Sujet Précédent Sujet Suivant

Page pub ki apparaissent tout le temps

Résolu/Fermé
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006 - 20 oct. 2006 à 18:54
 ^^Marie^^ - 14 févr. 2008 à 21:43
Il y a plein de pages publicitaires et il y a des registry key infectés sur mon ordi.J'ai essayer de les enlever avec avast,ad-aware et spybot et rien ne fonctionne. Que me conseilller vous de faire?
A voir également:

54 réponses

Réponse 1 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
20 oct. 2006 à 18:57
Bonsoir !

Télécharge ceci :

Lien : hijackthis

Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

++
0
alex53
20 oct. 2006 à 22:44
voici ce ke cela me donne

Logfile of HijackThis v1.99.1
Scan saved at 16:39:40, on 2006-10-20
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Network Monitor\netmon.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\DOCUME~1\Claudia\SsAAD.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\dfndrff_e33.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\logon.exe
C:\nwnmff_e33.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmjb.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\MMDiag.exe
C:\Documents and Settings\Alexandre\Bureau\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: DeskbarBHO - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - C:\Program Files\Deskbar\deskbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-ca\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SoftwareStation] "C:\Program Files\eAcceleration\Station\station.exe" /b Startup
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [SsAAD.exe] C:\DOCUME~1\Claudia\SsAAD.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [defender] C:\\dfndrff_e33.exe
O4 - HKLM\..\Run: [keyboard] C:\\kybrdff_e33.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [WinLogon] C:\WINDOWS\logon.exe
O4 - HKLM\..\Run: [newname] C:\\nwnmff_e33.exe
O4 - HKCU\..\Run: [Soap Stupid] C:\DOCUME~1\ALEXAN~1\APPLIC~1\HOLELO~1\extraactivemeow.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZCxdm491YYCA
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: *.dollarrevenue.com
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {00001000-0709-0000-0000-000330050660} - http://207.234.185.217/aboxinst_int22.exe
O16 - DPF: {00330010-0000-0000-0000-000020160010} - http://207.234.185.217/ABoxInst_int25.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/2006/cab/SystemDoctor2006FreeInstall_fr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://miymiaor.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - update.microsoft.com
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - http://www.shockwave.com/content/ballistik/sis/slgwebinstall.cab
O16 - DPF: {7DFDB8FD-B498-4958-B930-38021B94351D} (imlUCID Class) - https://validate.perfdrive.com/?ssa=1cb613c1-b580-495b-866c-b6fe71718572&ssb=36371211747&ssc=https%3A%2F%2Fimlive.com%2Fchatsource%2FImlCID.cab&ssi=b98a4b26-ba0f-44c8-a2a5-0315e1e966ee&ssk=support@shieldsquare.com&ssm=77124680964133473105650333749186&ssn=7eafd9fa9826c01597307b85effe791743b46ba2f27a-3977-4b0e-988e66&sso=940ea59d-ee88a13130f2489df365438a8b123fc056d418d499c5df48&ssp=15188465711607082399160702401540426&ssq=67141537474651350705574746278120044759785&ssr=OTEuMjA5LjM1LjIxOA==&sst=Mozilla/5.0%20(X11;%20Linux%20x86_64)%20AppleWebKit/537.36%20(KHTML,%20like%20Gecko)%20Chrome/74.0.3729.131%20Safari/537.36&ssv=&ssw=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} (WTHoster Class) - https://www.wildtangent.com/
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktanks/sis/BTDownloadCtrl.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: policies - C:\WINDOWS\system32\j06mlaj11do.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\dXNlcg\command.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

Que dois-je faire après?Merci d'avance
0
Réponse 2 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
20 oct. 2006 à 23:52
re

pas mal de saltés !

combien d'antivirus as tu ???


installe un parfeu !!!

kerio


lire le tuto: pour configurer et comprendre Kerio
https://www.vulgarisation-informatique.com/kerio.php
www.pcentraide.com/index.php?showtopic=110


ensuite :

Télécharge Blacklight (de F-Secure) :

https://www.f-secure.com/en

et sauvegarde le sur ton Bureau.

Double-clique blbeta.exe et accepte la licence ;clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse

++
0
Réponse 3 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
21 oct. 2006 à 19:00
Je ne suis pas capable d'ouvrir blacklight,car il est .écrit F-secure blacklight could not acquire necessary privilege(SeDebugPrivilege)
-Your computer settings may prevent acquiring these privileges.
-A malicious program might have disabled these privileges.


Alors que fait-je pour pouvoir l'ouvrir?
0
Réponse 4 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
21 oct. 2006 à 22:05
re

as tu essayer de le télécharger avec une session ayant les droits administrateur ???


fais le 1/ et 2/ de ce lien stp

virus methode preliminaire de desinfection version fr

++
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
22 oct. 2006 à 03:13
Voici le rapport de ewido:

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 21:10:25 2006-10-21

+ Scan result:



C:\Documents and Settings\Alexandre\Local Settings\Temp\temp.fr65D3 -> Adware.CommAd : No action taken.
C:\Documents and Settings\Alexandre\Local Settings\Temp\temp.frCACC -> Adware.CommAd : No action taken.
C:\WINDOWS\dXNlcg\__delete_on_reboot__a_s_a_p_p_s_r_v_._d_l_l_ -> Adware.CommAd : No action taken.
C:\WINDOWS\dXNlcg\__delete_on_reboot__c_o_m_m_a_n_d_._e_x_e_ -> Adware.CommAd : No action taken.
[1036] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1096] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1172] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1720] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1796] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1896] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[1924] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[2344] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[2588] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[2756] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[2844] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3032] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3048] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3084] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3264] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3420] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[3580] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[420] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
[976] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : No action taken.
C:\Documents and Settings\Alexandre\Local Settings\Temp\temp.fr118B -> Adware.Look2Me : No action taken.
C:\Installer4.exe -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\cnyptnet.dll -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\guard.tmp -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\olfox32.dll -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\prwave.dll -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\rBsctrs.dll -> Adware.Look2Me : No action taken.
C:\WINDOWS\system32\uhrcntra.dll -> Adware.Look2Me : No action taken.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : No action taken.
C:\Program Files\Deskbar -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\Cache -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\about.html -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\basis.xml -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\deskbar.crc -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\deskbar.dll -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\deskbar.inf -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\icons.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\inst.bat -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mbback.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mbbigopen.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mbclose.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mbfwd.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mblogo.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\mbsep.bmp -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\options.html -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\softomate.gif -> Adware.Softomate : No action taken.
C:\Program Files\Deskbar\version.txt -> Adware.Softomate : No action taken.
C:\deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e10.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e11.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e12.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e14.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e15.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e17.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e18.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e19.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e20.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e21.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e25.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e28.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e29.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e31.exe/deskbar.exe -> Adware.Softomate : No action taken.
C:\deskbar_e9.exe/deskbar.exe -> Adware.Softomate : No action taken.
HKLM\SOFTWARE\Classes\CLSID\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : No action taken.
HKLM\SOFTWARE\Classes\CLSID\{D7CC80D4-376C-4586-B023-4F35C2CEB28E} -> Adware.Softomate : No action taken.
HKLM\SOFTWARE\Classes\CLSID\{D8C2D4B4-EEAF-4EC4-B1F8-9B6ED15D5A38} -> Adware.Softomate : No action taken.
HKLM\SOFTWARE\Classes\TypeLib\{A4C8F181-6CDB-4DCC-9FC9-BB9933C81E1F} -> Adware.Softomate : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : No action taken.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : No action taken.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : No action taken.
C:\WINDOWS\Downloaded Program Files\slghex.dll -> Adware.SpywareStorm : No action taken.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} -> Adware.ZangoSearch : No action taken.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\HRF8CMR8\kybrdff_e[1].exe -> Downloader.Adload.fk : No action taken.
C:\dfndrff_e20.exe -> Downloader.Adload.fk : No action taken.
C:\dfndrff_e22.exe -> Downloader.Adload.fk : No action taken.
C:\dfndrff_e30.exe -> Downloader.Adload.fk : No action taken.
