DE.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243305DE.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24362FDB.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24362FDB.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24362FDB.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243C03D4.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243C03D4.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\243C03D4.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24402DD0.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24402DD0.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24402DD0.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244357CC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244357CC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244357CC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244601C9.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244601C9.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244601C9.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244D55C2.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244D55C2.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\244D55C2.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24507FBE.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24507FBE.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24507FBE.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245329BA.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245329BA.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245329BA.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245753B7.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245753B7.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245753B7.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245A7DB3.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245A7DB3.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245A7DB3.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245D27B0.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245D27B0.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\245D27B0.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246051AC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246051AC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246051AC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24647BA8.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24647BA8.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24647BA8.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246725A5.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246725A5.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246725A5.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246A4FA1.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246A4FA1.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246A4FA1.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246D799E.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246D799E.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\246D799E.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2471239A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2471239A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2471239A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24744D96.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24744D96.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24744D96.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24777793.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24777793.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24777793.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247A218F.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247A218F.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247A218F.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247E4B8C.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247E4B8C.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\247E4B8C.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24817588.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24817588.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24817588.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24841F84.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24841F84.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24841F84.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24884981.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24884981.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24884981.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\248B737D.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\248B737D.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\248B737D.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24AB1759.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24AB1759.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24AB1759.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BC6947.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BC6947.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BC6947.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BF1344.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BF1344.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24BF1344.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24D96327.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24D96327.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24D96327.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24DC0D23.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24DC0D23.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24DC0D23.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E03720.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E03720.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E03720.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E3611C.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E3611C.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E3611C.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E60B19.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E60B19.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E60B19.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E93515.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E93515.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24E93515.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24ED5F11.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24ED5F11.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24ED5F11.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F0090E.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F0090E.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F0090E.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F3330A.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F3330A.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F3330A.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F75D07.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F75D07.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24F75D07.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FA0703.EXE=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FA0703.EXE=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FA0703.EXE
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FD3100.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FD3100.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24FD3100.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25005AFC.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25005AFC.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25005AFC.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250404F8.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250404F8.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250404F8.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25072EF5.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25072EF5.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25072EF5.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250A58F1.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250A58F1.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250A58F1.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250D02EE.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250D02EE.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\250D02EE.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25112CEA.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25112CEA.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25112CEA.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251456E6.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251456E6.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251456E6.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251700E3.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251700E3.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\251700E3.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25357AC2.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25357AC2.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25357AC2.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253824BF.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253824BF.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253824BF.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253B4EBB.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253B4EBB.exe=>(Quarantine-2)
Disinfected

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253B4EBB.exe
Update failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\253E78B8.exe=>(Quarantine-2)
Infected with: Win32.Gael.3666
0
Réponse 7 / 18
Utilisateur anonyme
 
Salut,

ok merci, peux tu remettre un rapport hijackthis stp
0
Réponse 8 / 18
fidou27 Messages postés 10 Statut Membre
 
Salut Boulepate62 voici le rapport

Logfile of HijackThis v1.99.1
Scan saved at 08:50:28, on 09/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ishost.exe
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\system32\ismini.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\issearch.exe
C:\WINDOWS\system32\isnotify.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ChrisTV\ChrisTV_Agent.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Norton Password Manager\AcctMgr.exe
C:\Program Files\Companion Photo\AzAgent.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKTOPASS.EXE
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKSlapi.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Symantec\LiveUpdate\AUpdate.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\Documents and Settings\Frédéric\Bureau\Hijackthis\HijackThis.exe
C:\Program Files\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Program Files\Symantec\LiveUpdate\LuCallbackProxy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Tiscali
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt0.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ChrisTV Agent] "C:\Program Files\ChrisTV\ChrisTV_Agent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] C:\Program Files\Norton Password Manager\AcctMgr.exe /startup
O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Companion Photo\AzAgent.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\NERO 6\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Mémento.lnk = C:\Program Files\billmind.exe
O4 - Global Startup: Travaux PageKeeper.lnk = C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9db7d0a9ed51425fbf8c5d8a99eb59b7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9db7d0a9ed51425fbf8c5d8a99eb59b7
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: *.softpedia.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{56D76F25-515A-4778-B2E1-316862B652E2}: NameServer = 86.64.145.144 84.103.237.144
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winexy32 - winexy32.dll (file missing)
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - (no file)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 9 / 18
fidou27 Messages postés 10 Statut Membre
 