C:\kybrdff_e11.exe -> Downloader.Adload.fk : No action taken.
C:\kybrdff_e30.exe -> Downloader.Adload.fk : No action taken.
C:\kybrdff_e7.exe -> Downloader.Adload.fk : No action taken.
C:\dfndrff_e11.exe -> Downloader.Adload.fs : No action taken.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\drsmartload44a[1].exe -> Downloader.Adload.fu : No action taken.
C:\mc44a2.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a3.exe -> Downloader.Adload.fu : No action taken.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e22.exe -> Downloader.Adload.fy : No action taken.
C:\dfndrff_e16.exe -> Downloader.Adload.fz : No action taken.
C:\dfndrff_e17.exe -> Downloader.Adload.fz : No action taken.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : No action taken.
C:\dfndrff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\kybrdff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\kybrdff_e27.exe -> Downloader.Adload.gk : No action taken.
C:\kybrdff_e26.exe -> Downloader.Adload.gn : No action taken.
C:\dfndrff_e28.exe -> Downloader.Adload.gp : No action taken.
C:\kybrdff_e28.exe -> Downloader.Adload.gr : No action taken.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\APU3MF6L\kybrdff_e[1].exe -> Downloader.Adload.gw : No action taken.
C:\kybrdff_e32.exe -> Downloader.Adload.gw : No action taken.
C:\kybrdff_e33.exe -> Downloader.Adload.gw : No action taken.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\dfndrff_e[1].exe -> Downloader.Adload.gx : No action taken.
C:\dfndrff_e33.exe -> Downloader.Adload.gx : No action taken.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\CRVZISX5\drsmartload_js[1].htm -> Downloader.IstBar.j : No action taken.
C:\MTE3NDI6ODoxNg.exe -> Downloader.Small.buy : No action taken.
C:\kybrdff_e12.exe -> Downloader.VB.alg : No action taken.
C:\kybrdff_e14.exe -> Downloader.VB.alg : No action taken.
C:\kybrdff_e15.exe -> Downloader.VB.alg : No action taken.
C:\kybrdff_e17.exe -> Downloader.VB.alg : No action taken.
C:\dfndrff_e14.exe -> Hijacker.VB.kc : No action taken.
C:\dfndrff_e12.exe -> Hijacker.VB.ly : No action taken.
C:\dfndrff_e21.exe -> Hijacker.VB.ly : No action taken.
C:\dfndrff_e8.exe -> Hijacker.VB.ly : No action taken.
C:\kybrdff_e8.exe -> Hijacker.VB.ly : No action taken.
C:\nwnmff_e8.exe -> Hijacker.VB.ly : No action taken.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\N5VNU2SW\speedtest2[1].dll -> Not-A-Virus.Downloader.Win32.InsTool.a : No action taken.
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : No action taken.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\send_car_int[1].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\TFET1QO2\send_car_int[1].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\Program Files\Network Monitor\__delete_on_reboot__n_e_t_m_o_n_._e_x_e_ -> Not-A-Virus.Monitor.Win32.NetMon.a : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Alexandre\Local Settings\Temp\Cookies\alexandre@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@cbs.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\ac\Cookies\ac@msnlivefavorites.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\ac\Cookies\ac@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@tgn.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\user\Cookies\user@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc18.txt -> TrackingCookie.2o7 : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@entrepreneur.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\WINDOWS\Temp\Cookies\mathieu@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\WINDOWS\Temp\Cookies\sylvain@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@66.220.17[1].txt -> TrackingCookie.66.220.17.154 : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@aavalue[2].txt -> TrackingCookie.Aavalue : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@eztracks.aavalue[2].txt -> TrackingCookie.Aavalue : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@prizeamerica.aavalue[1].txt -> TrackingCookie.Aavalue : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@rotator.adjuggler[2].txt -> TrackingCookie.Adjuggler : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@ads43.bpath[2].txt -> TrackingCookie.Bpath : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@www.burstbeacon[2].txt -> TrackingCookie.Burstbeacon : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@www.burstbeacon[1].txt -> TrackingCookie.Burstbeacon : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@burstnet[1].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@www.burstnet[2].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\ac\Cookies\ac@burstnet[2].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@burstnet[1].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@www.burstnet[2].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@cz7.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@cz4.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@cz7.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@com[1].txt -> TrackingCookie.Com : No action taken.
C:\Documents and Settings\ac\Cookies\ac@com[2].txt -> TrackingCookie.Com : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@com[2].txt -> TrackingCookie.Com : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\user\Cookies\user@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc15.txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@c.enhance[1].txt -> TrackingCookie.Enhance : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@www.epilot[1].txt -> TrackingCookie.Epilot : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@www.epilot[1].txt -> TrackingCookie.Epilot : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : No action taken.
C:\Documents and Settings\ac\Cookies\ac@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@as-eu.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc14.txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@as-eu.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Temp\Cookies\sylvain@as-eu.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\LocalService\Cookies\system@findwhat[1].txt -> TrackingCookie.Findwhat : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@c.goclick[1].txt -> TrackingCookie.Goclick : No action taken.
C:\Documents and Settings\LocalService\Cookies\system@c.goclick[2].txt -> TrackingCookie.Goclick : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\ac\Cookies\ac@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@ehg-lvmh.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@hypertracker[1].txt -> TrackingCookie.Hypertracker : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@ivwbox[2].txt -> TrackingCookie.Ivwbox : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@kmpads[2].txt -> TrackingCookie.Kmpads : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@sales.liveperson[2].txt -> TrackingCookie.Liveperson : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@image.masterstats[1].txt -> TrackingCookie.Masterstats : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@image.masterstats[1].txt -> TrackingCookie.Masterstats : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\WINDOWS\Temp\Cookies\mathieu@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@data2.perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\LocalService\Cookies\system@perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@data2.perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@ads.planetactive[1].txt -> TrackingCookie.Planetactive : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\Documents and Settings\ac\Cookies\ac@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@ads.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\Documents and Settings\user\Cookies\user@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\ac\Cookies\ac@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\user\Cookies\user@ads0.revenue[1].txt -> TrackingCookie.Revenue : No action taken.
C:\Documents and Settings\user\Cookies\user@ads01.revenue[1].txt -> TrackingCookie.Revenue : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@adopt.specificclick[2].txt -> TrackingCookie.Specificclick : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@h.starware[2].txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@starware[2].txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@h.starware[1].txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@try.starware[1].txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@tacoda[2].txt -> TrackingCookie.Tacoda : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@tacoda[1].txt -> TrackingCookie.Tacoda : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@targetnet[1].txt -> TrackingCookie.Targetnet : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@ad.text.tbn[2].txt -> TrackingCookie.Texttbnru : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@login.tracking101[2].txt -> TrackingCookie.Tracking101 : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@web-stat[2].txt -> TrackingCookie.Web-stat : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@programs.wegcash[2].txt -> TrackingCookie.Wegcash : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@yadro[1].txt -> TrackingCookie.Yadro : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@yadro[2].txt -> TrackingCookie.Yadro : No action taken.
C:\Documents and Settings\Alexandre\Cookies\alexandre@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\Alexandre\Local Settings\Temp\Cookies\alexandre@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\Claudia\Cookies\claudia@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\ac\Cookies\ac@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\laulau\Cookies\laulau@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\user\Cookies\user@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc12.txt -> TrackingCookie.Yieldmanager : No action taken.
C:\WINDOWS\Temp\Cookies\alexandre@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\WINDOWS\Temp\Cookies\johanne@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\WINDOWS\Temp\Cookies\mathieu@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\WINDOWS\Temp\Cookies\sylvain@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\IYCH80VR\dfndrff_e[1].exe -> Trojan.VB.asv : No action taken.
C:\dfndrff_e7.exe -> Trojan.VB.asv : No action taken.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\HRF8CMR8\sprY[1].exe -> Worm.VB.aj : No action taken.
C:\Documents and Settings\user\sprY.exe -> Worm.VB.aj : No action taken.


::Report end
0
Réponse 6 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
22 oct. 2006 à 03:17
Voici le rapport de ewido:

:\Documents and Settings\Alexandre\Local Settings\Temp\temp.fr65D3 -> Adware.CommAd : Cleaned.
C:\Documents and Settings\Alexandre\Local Settings\Temp\temp.frCACC -> Adware.CommAd : Cleaned.
C:\WINDOWS\dXNlcg\__delete_on_reboot__a_s_a_p_p_s_r_v_._d_l_l_ -> Adware.CommAd : Cleaned.
C:\WINDOWS\dXNlcg\__delete_on_reboot__c_o_m_m_a_n_d_._e_x_e_ -> Adware.CommAd : Cleaned.
[1036] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1096] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1172] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1720] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1796] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1896] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[1924] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[2344] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[2588] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[2756] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[2844] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3032] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3048] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3084] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3264] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3420] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[3580] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[420] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
[976] C:\WINDOWS\dXNlcg\asappsrv.dll -> Adware.CommAd : Error during cleaning.
C:\Documents and Settings\Alexandre\Local Settings\Temp\temp.fr118B -> Adware.Look2Me : Cleaned.
C:\Installer4.exe -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\cnyptnet.dll -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\guard.tmp -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\olfox32.dll -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\prwave.dll -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\rBsctrs.dll -> Adware.Look2Me : Cleaned.
C:\WINDOWS\system32\uhrcntra.dll -> Adware.Look2Me : Cleaned.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Cleaned.
C:\Program Files\Deskbar -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\Cache -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\about.html -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\basis.xml -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\deskbar.crc -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\deskbar.dll -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\deskbar.inf -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\icons.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\inst.bat -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mbback.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mbbigopen.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mbclose.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mbfwd.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mblogo.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\mbsep.bmp -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\options.html -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\softomate.gif -> Adware.Softomate : Cleaned.
C:\Program Files\Deskbar\version.txt -> Adware.Softomate : Cleaned.
C:\deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e10.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e11.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e12.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e14.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e15.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e17.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e18.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e19.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e20.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e21.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e25.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e28.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e29.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e31.exe/deskbar.exe -> Adware.Softomate : Cleaned.
C:\deskbar_e9.exe/deskbar.exe -> Adware.Softomate : Cleaned.
HKLM\SOFTWARE\Classes\CLSID\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : Cleaned.
HKLM\SOFTWARE\Classes\CLSID\{D7CC80D4-376C-4586-B023-4F35C2CEB28E} -> Adware.Softomate : Cleaned.
HKLM\SOFTWARE\Classes\CLSID\{D8C2D4B4-EEAF-4EC4-B1F8-9B6ED15D5A38} -> Adware.Softomate : Cleaned.
HKLM\SOFTWARE\Classes\TypeLib\{A4C8F181-6CDB-4DCC-9FC9-BB9933C81E1F} -> Adware.Softomate : Cleaned.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : Cleaned.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : Cleaned.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A8B28872-3324-4CD2-8AA3-7D555C872D96} -> Adware.Softomate : Cleaned.
C:\WINDOWS\Downloaded Program Files\slghex.dll -> Adware.SpywareStorm : Cleaned.
HKU\S-1-5-21-1004336348-1060284298-1172710803-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} -> Adware.ZangoSearch : Cleaned.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\HRF8CMR8\kybrdff_e[1].exe -> Downloader.Adload.fk : Cleaned.
C:\dfndrff_e20.exe -> Downloader.Adload.fk : Cleaned.
C:\dfndrff_e22.exe -> Downloader.Adload.fk : Cleaned.
C:\dfndrff_e30.exe -> Downloader.Adload.fk : Cleaned.
C:\kybrdff_e11.exe -> Downloader.Adload.fk : Cleaned.
C:\kybrdff_e30.exe -> Downloader.Adload.fk : Cleaned.
C:\kybrdff_e7.exe -> Downloader.Adload.fk : Cleaned.
C:\dfndrff_e11.exe -> Downloader.Adload.fs : Cleaned.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\drsmartload44a[1].exe -> Downloader.Adload.fu : Cleaned.
C:\mc44a2.exe -> Downloader.Adload.fu : Cleaned.
C:\mc44a3.exe -> Downloader.Adload.fu : Cleaned.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : Cleaned.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : Cleaned.
C:\kybrdff_e22.exe -> Downloader.Adload.fy : Cleaned.
C:\dfndrff_e16.exe -> Downloader.Adload.fz : Cleaned.
C:\dfndrff_e17.exe -> Downloader.Adload.fz : Cleaned.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : Cleaned.
C:\dfndrff_e24.exe -> Downloader.Adload.gg : Cleaned.
C:\kybrdff_e24.exe -> Downloader.Adload.gg : Cleaned.
C:\kybrdff_e27.exe -> Downloader.Adload.gk : Cleaned.
C:\kybrdff_e26.exe -> Downloader.Adload.gn : Cleaned.
C:\dfndrff_e28.exe -> Downloader.Adload.gp : Cleaned.
C:\kybrdff_e28.exe -> Downloader.Adload.gr : Cleaned.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\APU3MF6L\kybrdff_e[1].exe -> Downloader.Adload.gw : Cleaned.
C:\kybrdff_e32.exe -> Downloader.Adload.gw : Cleaned.
C:\kybrdff_e33.exe -> Downloader.Adload.gw : Cleaned.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\dfndrff_e[1].exe -> Downloader.Adload.gx : Cleaned.
C:\dfndrff_e33.exe -> Downloader.Adload.gx : Cleaned.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\CRVZISX5\drsmartload_js[1].htm -> Downloader.IstBar.j : Cleaned.
C:\MTE3NDI6ODoxNg.exe -> Downloader.Small.buy : Cleaned.
C:\kybrdff_e12.exe -> Downloader.VB.alg : Cleaned.
C:\kybrdff_e14.exe -> Downloader.VB.alg : Cleaned.
C:\kybrdff_e15.exe -> Downloader.VB.alg : Cleaned.
C:\kybrdff_e17.exe -> Downloader.VB.alg : Cleaned.
C:\dfndrff_e14.exe -> Hijacker.VB.kc : Cleaned.
C:\dfndrff_e12.exe -> Hijacker.VB.ly : Cleaned.
C:\dfndrff_e21.exe -> Hijacker.VB.ly : Cleaned.
C:\dfndrff_e8.exe -> Hijacker.VB.ly : Cleaned.
C:\kybrdff_e8.exe -> Hijacker.VB.ly : Cleaned.
C:\nwnmff_e8.exe -> Hijacker.VB.ly : Cleaned.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\N5VNU2SW\speedtest2[1].dll -> Not-A-Virus.Downloader.Win32.InsTool.a : Cleaned.
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned.
C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\send_car_int[1].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : Cleaned.
C:\WINDOWS\Temp\Temporary Internet Files\Content.IE5\TFET1QO2\send_car_int[1].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : Cleaned.
C:\Program Files\Network Monitor\__delete_on_reboot__n_e_t_m_o_n_._e_x_e_ -> Not-A-Virus.Monitor.Win32.NetMon.a : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Alexandre\Local Settings\Temp\Cookies\alexandre@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@cbs.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@msnlivefavorites.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@tgn.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\user@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc18.txt -> TrackingCookie.2o7 : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@entrepreneur.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\WINDOWS\Temp\Cookies\mathieu@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\WINDOWS\Temp\Cookies\sylvain@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@66.220.17[1].txt -> TrackingCookie.66.220.17.154 : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@aavalue[2].txt -> TrackingCookie.Aavalue : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@eztracks.aavalue[2].txt -> TrackingCookie.Aavalue : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@prizeamerica.aavalue[1].txt -> TrackingCookie.Aavalue : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@rotator.adjuggler[2].txt -> TrackingCookie.Adjuggler : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@ads43.bpath[2].txt -> TrackingCookie.Bpath : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@www.burstbeacon[2].txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@www.burstbeacon[1].txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@www.burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@www.burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@cz7.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@cz4.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@cz7.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@com[1].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@com[2].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@com[2].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Cleaned.
C:\Documents and Settings\user\Cookies\user@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Cleaned.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc15.txt -> TrackingCookie.Cpvfeed : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@c.enhance[1].txt -> TrackingCookie.Enhance : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@www.epilot[1].txt -> TrackingCookie.Epilot : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@www.epilot[1].txt -> TrackingCookie.Epilot : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@estat[1].txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Cleaned.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc14.txt -> TrackingCookie.Falkag : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Cleaned.
C:\WINDOWS\Temp\Cookies\sylvain@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\LocalService\Cookies\system@findwhat[1].txt -> TrackingCookie.Findwhat : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@c.goclick[1].txt -> TrackingCookie.Goclick : Cleaned.
C:\Documents and Settings\LocalService\Cookies\system@c.goclick[2].txt -> TrackingCookie.Goclick : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@ehg-lvmh.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@hypertracker[1].txt -> TrackingCookie.Hypertracker : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@ivwbox[2].txt -> TrackingCookie.Ivwbox : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@kmpads[2].txt -> TrackingCookie.Kmpads : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@sales.liveperson[2].txt -> TrackingCookie.Liveperson : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@image.masterstats[1].txt -> TrackingCookie.Masterstats : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@image.masterstats[1].txt -> TrackingCookie.Masterstats : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\WINDOWS\Temp\Cookies\mathieu@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@data2.perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\LocalService\Cookies\system@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@data2.perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@ads.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : Cleaned.
C:\Documents and Settings\user\Cookies\user@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\user\Cookies\user@ads0.revenue[1].txt -> TrackingCookie.Revenue : Cleaned.
C:\Documents and Settings\user\Cookies\user@ads01.revenue[1].txt -> TrackingCookie.Revenue : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@adopt.specificclick[2].txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@h.starware[2].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@starware[2].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@h.starware[1].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@try.starware[1].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@targetnet[1].txt -> TrackingCookie.Targetnet : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@ad.text.tbn[2].txt -> TrackingCookie.Texttbnru : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@login.tracking101[2].txt -> TrackingCookie.Tracking101 : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@web-stat[2].txt -> TrackingCookie.Web-stat : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@weborama[2].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@programs.wegcash[2].txt -> TrackingCookie.Wegcash : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@yadro[1].txt -> TrackingCookie.Yadro : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@yadro[2].txt -> TrackingCookie.Yadro : Cleaned.
C:\Documents and Settings\Alexandre\Cookies\alexandre@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Alexandre\Local Settings\Temp\Cookies\alexandre@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Claudia\Cookies\claudia@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\ac\Cookies\ac@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\laulau\Cookies\laulau@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\user\Cookies\user@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\RECYCLER\S-1-5-21-1004336348-1060284298-1172710803-500\Dc12.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\WINDOWS\Temp\Cookies\alexandre@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\WINDOWS\Temp\Cookies\johanne@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\WINDOWS\Temp\Cookies\mathieu@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\WINDOWS\Temp\Cookies\sylvain@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\IYCH80VR\dfndrff_e[1].exe -> Trojan.VB.asv : Cleaned.
C:\dfndrff_e7.exe -> Trojan.VB.asv : Cleaned.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\HRF8CMR8\sprY[1].exe -> Worm.VB.aj : Cleaned.
C:\Documents and Settings\user\sprY.exe -> Worm.VB.aj : Cleaned.


::Report end

0
Réponse 7 / 54
alex53
22 oct. 2006 à 05:09
voici le rapport de BitDefender:

BitDefender Online Scanner



Scan report generated at: Sat, Oct 21, 2006 - 22:52:49





Scan path: A:\;C:\;D:\;E:\;







Statistics

Time
03:55:25

Files
486262

Folders
9267

Boot Sectors
2

Archives
3639

Packed Files
58582




Results

Identified Viruses
43

Infected Files
119

Suspect Files
7

Warnings
0

Disinfected
0

Deleted Files
147




Engines Info

Virus Definitions
478135

Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)

Scan plugins
13

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\dfndrff_e14.exe
Infected with: Trojan.Agent.WU

C:\dfndrff_e14.exe
Disinfection failed

C:\dfndrff_e14.exe
Deleted

C:\dfndrff_e20.exe
Infected with: Trojan.Downloader.VB.XF

C:\dfndrff_e20.exe
Disinfection failed

C:\dfndrff_e20.exe
Deleted

C:\dfndrff_e21.exe
Infected with: Trojan.Downloader.Adload.ED

C:\dfndrff_e21.exe
Disinfection failed

C:\dfndrff_e21.exe
Deleted

C:\dfndrff_e22.exe
Infected with: Trojan.Downloader.Adload.NAF

C:\dfndrff_e22.exe
Disinfection failed

C:\dfndrff_e22.exe
Deleted

C:\dfndrff_e23.exe
Detected with: Adware.Softomate.R

C:\dfndrff_e23.exe
Disinfection failed

C:\dfndrff_e23.exe
Deleted

C:\dfndrff_e24.exe
Infected with: Trojan.Downloader.Adload.GG

C:\dfndrff_e24.exe
Disinfection failed

C:\dfndrff_e24.exe
Deleted

C:\dfndrff_e26.exe
Infected with: Trojan.DollarRevenue.F

C:\dfndrff_e26.exe
Disinfection failed

C:\dfndrff_e26.exe
Deleted

C:\dfndrff_e27.exe
Infected with: Trojan.DollarRevenue.F

C:\dfndrff_e27.exe
Disinfection failed

C:\dfndrff_e27.exe
Deleted

C:\dfndrff_e30.exe
Infected with: Trojan.Downloader.Adload.EU

C:\dfndrff_e30.exe
Disinfection failed

C:\dfndrff_e30.exe
Deleted

C:\dfndrff_e32.exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\dfndrff_e32.exe
Disinfection failed

C:\dfndrff_e32.exe
Deleted

C:\dfndrff_e33.exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\dfndrff_e33.exe
Disinfection failed

C:\dfndrff_e33.exe
Deleted

C:\dfndrff_e7.exe
Infected with: Trojan.VB.IE

C:\dfndrff_e7.exe
Disinfection failed

C:\dfndrff_e7.exe
Deleted

C:\dfndrff_e8.exe
Infected with: Trojan.Clicker.VB.FP

C:\dfndrff_e8.exe
Disinfection failed

C:\dfndrff_e8.exe
Deleted

C:\dfndrff_e9.exe
Infected with: Trojan.VB.JD

C:\dfndrff_e9.exe
Disinfection failed

C:\dfndrff_e9.exe
Deleted

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\CYHWSTEG\nwnmff_e[1].exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\CYHWSTEG\nwnmff_e[1].exe
Disinfection failed

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\CYHWSTEG\nwnmff_e[1].exe
Deleted

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\OTCUZNT6\loader[1].exe
Infected with: Trojan.Downloader.Adload.FA

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\OTCUZNT6\loader[1].exe
Disinfection failed

C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\OTCUZNT6\loader[1].exe
Deleted

C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Quarantine\{00004260-0001-0000-7820-0CCA195F34AF}\DATA.CAB=>RESOURCE1
Infected with: Exploit.Win32.WMF-PFV.G

C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Quarantine\{00004260-0001-0000-7820-0CCA195F34AF}\DATA.CAB=>RESOURCE1
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Quarantine\{00004260-0001-0000-7820-0CCA195F34AF}\DATA.CAB=>RESOURCE1
Deleted

C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Quarantine\{00004260-0001-0000-7820-0CCA195F34AF}\DATA.CAB
Update failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\drsmartload44a[1].exe
Infected with: Trojan.Downloader.Adload.EX

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\drsmartload44a[1].exe
Disinfection failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\drsmartload44a[1].exe
Deleted

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\nwnmff_e[1].exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\nwnmff_e[1].exe
Disinfection failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\4ZC3YTM3\nwnmff_e[1].exe
Deleted