En plus du log que je viens de t'envoyer boulepate62, je rencontre également un soucis sur la page de démarrage d'IE, je suis dirigé sur www.iupdatepage.com au lieu de cegetel

Merci de ton aide

Fidou27
0
Réponse 10 / 18
Utilisateur anonyme
 
Salut Fidou,

O2- BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt0.dll
O20 - Winlogon Notify: winexy32 - winexy32.dll (file missing)
O21 - SSODL: incestuously - {03413bf7-e34c-445b-bfc0-a2b127255871} - (no file)

Clic sur démarrer, rechercher et supprime ce fichier:

ixt0.dll

**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement

Télécharges Blacklight et sauvegarde le sur ton bureau.
https://www.f-secure.com/en
Double cliques sur " blbeta.exe " et acceptes la licence; clic sur "Scan" puis "Next"

Un rapport, va se créer sur ton bureau "fslb-....."

Copies et colles le contenu de ce rapport ici.

Ne touche à rien d'autre!

et

Télécharge SmitfraudFix (enregistre le sur le "bureau")
http://siri.urz.free.fr/Fix/SmitfraudFix.zip

décompresse SmitfraudFix
Lance le fichier SmitfraudFix ou SmitfraudFix.cmd et choisis l option 1 copie le rapport ici stp

0
Réponse 11 / 18
fidou27 Messages postés 10 Statut Membre
 
Salut Boulepate62,
que veux-tu que je fasses sur les trois premieres lignes de ton post?

Que je les fixe avec hijackthis?

Merci

Fidou27
0
Réponse 12 / 18
Utilisateur anonyme
 
oui, désolé fix les avec Hijackthis

il s'fait tard ici, j'vais pas tarder
bonne journée

A toute
0
Réponse 13 / 18
fidou27 Messages postés 10 Statut Membre
 
Voici le résultat des courses...

Seul PB, le fichier ixt0.dll se recréé automatiquement au redemarrage de windows en mode normal alors que j'ai suivi ta méthodologie en mode sans echec

10/10/06 09:31:52 [Info]: BlackLight Engine 1.0.47 initialized
10/10/06 09:31:52 [Info]: OS: 5.1 build 2600 (Service Pack 2)
10/10/06 09:31:52 [Note]: 7019 4
10/10/06 09:31:52 [Note]: 7005 0
10/10/06 09:31:58 [Note]: 7006 0
10/10/06 09:31:58 [Note]: 7011 3276
10/10/06 09:31:58 [Note]: 7026 0
10/10/06 09:31:58 [Note]: 7026 0
10/10/06 09:32:08 [Note]: FSRAW library version 1.7.1020
10/10/06 09:44:43 [Note]: 7007 0

SmitFraudFix v2.105

Rapport fait à 9:46:20,10, 10/10/2006
Executé à partir de Z:\Mes applications t‚l‚charg‚es\Antivir\Smitfraudfix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

C:\WINDOWS\system32\ishost.exe PRESENT !
C:\WINDOWS\system32\ismini.exe PRESENT !
C:\WINDOWS\system32\isnotify.exe PRESENT !
C:\WINDOWS\system32\issearch.exe PRESENT !
C:\WINDOWS\system32\ixt?.dll PRESENT !
C:\WINDOWS\system32\ixt??.dll PRESENT !
C:\WINDOWS\system32\ot.ico PRESENT !
C:\WINDOWS\system32\ts.ico PRESENT !
C:\WINDOWS\system32\components\flx?.dll PRESENT !
C:\WINDOWS\system32\components\flx??.dll PRESENT !
C:\WINDOWS\system32\components\flx???.dll PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Fr‚d‚ric

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Fr‚d‚ric\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

C:\DOCUME~1\ALLUSE~1\MENUDM~1\Online Security Guide.url PRESENT !
C:\DOCUME~1\ALLUSE~1\MENUDM~1\Security Troubleshooting.url PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\FRDRIC~1\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"incestuously"="{03413bf7-e34c-445b-bfc0-a2b127255871}"

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 14 / 18
Utilisateur anonyme
 
Salut,

Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)

- Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l 'option 2 et tu réponds oui à tout.