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\APU3MF6L\kybrdff_e[1].exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\APU3MF6L\kybrdff_e[1].exe
Disinfection failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\APU3MF6L\kybrdff_e[1].exe
Deleted

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\CDMB812Z\loader[1].exe
Infected with: Trojan.Downloader.Adload.EV

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\CDMB812Z\loader[1].exe
Disinfection failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\CDMB812Z\loader[1].exe
Deleted

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\dfndrff_e[1].exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\dfndrff_e[1].exe
Disinfection failed

C:\Documents and Settings\Claudia\Local Settings\Temporary Internet Files\Content.IE5\KTQBCXMJ\dfndrff_e[1].exe
Deleted

C:\drsmartload.exe
Infected with: Trojan.Downloader.Adload.FA

C:\drsmartload.exe
Disinfection failed

C:\drsmartload.exe
Deleted

C:\kybrdff_e23.exe
Infected with: Trojan.Downloader.Adload.DT

C:\kybrdff_e23.exe
Disinfection failed

C:\kybrdff_e23.exe
Deleted

C:\kybrdff_e29.exe
Infected with: Trojan.Downloader.Adload.EZ

C:\kybrdff_e29.exe
Disinfection failed

C:\kybrdff_e29.exe
Deleted

C:\kybrdff_e9.exe
Infected with: Trojan.Downloader.DollarRevenue.R

C:\kybrdff_e9.exe
Disinfection failed

C:\kybrdff_e9.exe
Deleted

C:\nwnmff_e33.exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\nwnmff_e33.exe
Disinfection failed

C:\nwnmff_e33.exe
Deleted

C:\nwnmff_e33.exe_tobedeleted
Infected with: Trojan.Spy.DollarRevenue.J

C:\nwnmff_e33.exe_tobedeleted
Disinfection failed

C:\nwnmff_e33.exe_tobedeleted
Deleted

C:\nwnmff_e7.exe_tobedeleted
Infected with: Trojan.Downloader.Adload.MC

C:\nwnmff_e7.exe_tobedeleted
Disinfection failed

C:\nwnmff_e7.exe_tobedeleted
Deleted

C:\Program Files\Network Monitor\__delete_on_reboot__n_e_t_m_o_n_._e_x_e_
Infected with: Trojan.Dnschange.F

C:\Program Files\Network Monitor\__delete_on_reboot__n_e_t_m_o_n_._e_x_e_
Disinfection failed

C:\Program Files\Network Monitor\__delete_on_reboot__n_e_t_m_o_n_._e_x_e_
Delete failed

C:\Program Files\Norton AntiVirus\Quarantine\03731302=>(Quarantine-2)
Infected with: Trojan.Downloader.VB.UU

C:\Program Files\Norton AntiVirus\Quarantine\03731302=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\03731302=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\03763CFF=>(Quarantine-2)
Infected with: Trojan.Adclick.C

C:\Program Files\Norton AntiVirus\Quarantine\03763CFF=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\03763CFF=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\037A66FB=>(Quarantine-2)
Infected with: Trojan.Downloader.VB.UU

C:\Program Files\Norton AntiVirus\Quarantine\037A66FB=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\037A66FB=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\04970298=>(Quarantine-2)
Infected with: Trojan.DollarRevenue.B

C:\Program Files\Norton AntiVirus\Quarantine\04970298=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\04970298=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\197874C5=>(Quarantine-2)
Infected with: Trojan.Adload.FK

C:\Program Files\Norton AntiVirus\Quarantine\197874C5=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\197874C5=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\19982B36=>(Quarantine-2)
Suspected of: BehavesLike:Trojan.Downloader

C:\Program Files\Norton AntiVirus\Quarantine\19982B36=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\19982B36=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\1DC7769B=>(Quarantine-2)
Suspected of: BehavesLike:Trojan.Downloader

C:\Program Files\Norton AntiVirus\Quarantine\1DC7769B=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\1DC7769B=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\2C241705=>(Quarantine-2)
Infected with: Trojan.DollarRevenue.B

C:\Program Files\Norton AntiVirus\Quarantine\2C241705=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\2C241705=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\53B016C6=>(Quarantine-2)
Infected with: Trojan.DollarRevenue.B

C:\Program Files\Norton AntiVirus\Quarantine\53B016C6=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\53B016C6=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\552C2146=>(Quarantine-2)
Infected with: Trojan.Dialer.QM

C:\Program Files\Norton AntiVirus\Quarantine\552C2146=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\552C2146=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\5C4D7342=>(Quarantine-2)
Suspected of: BehavesLike:Trojan.Downloader

C:\Program Files\Norton AntiVirus\Quarantine\5C4D7342=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\5C4D7342=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\69461D83=>(Quarantine-2)
Infected with: Trojan.DollarRevenue.B

C:\Program Files\Norton AntiVirus\Quarantine\69461D83=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\69461D83=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C774BE9=>(Quarantine-2)
Infected with: Trojan.Proxy.493

C:\Program Files\Norton AntiVirus\Quarantine\6C774BE9=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C774BE9=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C8E71D0=>(Quarantine-2)
Infected with: Trojan.Canbede.L

C:\Program Files\Norton AntiVirus\Quarantine\6C8E71D0=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C8E71D0=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C9445C9=>(Quarantine-2)
Infected with: Trojan.Canbede.L

C:\Program Files\Norton AntiVirus\Quarantine\6C9445C9=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C9445C9=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C986FC5=>(Quarantine-2)
Infected with: Trojan.Canbede.L

C:\Program Files\Norton AntiVirus\Quarantine\6C986FC5=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C986FC5=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C9B19C2=>(Quarantine-2)
Infected with: Trojan.Proxy.493

C:\Program Files\Norton AntiVirus\Quarantine\6C9B19C2=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C9B19C2=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6C9E43BE=>(Quarantine-2)
Infected with: Trojan.Candebe.CZ

C:\Program Files\Norton AntiVirus\Quarantine\6C9E43BE=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6C9E43BE=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6CA841B3=>(Quarantine-2)
Infected with: Trojan.Downloader.Small.BUY

C:\Program Files\Norton AntiVirus\Quarantine\6CA841B3=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6CAE15AC=>(Quarantine-2)
Infected with: Trojan.Downloader.Small.BUY

C:\Program Files\Norton AntiVirus\Quarantine\6CAE15AC=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6CB813A1=>(Quarantine-2)
Infected with: Trojan.Downloader.Small.BUY

C:\Program Files\Norton AntiVirus\Quarantine\6CB813A1=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\6CBF679A=>(Quarantine-2)
Infected with: Trojan.Dnschange.F

C:\Program Files\Norton AntiVirus\Quarantine\6CBF679A=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\6CBF679A=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP801\S0094151.Acl
Infected with: Trivial.32.D

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP801\S0094151.Acl
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP801\S0094151.Acl
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP822\A0097549.exe
Infected with: Trojan.Dialer.QM

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP822\A0097549.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP822\A0097549.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP824\A0098624.exe
Suspected of: BehavesLike:Trojan.Downloader

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP824\A0098624.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP824\A0098624.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099878.exe
Suspected of: BehavesLike:Trojan.Downloader

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099878.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099878.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099879.exe
Infected with: Trojan.Downloader.VB.UU

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099879.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP831\A0099879.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100984.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100984.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100984.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100993.exe
Suspected of: BehavesLike:Trojan.Downloader

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100993.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100993.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100996.exe
Suspected of: BehavesLike:Trojan.Downloader

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100996.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100996.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100997.exe
Infected with: Trojan.Downloader.VB.UU

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100997.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100997.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100998.exe
Infected with: Trojan.DollarRevenue.B

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100998.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100998.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100999.exe
Infected with: Trojan.DollarRevenue.B

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100999.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0100999.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101000.exe
Infected with: Trojan.DollarRevenue.B

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101000.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101000.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101001.exe
Infected with: Trojan.Adclick.C

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101001.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101001.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101002.exe
Infected with: Trojan.Adload.FK

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101002.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101002.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101003.exe
Infected with: Trojan.Dialer.QM

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101003.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101003.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101011.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101011.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP832\A0101011.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101109.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101109.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101109.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101121.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101121.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101121.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101221.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101221.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101221.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101312.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101312.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP833\A0101312.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101325.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101325.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101325.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101351.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101351.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101351.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101446.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101446.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101446.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101542.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101542.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101542.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101556.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101556.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP834\A0101556.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0102560.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0102560.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0102560.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0103556.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0103556.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0103556.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0104554.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0104554.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP835\A0104554.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111846.exe
Infected with: Trojan.Downloader.Adload.EV

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111846.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111846.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111945.exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111945.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111945.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111955.exe
Infected with: Trojan.Downloader.Adload.EV

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111955.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP843\A0111955.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112079.dll
Infected with: Trojan.Candebe.CZ

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112079.dll
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112079.dll
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112124.exe
Infected with: Trojan.Downloader.Adload.FA

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112124.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112124.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112316.exe
Infected with: Trojan.Downloader.Adload.FA

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112316.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112316.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112429.exe
Infected with: Trojan.Dnschange.F

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112429.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112429.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112431.exe
Infected with: Trojan.Agent.WU

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112431.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112431.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112432.exe
Infected with: Trojan.Downloader.VB.XF

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112432.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112432.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112433.exe
Infected with: Trojan.Downloader.Adload.ED

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112433.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112433.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112434.exe
Infected with: Trojan.Downloader.Adload.NAF

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112434.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112434.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112435.exe
Detected with: Adware.Softomate.R

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112435.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112435.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112436.exe
Infected with: Trojan.Downloader.Adload.GG

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112436.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112436.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112437.exe
Infected with: Trojan.DollarRevenue.F

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112437.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112437.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112438.exe
Infected with: Trojan.DollarRevenue.F

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112438.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112438.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112439.exe
Infected with: Trojan.Downloader.Adload.EU

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112439.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112439.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112440.exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112440.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112440.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112441.exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112441.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112441.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112442.exe
Infected with: Trojan.VB.IE

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112442.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112442.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112443.exe
Infected with: Trojan.Clicker.VB.FP

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112443.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112443.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112444.exe
Infected with: Trojan.VB.JD

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112444.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112444.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112447.exe
Infected with: Trojan.Clicker.VB.FN

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112447.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112447.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112448.exe
Infected with: Trojan.Clicker.VB.FP

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112448.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112448.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112452.exe
Infected with: Trojan.Downloader.Adload.EY

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112452.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112452.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112453.exe
Infected with: Trojan.Downloader.Adload.MB

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112453.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112453.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112454.exe
Infected with: Trojan.Downloader.Adload.GG

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112454.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112454.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112456.exe
Infected with: Trojan.Downloader.Adload.EX

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112456.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112456.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112457.exe
Infected with: Trojan.Downloader.Adload.EX

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112457.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112457.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112458.exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112458.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112458.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112459.exe
Infected with: Trojan.Downloader.DollarRevenue.V

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112459.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112459.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112462.exe
Infected with: Trojan.Downloader.Adload.FK

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112462.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112462.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112464.exe
Infected with: Trojan.Downloader.VB.VY

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112464.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112464.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112465.exe
Infected with: Trojan.Downloader.Adload.DS

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112465.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112465.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112466.exe
Infected with: Trojan.Downloader.Adload.EG

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112466.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112466.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112467.exe
Infected with: Trojan.Downloader.Adload.DT

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112467.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112467.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112468.exe
Infected with: Trojan.Downloader.Adload.EF

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112468.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112468.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112469.exe
Infected with: Trojan.Adload.RC

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112469.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112469.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112470.exe
Infected with: Trojan.Downloader.Adload.ER

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112470.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112470.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112472.exe
Infected with: Trojan.Downloader.Small.BUY

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112472.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112492.exe
Infected with: Trojan.Canbede.L

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112492.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112492.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112495.dll
Infected with: Trojan.Candebe.CZ

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112495.dll
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112495.dll
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112499.exe
Infected with: Trojan.Downloader.Adload.FA

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112499.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112499.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112500.exe
Infected with: Trojan.Downloader.Adload.DT

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112500.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112500.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112501.exe
Infected with: Trojan.Downloader.Adload.EZ

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112501.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112501.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112502.exe
Infected with: Trojan.Downloader.DollarRevenue.R

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112502.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112502.exe
Deleted

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112503.exe
Infected with: Trojan.Spy.DollarRevenue.J

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112503.exe
Disinfection failed

C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112503.exe
Deleted
0
Réponse 8 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
22 oct. 2006 à 15:06
Salut

belle infection !

Télécharge ceci: (merci a S!RI pour ce petit programme).

http://siri.urz.free.fr/Fix/SmitfraudFix.zip

Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1,
voila a quoi cela ressemble : http://siri.urz.free.fr/Fix/SmitfraudFix.php
il va générer un rapport : copie/colle le sur le poste stp.


++
0
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
22 oct. 2006 à 23:37
Salut voici ce ke ca donne
merci en passant mais je sais que j'ai une belle infection:p

SmitFraudFix v2.112

Rapport fait à 17:28:11,39, 2006-10-22
Executé à partir de C:\Documents and Settings\Alexandre\Mes documents\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

C:\WINDOWS\keyboard1.dat PRESENT !
C:\WINDOWS\newname.dat PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Alexandre


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Alexandre\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\ALEXAN~1\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 9 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
22 oct. 2006 à 23:41
re

ok,

# Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
# Relance le programme Smitfraud :
Cette fois choisit l’option 2, répond oui a tous ;
Sauvegarde le rapport, Redémarre en mode normal, copie/colle le rapport sauvegardé sur le forum

ensuite reposte un nouveau hijackthis

++
0
Réponse 10 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
23 oct. 2006 à 00:20
voici premièrement le rapport de smitfraud :

SmitFraudFix v2.112

Rapport fait à 17:56:01,13, 2006-10-22
Executé à partir de C:\Documents and Settings\Alexandre\Mes documents\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\WINDOWS\keyboard1.dat supprimé
C:\WINDOWS\newname.dat supprimé

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 11 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
23 oct. 2006 à 00:21
voici maintenant le rapport de hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 18:06:02, on 2006-10-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\DOCUME~1\Claudia\SsAAD.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\logon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Documents and Settings\Alexandre\Bureau\HijackThis.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Alwil Software\Avast4\setup\avast.setup
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmjb.exe
C:\WINDOWS\system32\rundll32.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-ca\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SoftwareStation] "C:\Program Files\eAcceleration\Station\station.exe" /b Startup
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [SsAAD.exe] C:\DOCUME~1\Claudia\SsAAD.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [WinLogon] C:\WINDOWS\logon.exe
O4 - HKCU\..\Run: [Soap Stupid] C:\DOCUME~1\ALEXAN~1\APPLIC~1\HOLELO~1\extraactivemeow.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZCxdm491YYCA
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {00001000-0709-0000-0000-000330050660} - http://207.234.185.217/aboxinst_int22.exe
O16 - DPF: {00330010-0000-0000-0000-000020160010} - http://207.234.185.217/ABoxInst_int25.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/2006/cab/SystemDoctor2006FreeInstall_fr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://miymiaor.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - update.microsoft.com
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - http://www.shockwave.com/content/ballistik/sis/slgwebinstall.cab
O16 - DPF: {7DFDB8FD-B498-4958-B930-38021B94351D} (imlUCID Class) - https://validate.perfdrive.com/?ssa=1cb613c1-b580-495b-866c-b6fe71718572&ssb=36371211747&ssc=https%3A%2F%2Fimlive.com%2Fchatsource%2FImlCID.cab&ssi=b98a4b26-ba0f-44c8-a2a5-0315e1e966ee&ssk=support@shieldsquare.com&ssm=77124680964133473105650333749186&ssn=7eafd9fa9826c01597307b85effe791743b46ba2f27a-3977-4b0e-988e66&sso=940ea59d-ee88a13130f2489df365438a8b123fc056d418d499c5df48&ssp=15188465711607082399160702401540426&ssq=67141537474651350705574746278120044759785&ssr=OTEuMjA5LjM1LjIxOA==&sst=Mozilla/5.0%20(X11;%20Linux%20x86_64)%20AppleWebKit/537.36%20(KHTML,%20like%20Gecko)%20Chrome/74.0.3729.131%20Safari/537.36&ssv=&ssw=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} (WTHoster Class) - https://www.wildtangent.com/
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktanks/sis/BTDownloadCtrl.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: URL - C:\WINDOWS\system32\dn4601hse.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\dXNlcg\command.exe (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
0
Réponse 12 / 54
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
23 oct. 2006 à 03:58
slt,

Télécharge Look2Me-Destroyer.exe sur ton Bureau.
http://www.atribune.org/ccount/click.php?id=7

* Ferme toutes les fenêtres actives avant de passer à l'étape suivante.
* Double-clique Look2Me-Destroyer.exe afin de lancer l'outil.
* Coche Run this program as a task
* Un message s'affichera, te disant ceci : "Look2Me-Destroyer will close and re-open in approximately 10 seconds". Clique OK
* Il se relancera après les 10 secondes, puis clique sur le bouton Scan for L2M; les icônes de ton Bureau vont disparaître : c'est normal.
* Lorsque le scan termine, clique sur le bouton Remove L2M
* Un message Done Scanning apparaîtra, clique OK.
* Un nouveau message s'affichera : Done removing infected files! Look2Me-Destroyer will now shutdown your computer; clique OK.
* Ton PC va maintenant s'éteindre.
* Démarre ton PC normalement.
* Colle le rapport généré, situé ici : C:\Look2Me-Destroyer.txt , ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse.

#Si Look2Me-Destroyer ne se relance pas automatiquement après les 10 secondes, redémarre et essaie à nouveau.

##Si tu reçois un message de ton parefeu que l'outil tente d'accéder à l'internet : accepte.

###Si un message runtime error '339' s'affiche : télécharge MSWINSCK.OCX du lien ci-bas, et place-le dans le dossier C:\Windows\System32.
http://www.ascentive.com/support/new/images/lib/MSWINSCK.OCX

a+
0
Réponse 13 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
24 oct. 2006 à 01:47
Salut
voici premièrement le rapport de Look2me-Destroyer:


Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 2006-10-23 19:14:03

Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112061.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112089.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112095.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112113.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112294.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112308.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112324.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112330.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112338.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112345.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112493.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112494.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112496.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112497.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113353.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113354.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113373.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114386.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114387.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114393.dll
Infected! C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0115393.dll
Infected! C:\WINDOWS\system32\dn4601hse.dll
Infected! C:\WINDOWS\system32\h0n0la5m1d.dll
Infected! C:\WINDOWS\system32\lv6s09j7e.dll
Infected! C:\WINDOWS\system32\lvrs0997e.dll
Infected! C:\WINDOWS\system32\mejter40.dll
Infected! C:\WINDOWS\system32\n0r2la9o1d.dll
Infected! C:\WINDOWS\system32\nuevtmsg.dll
Infected! C:\WINDOWS\system32\wostream.dll
Infected! C:\WINDOWS\system32\guard.tmp

Attempting to delete infected files...

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112061.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112061.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112089.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112089.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112095.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112095.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112113.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP844\A0112113.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112294.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112294.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112308.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112308.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112324.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112324.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112330.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP845\A0112330.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112338.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112338.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112345.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112345.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112493.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112493.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112494.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112494.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112496.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112496.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112497.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0112497.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113353.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113353.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113354.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113354.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113373.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP846\A0113373.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114386.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114386.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114387.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114387.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114393.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0114393.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0115393.dll
C:\System Volume Information\_restore{2989FB31-BB17-40BD-9247-1546C59CEBD1}\RP848\A0115393.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dn4601hse.dll
C:\WINDOWS\system32\dn4601hse.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\h0n0la5m1d.dll
C:\WINDOWS\system32\h0n0la5m1d.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lv6s09j7e.dll
C:\WINDOWS\system32\lv6s09j7e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lvrs0997e.dll
C:\WINDOWS\system32\lvrs0997e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mejter40.dll
C:\WINDOWS\system32\mejter40.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\n0r2la9o1d.dll
C:\WINDOWS\system32\n0r2la9o1d.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\nuevtmsg.dll
C:\WINDOWS\system32\nuevtmsg.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\wostream.dll
C:\WINDOWS\system32\wostream.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\guard.tmp
C:\WINDOWS\system32\guard.tmp Deleted successfully!

Making registry repairs.


Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{BFBBF379-BBA6-4ED3-B1D5-28C4E4DC90B7}"
HKCR\Clsid\{BFBBF379-BBA6-4ED3-B1D5-28C4E4DC90B7}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{F99EC03D-0070-401A-BC58-BE352C7E6678}"
HKCR\Clsid\{F99EC03D-0070-401A-BC58-BE352C7E6678}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{B15F6C6C-991C-42AA-9035-4D1B12EECF72}"
HKCR\Clsid\{B15F6C6C-991C-42AA-9035-4D1B12EECF72}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{A45CC4B0-7111-444B-A366-1EE5ABA85918}"
HKCR\Clsid\{A45CC4B0-7111-444B-A366-1EE5ABA85918}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{6CFAC8E4-925D-48B3-8AED-97773370B140}"
HKCR\Clsid\{6CFAC8E4-925D-48B3-8AED-97773370B140}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{FDB12E0F-F787-4452-B8A1-5D67EAFA0A3B}"
HKCR\Clsid\{FDB12E0F-F787-4452-B8A1-5D67EAFA0A3B}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{B33668AD-3A50-490A-A280-5C044CCBE654}"
HKCR\Clsid\{B33668AD-3A50-490A-A280-5C044CCBE654}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{579C2B9B-1213-4834-BA04-858B97AFC660}"
HKCR\Clsid\{579C2B9B-1213-4834-BA04-858B97AFC660}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{4DF45BAC-E72F-40F9-813A-F0BE7A458FF2}"
HKCR\Clsid\{4DF45BAC-E72F-40F9-813A-F0BE7A458FF2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{D69F9BD1-8185-4BD3-89CA-999F7D16B2CA}"
HKCR\Clsid\{D69F9BD1-8185-4BD3-89CA-999F7D16B2CA}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{47425060-8EAE-4B5C-A092-C5D51AE497AC}"
HKCR\Clsid\{47425060-8EAE-4B5C-A092-C5D51AE497AC}

Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrateurs - Succeeded





Maintenant voici le rapport de hijackthis que j'ai fait:


Logfile of HijackThis v1.99.1
Scan saved at 19:36:10, on 2006-10-23
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Symantec\LiveUpdate\AUpdate.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\DOCUME~1\Claudia\SsAAD.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\logon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmjb.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\MMDiag.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Documents and Settings\Alexandre\Bureau\HijackThis.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_director.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Messenger\msmsgs.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-ca\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SoftwareStation] "C:\Program Files\eAcceleration\Station\station.exe" /b Startup
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [SsAAD.exe] C:\DOCUME~1\Claudia\SsAAD.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [WinLogon] C:\WINDOWS\logon.exe
O4 - HKCU\..\Run: [Soap Stupid] C:\DOCUME~1\ALEXAN~1\APPLIC~1\HOLELO~1\extraactivemeow.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZCxdm491YYCA
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {00001000-0709-0000-0000-000330050660} - http://207.234.185.217/aboxinst_int22.exe
O16 - DPF: {00330010-0000-0000-0000-000020160010} - http://207.234.185.217/ABoxInst_int25.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/2006/cab/SystemDoctor2006FreeInstall_fr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://miymiaor.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - http://www.shockwave.com/content/ballistik/sis/slgwebinstall.cab
O16 - DPF: {7DFDB8FD-B498-4958-B930-38021B94351D} (imlUCID Class) - https://validate.perfdrive.com/?ssa=1cb613c1-b580-495b-866c-b6fe71718572&ssb=36371211747&ssc=https%3A%2F%2Fimlive.com%2Fchatsource%2FImlCID.cab&ssi=b98a4b26-ba0f-44c8-a2a5-0315e1e966ee&ssk=support@shieldsquare.com&ssm=77124680964133473105650333749186&ssn=7eafd9fa9826c01597307b85effe791743b46ba2f27a-3977-4b0e-988e66&sso=940ea59d-ee88a13130f2489df365438a8b123fc056d418d499c5df48&ssp=15188465711607082399160702401540426&ssq=67141537474651350705574746278120044759785&ssr=OTEuMjA5LjM1LjIxOA==&sst=Mozilla/5.0%20(X11;%20Linux%20x86_64)%20AppleWebKit/537.36%20(KHTML,%20like%20Gecko)%20Chrome/74.0.3729.131%20Safari/537.36&ssv=&ssw=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} (WTHoster Class) - https://www.wildtangent.com/
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktanks/sis/BTDownloadCtrl.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NetCache - C:\WINDOWS\system32\dn4601hse.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\dXNlcg\command.exe (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
0
Réponse 14 / 54
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 321
24 oct. 2006 à 09:48
Salut

Wahou, t as été trainé ou depuis hier?? lol

Télécharge lopxp ici: (de moe)

http://pageperso.aol.fr/balltrap34/lopxp.zip (Merci Moe31 et Balltrap34)

2) dezippe le (clic droit dessus > extraire tout)
et lance lopxp.bat
le bloc note va s'ouvrir, copie et colle le contenu ici

a+
0
Réponse 15 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
25 oct. 2006 à 14:07
Je le ferais bien mais la g un grave problème qui est que je ne suis plus capble d'ouvrir internet explorer comme du monde.J'ouvre internet explorer et il se referme tout de suite et ca fait aussi ca avec windows live messenger. Alors la je ne sais vraiment plus quoi faire.Et j'ai aucune idée pourquoi g des nouveaux virus, car je ne suis allé nulle part avant-hier ki aurait pu me causer des problèmes.En tout cas c'est ca la.Si vous pensez qu'il y a quelque chose a faire alors ne vous gênez pas.
0
Réponse 16 / 54
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
25 oct. 2006 à 17:15
Salut

redemarre en mode sans echec et lance un scan avec ewido, et vois si tu peux te connecter

tiens nous au courant,@+
0
Réponse 17 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
26 oct. 2006 à 12:51
Je suis capable d'aller sur internet,car g downloader mozilla firefox et mon windows live messenger est correct maintenant.Cela je crois que c'est a cause du scan que je viens de faire avec kaspersky antivirus.Pour ce qui est d'internet explorer il ne fonctionne pas vraiment mieux. Il écrit tout le temps serveur introuvble pour chaque page que j'essai d'aller.
0
Réponse 18 / 54
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
26 oct. 2006 à 20:04
Surfes avec Firefox au lieu de IE

https://sebsauvage.net/logiciels/firefox.html


et fais la manip cité au <16>

a+
0
Réponse 19 / 54
alex53 Messages postés 24 Date d'inscription vendredi 20 octobre 2006 Statut Membre Dernière intervention 4 novembre 2006
26 oct. 2006 à 21:53
Voici le rapport ke ca a donné:

Rapport fait à 19:39:56,17 le 2006-10-25

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\ac\Application Data

2006-04-17 12:15 <REP> Roxio
2006-03-09 18:30 <REP> Leadertech
2006-01-11 18:11 <REP> AdobeUM
2005-11-16 18:10 <REP> Google
2005-10-21 16:53 <REP> Adobe
2005-09-25 11:34 <REP> Sun
2005-09-25 10:22 <REP> Macromedia
2005-08-09 13:11 <REP> Identities
2005-08-09 13:11 62 desktop.ini
2005-08-09 13:11 <REP> ..
2005-08-09 13:11 <REP> .
2005-08-09 13:11 <REP> Microsoft
1 fichier(s) 62 octets
11 R‚p(s) 16067219456 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

2006-10-07 20:58 62 desktop.ini
2006-10-07 20:58 <REP> ..
2006-10-07 20:58 <REP> Microsoft
2006-10-07 20:58 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 16066682880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Alexandre\Application Data

2006-10-13 11:13 278 WinssCookie.txt
2006-10-01 19:58 <REP> Symantec
2006-08-07 18:45 <REP> Google
2006-07-18 19:48 <REP> Help
2006-05-20 13:24 <REP> Idle Jugs Flag
2006-04-29 14:29 <REP> holelongfind
2006-04-09 17:32 <REP> .bittorrent
2006-02-25 17:41 <REP> AdobeAUM
2006-02-25 17:41 <REP> Leadertech
2006-02-19 14:45 <REP> AdobeUM
2006-01-03 17:25 <REP> Lavasoft
2005-12-25 09:56 <REP> Musicmatch
2005-11-15 21:06 <REP> Apple Computer
2005-09-25 21:43 <REP> Adobe
2005-09-23 09:21 <REP> Sun
2005-09-23 08:59 <REP> Macromedia
2005-08-04 08:02 <REP> Roxio
2005-07-24 21:00 <REP> Identities
2005-07-24 21:00 62 desktop.ini
2005-07-24 21:00 <REP> ..
2005-07-24 21:00 <REP> .
2005-07-24 21:00 <REP> Microsoft
2 fichier(s) 340 octets
20 R‚p(s) 16066682880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\All Users\Application Data

2006-10-23 21:16 <REP> Kaspersky Lab
2006-10-01 19:58 <REP> Symantec
2006-09-17 20:19 <REP> Google
2006-02-25 18:15 <REP> Spybot - Search & Destroy
2006-01-04 09:57 <REP> Adobe
2005-12-30 17:00 <REP> InstallShield
2005-12-25 11:28 <REP> Sony Corporation
2005-12-09 09:44 <REP> Windows Genuine Advantage
2005-12-03 14:41 <REP> PopCap
2005-11-17 13:56 <REP> Macrovision
2005-11-17 13:52 <REP> Autodesk
2005-11-15 20:54 <REP> Apple Computer
2005-07-04 21:29 <REP> Roxio
2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
2005-06-03 11:02 <REP> ..
1 fichier(s) 62 octets
16 R‚p(s) 16066678784 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Claudia\Application Data

2006-06-23 09:44 <REP> Leadertech
2006-06-03 09:56 <REP> eAcceleration
2006-03-26 10:09 <REP> Help
2006-01-15 17:09 <REP> AdobeUM
2006-01-05 11:20 <REP> Adobe
2005-12-26 20:09 <REP> Google
2005-12-25 13:56 <REP> Sony Corporation
2005-12-24 13:33 <REP> Roxio
2005-11-18 20:25 <REP> Apple Computer
2005-10-09 11:03 <REP> Sun
2005-09-25 13:50 <REP> Macromedia
2005-07-31 17:26 <REP> Identities
2005-07-31 17:26 62 desktop.ini
2005-07-31 17:26 <REP> ..
2005-07-31 17:26 <REP> .
2005-07-31 17:26 <REP> Microsoft
1 fichier(s) 62 octets
15 R‚p(s) 16066674688 octets libres
Rapport fait à 19:40:39,02 le 2006-10-25

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\ac\Application Data

2006-04-17 12:15 <REP> Roxio
2006-03-09 18:30 <REP> Leadertech
2006-01-11 18:11 <REP> AdobeUM
2005-11-16 18:10 <REP> Google
2005-10-21 16:53 <REP> Adobe
2005-09-25 11:34 <REP> Sun
2005-09-25 10:22 <REP> Macromedia
2005-08-09 13:11 <REP> Identities
2005-08-09 13:11 62 desktop.ini
2005-08-09 13:11 <REP> ..
2005-08-09 13:11 <REP> .
2005-08-09 13:11 <REP> Microsoft
1 fichier(s) 62 octets
11 R‚p(s) 16066478080 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

2006-10-07 20:58 62 desktop.ini
2006-10-07 20:58 <REP> ..
2006-10-07 20:58 <REP> Microsoft
2006-10-07 20:58 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 16066478080 octets libres
Rapport fait à 19:41:16,83 le 2006-10-25

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\ac\Application Data

2006-04-17 12:15 <REP> Roxio
2006-03-09 18:30 <REP> Leadertech
2006-01-11 18:11 <REP> AdobeUM
2005-11-16 18:10 <REP> Google
2005-10-21 16:53 <REP> Adobe
2005-09-25 11:34 <REP> Sun
2005-09-25 10:22 <REP> Macromedia
2005-08-09 13:11 <REP> Identities
2005-08-09 13:11 62 desktop.ini
2005-08-09 13:11 <REP> ..
2005-08-09 13:11 <REP> .
2005-08-09 13:11 <REP> Microsoft
1 fichier(s) 62 octets
11 R‚p(s) 16066457600 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

2006-10-07 20:58 62 desktop.ini
2006-10-07 20:58 <REP> ..
2006-10-07 20:58 <REP> Microsoft
2006-10-07 20:58 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 16066457600 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Alexandre\Application Data

2006-10-13 11:13 278 WinssCookie.txt
2006-10-01 19:58 <REP> Symantec
2006-08-07 18:45 <REP> Google
2006-07-18 19:48 <REP> Help
2006-05-20 13:24 <REP> Idle Jugs Flag
2006-04-29 14:29 <REP> holelongfind
2006-04-09 17:32 <REP> .bittorrent
2006-02-25 17:41 <REP> AdobeAUM
2006-02-25 17:41 <REP> Leadertech
2006-02-19 14:45 <REP> AdobeUM
2006-01-03 17:25 <REP> Lavasoft
2005-12-25 09:56 <REP> Musicmatch
2005-11-15 21:06 <REP> Apple Computer
2005-09-25 21:43 <REP> Adobe
2005-09-23 09:21 <REP> Sun
2005-09-23 08:59 <REP> Macromedia
2005-08-04 08:02 <REP> Roxio
2005-07-24 21:00 <REP> Identities
2005-07-24 21:00 62 desktop.ini
2005-07-24 21:00 <REP> ..
2005-07-24 21:00 <REP> .
2005-07-24 21:00 <REP> Microsoft
2 fichier(s) 340 octets
20 R‚p(s) 16066453504 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\All Users\Application Data

2006-10-23 21:16 <REP> Kaspersky Lab
2006-10-01 19:58 <REP> Symantec
2006-09-17 20:19 <REP> Google
2006-02-25 18:15 <REP> Spybot - Search & Destroy
2006-01-04 09:57 <REP> Adobe
2005-12-30 17:00 <REP> InstallShield
2005-12-25 11:28 <REP> Sony Corporation
2005-12-09 09:44 <REP> Windows Genuine Advantage
2005-12-03 14:41 <REP> PopCap
2005-11-17 13:56 <REP> Macrovision
2005-11-17 13:52 <REP> Autodesk
2005-11-15 20:54 <REP> Apple Computer
2005-07-04 21:29 <REP> Roxio
2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
2005-06-03 11:02 <REP> ..
1 fichier(s) 62 octets
16 R‚p(s) 16066928640 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Claudia\Application Data

2006-06-23 09:44 <REP> Leadertech
2006-06-03 09:56 <REP> eAcceleration
2006-03-26 10:09 <REP> Help
2006-01-15 17:09 <REP> AdobeUM
2006-01-05 11:20 <REP> Adobe
2005-12-26 20:09 <REP> Google
2005-12-25 13:56 <REP> Sony Corporation
2005-12-24 13:33 <REP> Roxio
2005-11-18 20:25 <REP> Apple Computer
2005-10-09 11:03 <REP> Sun
2005-09-25 13:50 <REP> Macromedia
2005-07-31 17:26 <REP> Identities
2005-07-31 17:26 62 desktop.ini
2005-07-31 17:26 <REP> ..
2005-07-31 17:26 <REP> .
2005-07-31 17:26 <REP> Microsoft
1 fichier(s) 62 octets
15 R‚p(s) 16066928640 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Default User\Application Data

2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> ..
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 16066928640 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Johanne

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\laulau\Application Data

2006-09-30 15:50 <REP> PC Tools
2006-07-30 11:16 <REP> MSNInstaller
2006-05-20 20:58 <REP> Idle Jugs Flag
2006-02-22 20:44 <REP> holelongfind
2006-02-12 17:20 <REP> AdobeAUM
2006-01-19 18:58 <REP> AdobeUM
2006-01-15 13:48 <REP> Leadertech
2006-01-01 14:05 <REP> Raptisoft
2005-12-25 12:19 <REP> Musicmatch
2005-12-25 11:27 <REP> Sony Corporation
2005-11-16 21:03 <REP> Apple Computer
2005-11-12 20:18 <REP> Google
2005-09-23 18:01 <REP> Sun
2005-09-23 17:47 <REP> Macromedia
2005-08-29 13:39 <REP> Adobe
2005-07-31 16:51 <REP> Roxio
2005-07-31 16:33 <REP> Identities
2005-07-31 16:33 62 desktop.ini
2005-07-31 16:33 <REP> ..
2005-07-31 16:33 <REP> .
2005-07-31 16:33 <REP> Microsoft
1 fichier(s) 62 octets
20 R‚p(s) 16066936832 octets libres
Rapport fait à 15:36:40,25 le 2006-10-26

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\ac\Application Data

2006-04-17 12:15 <REP> Roxio
2006-03-09 18:30 <REP> Leadertech
2006-01-11 18:11 <REP> AdobeUM
2005-11-16 18:10 <REP> Google
2005-10-21 16:53 <REP> Adobe
2005-09-25 11:34 <REP> Sun
2005-09-25 10:22 <REP> Macromedia
2005-08-09 13:11 <REP> Identities
2005-08-09 13:11 62 desktop.ini
2005-08-09 13:11 <REP> ..
2005-08-09 13:11 <REP> .
2005-08-09 13:11 <REP> Microsoft
1 fichier(s) 62 octets
11 R‚p(s) 15385939968 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

2006-10-07 20:58 62 desktop.ini
2006-10-07 20:58 <REP> ..
2006-10-07 20:58 <REP> Microsoft
2006-10-07 20:58 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 15385939968 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Alexandre\Application Data

2006-10-26 15:24 <REP> AVG7
2006-10-26 06:42 <REP> Mozilla
2006-10-13 11:13 278 WinssCookie.txt
2006-10-01 19:58 <REP> Symantec
2006-08-07 18:45 <REP> Google
2006-07-18 19:48 <REP> Help
2006-05-20 13:24 <REP> Idle Jugs Flag
2006-04-29 14:29 <REP> holelongfind
2006-04-09 17:32 <REP> .bittorrent
2006-02-25 17:41 <REP> AdobeAUM
2006-02-25 17:41 <REP> Leadertech
2006-02-19 14:45 <REP> AdobeUM
2006-01-03 17:25 <REP> Lavasoft
2005-12-25 09:56 <REP> Musicmatch
2005-11-15 21:06 <REP> Apple Computer
2005-09-25 21:43 <REP> Adobe
2005-09-23 09:21 <REP> Sun
2005-09-23 08:59 <REP> Macromedia
2005-08-04 08:02 <REP> Roxio
2005-07-24 21:00 <REP> Identities
2005-07-24 21:00 62 desktop.ini
2005-07-24 21:00 <REP> ..
2005-07-24 21:00 <REP> .
2005-07-24 21:00 <REP> Microsoft
2 fichier(s) 340 octets
22 R‚p(s) 15385939968 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\All Users\Application Data

2006-10-26 06:55 <REP> avg7
2006-10-26 06:55 <REP> Grisoft
2006-10-23 21:16 <REP> Kaspersky Lab
2006-10-01 19:58 <REP> Symantec
2006-09-17 20:19 <REP> Google
2006-02-25 18:15 <REP> Spybot - Search & Destroy
2006-01-04 09:57 <REP> Adobe
2005-12-30 17:00 <REP> InstallShield
2005-12-25 11:28 <REP> Sony Corporation
2005-12-09 09:44 <REP> Windows Genuine Advantage
2005-12-03 14:41 <REP> PopCap
2005-11-17 13:56 <REP> Macrovision
2005-11-17 13:52 <REP> Autodesk
2005-11-15 20:54 <REP> Apple Computer
2005-07-04 21:29 <REP> Roxio
2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
2005-06-03 11:02 <REP> ..
1 fichier(s) 62 octets
18 R‚p(s) 15385939968 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Claudia\Application Data

2006-06-23 09:44 <REP> Leadertech
2006-06-03 09:56 <REP> eAcceleration
2006-03-26 10:09 <REP> Help
2006-01-15 17:09 <REP> AdobeUM
2006-01-05 11:20 <REP> Adobe
2005-12-26 20:09 <REP> Google
2005-12-25 13:56 <REP> Sony Corporation
2005-12-24 13:33 <REP> Roxio
2005-11-18 20:25 <REP> Apple Computer
2005-10-09 11:03 <REP> Sun
2005-09-25 13:50 <REP> Macromedia
2005-07-31 17:26 <REP> Identities
2005-07-31 17:26 62 desktop.ini
2005-07-31 17:26 <REP> ..
2005-07-31 17:26 <REP> .
2005-07-31 17:26 <REP> Microsoft
1 fichier(s) 62 octets
15 R‚p(s) 15385968640 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Default User\Application Data

2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> ..
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 15385944064 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Johanne

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\laulau\Application Data

2006-09-30 15:50 <REP> PC Tools
2006-07-30 11:16 <REP> MSNInstaller
2006-05-20 20:58 <REP> Idle Jugs Flag
2006-02-22 20:44 <REP> holelongfind
2006-02-12 17:20 <REP> AdobeAUM
2006-01-19 18:58 <REP> AdobeUM
2006-01-15 13:48 <REP> Leadertech
2006-01-01 14:05 <REP> Raptisoft
2005-12-25 12:19 <REP> Musicmatch
2005-12-25 11:27 <REP> Sony Corporation
2005-11-16 21:03 <REP> Apple Computer
2005-11-12 20:18 <REP> Google
2005-09-23 18:01 <REP> Sun
2005-09-23 17:47 <REP> Macromedia
2005-08-29 13:39 <REP> Adobe
2005-07-31 16:51 <REP> Roxio
2005-07-31 16:33 <REP> Identities
2005-07-31 16:33 62 desktop.ini
2005-07-31 16:33 <REP> ..
2005-07-31 16:33 <REP> .
2005-07-31 16:33 <REP> Microsoft
1 fichier(s) 62 octets
20 R‚p(s) 15385944064 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Mathieu

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Sylvain\Application Data

2006-09-29 08:29 <REP> PC Tools
2006-05-20 08:10 <REP> Idle Jugs Flag
2006-05-08 20:58 <REP> Sony Corporation
2006-02-25 06:41 <REP> holelongfind
2006-02-15 17:39 <REP> Sun
2006-01-04 10:01 <REP> AdobeUM
2006-01-04 09:41 <REP> Adobe
2006-01-04 09:41 0 dm.ini
2006-01-04 09:41 1563 AdobeDLM.log
2006-01-03 09:39 <REP> Lavasoft
2005-12-27 11:25 <REP> Roxio
2005-11-25 23:35 <REP> Apple Computer
2005-11-24 20:17 <REP> Help
2005-11-10 18:02 <REP> Google
2005-09-25 08:16 <REP> Macromedia
2005-07-17 21:42 <REP> Identities
2005-07-17 21:42 62 desktop.ini
2005-07-17 21:42 <REP> ..
2005-07-17 21:42 <REP> .
2005-07-17 21:42 <REP> Microsoft
3 fichier(s) 1625 octets
17 R‚p(s) 15385939968 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\user\Application Data

2006-07-28 08:58 <REP> Sun
2006-01-02 09:57 <REP> Lavasoft
2005-12-26 13:38 <REP> Google
2005-12-08 20:14 <REP> Macromedia
2005-08-15 21:45 <REP> Adobe
2005-08-15 21:45 <REP> Identities
2005-08-15 21:45 <REP> Microsoft
2005-08-15 21:45 <REP> Roxio
2005-08-15 21:45 <REP> ..
2005-08-15 21:45 <REP> .
2005-06-03 15:48 62 desktop.ini
1 fichier(s) 62 octets
10 R‚p(s) 15385939968 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\WINDOWS\Tasks

2006-10-12 08:40 526 Norton AntiVirus - Analyser mon ordinateur - Alexandre.job
2005-06-03 15:32 6 SA.DAT
2005-06-03 15:24 65 desktop.ini
2005-06-03 15:24 <REP> ..
2005-06-03 15:24 <REP> .
3 fichier(s) 597 octets
2 R‚p(s) 15ÿ385ÿ944ÿ064 octets libres
Rapport fait à 15:48:34,42 le 2006-10-26

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\ac\Application Data

2006-04-17 12:15 <REP> Roxio
2006-03-09 18:30 <REP> Leadertech
2006-01-11 18:11 <REP> AdobeUM
2005-11-16 18:10 <REP> Google
2005-10-21 16:53 <REP> Adobe
2005-09-25 11:34 <REP> Sun
2005-09-25 10:22 <REP> Macromedia
2005-08-09 13:11 <REP> Identities
2005-08-09 13:11 62 desktop.ini
2005-08-09 13:11 <REP> ..
2005-08-09 13:11 <REP> .
2005-08-09 13:11 <REP> Microsoft
1 fichier(s) 62 octets
11 R‚p(s) 15365758976 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Administrateur\Application Data

2006-10-07 20:58 62 desktop.ini
2006-10-07 20:58 <REP> ..
2006-10-07 20:58 <REP> Microsoft
2006-10-07 20:58 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 15365758976 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Alexandre\Application Data

2006-10-26 15:24 <REP> AVG7
2006-10-26 06:42 <REP> Mozilla
2006-10-13 11:13 278 WinssCookie.txt
2006-10-01 19:58 <REP> Symantec
2006-08-07 18:45 <REP> Google
2006-07-18 19:48 <REP> Help
2006-05-20 13:24 <REP> Idle Jugs Flag
2006-04-29 14:29 <REP> holelongfind
2006-04-09 17:32 <REP> .bittorrent
2006-02-25 17:41 <REP> AdobeAUM
2006-02-25 17:41 <REP> Leadertech
2006-02-19 14:45 <REP> AdobeUM
2006-01-03 17:25 <REP> Lavasoft
2005-12-25 09:56 <REP> Musicmatch
2005-11-15 21:06 <REP> Apple Computer
2005-09-25 21:43 <REP> Adobe
2005-09-23 09:21 <REP> Sun
2005-09-23 08:59 <REP> Macromedia
2005-08-04 08:02 <REP> Roxio
2005-07-24 21:00 <REP> Identities
2005-07-24 21:00 62 desktop.ini
2005-07-24 21:00 <REP> ..
2005-07-24 21:00 <REP> .
2005-07-24 21:00 <REP> Microsoft
2 fichier(s) 340 octets
22 R‚p(s) 15365758976 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\All Users\Application Data

2006-10-26 06:55 <REP> avg7
2006-10-26 06:55 <REP> Grisoft
2006-10-23 21:16 <REP> Kaspersky Lab
2006-10-01 19:58 <REP> Symantec
2006-09-17 20:19 <REP> Google
2006-02-25 18:15 <REP> Spybot - Search & Destroy
2006-01-04 09:57 <REP> Adobe
2005-12-30 17:00 <REP> InstallShield
2005-12-25 11:28 <REP> Sony Corporation
2005-12-09 09:44 <REP> Windows Genuine Advantage
2005-12-03 14:41 <REP> PopCap
2005-11-17 13:56 <REP> Macrovision
2005-11-17 13:52 <REP> Autodesk
2005-11-15 20:54 <REP> Apple Computer
2005-07-04 21:29 <REP> Roxio
2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
2005-06-03 11:02 <REP> ..
1 fichier(s) 62 octets
18 R‚p(s) 15365754880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Claudia\Application Data

2006-06-23 09:44 <REP> Leadertech
2006-06-03 09:56 <REP> eAcceleration
2006-03-26 10:09 <REP> Help
2006-01-15 17:09 <REP> AdobeUM
2006-01-05 11:20 <REP> Adobe
2005-12-26 20:09 <REP> Google
2005-12-25 13:56 <REP> Sony Corporation
2005-12-24 13:33 <REP> Roxio
2005-11-18 20:25 <REP> Apple Computer
2005-10-09 11:03 <REP> Sun
2005-09-25 13:50 <REP> Macromedia
2005-07-31 17:26 <REP> Identities
2005-07-31 17:26 62 desktop.ini
2005-07-31 17:26 <REP> ..
2005-07-31 17:26 <REP> .
2005-07-31 17:26 <REP> Microsoft
1 fichier(s) 62 octets
15 R‚p(s) 15365754880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Default User\Application Data

2005-06-03 11:02 62 desktop.ini
2005-06-03 11:02 <REP> ..
2005-06-03 11:02 <REP> Microsoft
2005-06-03 11:02 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 15365754880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Johanne

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\laulau\Application Data

2006-09-30 15:50 <REP> PC Tools
2006-07-30 11:16 <REP> MSNInstaller
2006-05-20 20:58 <REP> Idle Jugs Flag
2006-02-22 20:44 <REP> holelongfind
2006-02-12 17:20 <REP> AdobeAUM
2006-01-19 18:58 <REP> AdobeUM
2006-01-15 13:48 <REP> Leadertech
2006-01-01 14:05 <REP> Raptisoft
2005-12-25 12:19 <REP> Musicmatch
2005-12-25 11:27 <REP> Sony Corporation
2005-11-16 21:03 <REP> Apple Computer
2005-11-12 20:18 <REP> Google
2005-09-23 18:01 <REP> Sun
2005-09-23 17:47 <REP> Macromedia
2005-08-29 13:39 <REP> Adobe
2005-07-31 16:51 <REP> Roxio
2005-07-31 16:33 <REP> Identities
2005-07-31 16:33 62 desktop.ini
2005-07-31 16:33 <REP> ..
2005-07-31 16:33 <REP> .
2005-07-31 16:33 <REP> Microsoft
1 fichier(s) 62 octets
20 R‚p(s) 15365754880 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Mathieu

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\Sylvain\Application Data

2006-09-29 08:29 <REP> PC Tools
2006-05-20 08:10 <REP> Idle Jugs Flag
2006-05-08 20:58 <REP> Sony Corporation
2006-02-25 06:41 <REP> holelongfind
2006-02-15 17:39 <REP> Sun
2006-01-04 10:01 <REP> AdobeUM
2006-01-04 09:41 <REP> Adobe
2006-01-04 09:41 0 dm.ini
2006-01-04 09:41 1563 AdobeDLM.log
2006-01-03 09:39 <REP> Lavasoft
2005-12-27 11:25 <REP> Roxio
2005-11-25 23:35 <REP> Apple Computer
2005-11-24 20:17 <REP> Help
2005-11-10 18:02 <REP> Google
2005-09-25 08:16 <REP> Macromedia
2005-07-17 21:42 <REP> Identities
2005-07-17 21:42 62 desktop.ini
2005-07-17 21:42 <REP> ..
2005-07-17 21:42 <REP> .
2005-07-17 21:42 <REP> Microsoft
3 fichier(s) 1625 octets
17 R‚p(s) 15365771264 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\Documents and Settings\user\Application Data

2006-07-28 08:58 <REP> Sun
2006-01-02 09:57 <REP> Lavasoft
2005-12-26 13:38 <REP> Google
2005-12-08 20:14 <REP> Macromedia
2005-08-15 21:45 <REP> Adobe
2005-08-15 21:45 <REP> Identities
2005-08-15 21:45 <REP> Microsoft
2005-08-15 21:45 <REP> Roxio
2005-08-15 21:45 <REP> ..
2005-08-15 21:45 <REP> .
2005-06-03 15:48 62 desktop.ini
1 fichier(s) 62 octets
10 R‚p(s) 15365754880 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 9C04-22FF

R‚pertoire de C:\WINDOWS\Tasks

2006-10-12 08:40 526 Norton AntiVirus - Analyser mon ordinateur - Alexandre.job
2005-06-03 15:32 6 SA.DAT
2005-06-03 15:24 65 desktop.ini
2005-06-03 15:24 <REP> ..
2005-06-03 15:24 <REP> .
3 fichier(s) 597 octets
2 R‚p(s) 15ÿ365ÿ754ÿ880 octets libres

******************************************
Recherche dans Program files

Le dossier C:\Program Files\C2Media n'existe pas

*************** Fin du rapport ****************
0
Réponse 20 / 54
Séb08 Messages postés 16503 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
26 oct. 2006 à 22:39
remet un log Hijack STP

a+
0

Discussions similaires

Indicateur d’activité sur Snapchat
Dominique -
Dominique -

0 réponse
35 GO à l'étranger
Laurence -
Laurence -

2 réponses
Quel est le délai de validation sur Le Bon coin?
Ddaavviid -
jeanbern -

1 réponse