Enregistre et copie/colle le rapport sur le forum avec un nouveau rapport hijackthis stp
0
Réponse 15 / 18
fidou27 Messages postés 10 Statut Membre
 
Salut boulepate62,

je viens seulement par ta méthode de virer ce fichier ixt0.dll.
Ma page de démarrage IE est bien redirigé maintenant sur Cegetel.
Le situation commence donc à s'éclaircir.

Voici les 2 logs demandés

Merci encore

Fidou27

Logfile of HijackThis v1.99.1
Scan saved at 10:38:11, on 11/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ChrisTV\ChrisTV_Agent.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Norton Password Manager\AcctMgr.exe
C:\Program Files\Companion Photo\AzAgent.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKSlapi.exe
C:\Program Files\Caere\PageKeeper30\SYSTEM\PKTOPASS.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Frédéric\Bureau\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Tiscali
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt0.dll (file missing)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HP Lamp] "C:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan Pro\hplamp.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ChrisTV Agent] "C:\Program Files\ChrisTV\ChrisTV_Agent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] C:\Program Files\Norton Password Manager\AcctMgr.exe /startup
O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Companion Photo\AzAgent.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\NERO 6\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Mémento.lnk = C:\Program Files\billmind.exe
O4 - Global Startup: Travaux PageKeeper.lnk = C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9db7d0a9ed51425fbf8c5d8a99eb59b7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9db7d0a9ed51425fbf8c5d8a99eb59b7
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: *.softpedia.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{56D76F25-515A-4778-B2E1-316862B652E2}: NameServer = 84.103.237.143 86.64.145.143
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

SmitFraudFix v2.105

Rapport fait à 10:29:30,03, 11/10/2006
Executé à partir de Z:\Mes applications t‚l‚charg‚es\Antivir\Smitfraudfix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"incestuously"="{03413bf7-e34c-445b-bfc0-a2b127255871}"

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\WINDOWS\system32\ishost.exe supprimé
C:\WINDOWS\system32\ismini.exe supprimé
C:\WINDOWS\system32\isnotify.exe supprimé
C:\WINDOWS\system32\issearch.exe supprimé
C:\WINDOWS\system32\ot.ico supprimé
C:\WINDOWS\system32\ts.ico supprimé
C:\WINDOWS\system32\components\flx?.dll supprimé
C:\DOCUME~1\ALLUSE~1\MENUDM~1\Online Security Guide.url supprimé
C:\DOCUME~1\ALLUSE~1\MENUDM~1\Security Troubleshooting.url supprimé

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 16 / 18
Utilisateur anonyme
 
Salut Fidou,

ok, merci, maintenant, on va alléger un peu ton Pc au démarrage, rien ne sera supprimé sauf si indiqué

__
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"

O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\system32\ixt0.dll (file missing)
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AzAgent] "C:\Program Files\Companion Photo\AzAgent.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\NERO 6\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Travaux PageKeeper.lnk = C:\Program Files\Caere\PageKeeper30\system\PKJobs.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

Clic sur "demarrer", "executer", tape: services.msc ,cherche dans la liste cette ligne, fais un clic droit dessus choisis "propriétés" et régle la sur "désactivé"

ewido anti-spyware 4.0 guard
NVIDIA Display Driver Service

Refais un nettoyage avec Ccleaner puis dis moi ou en est ton problème

A++
0
Réponse 17 / 18
fidou27 Messages postés 10 Statut Membre
 
Salut Boulepate62?
tout semble redevenu comme avant.

Je tiens encore une fois à te remercier pour le temps que tu as consacré à mon cas personnel.

Dernieres questions, que penses-tu de la protection de NAV2006 officielle?
Y a-t'il une protection plus efficace car je suis interrogatif sur l'efficacité de NAV qui n'a pas su ni déceler et encore moins eradiquer mes virus.

Cordialement

Fidou27
0
Réponse 18 / 18
Utilisateur anonyme
 
Salut Fidou,

Norton j'ai eu pendant quelques mois, je l'ai laissé de côté pour un anti-virus gratuit, j'ai plus jamais eu de problème.Norton est correct mais, il est lourd et pas aussi efficace que sa réputation, à toi de voir ce que tu veux en faire ;-)

Vérifie dans ton pare-feu si des intrus ne se seraient pas cachès.

A++
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
W32 L32: correspondance entre taille US et taille française
efg -
sibel -

6 réponses
win32:malware-gen bloqué par avast
ikkual -
Utilisateur anonyme -

69 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses