Virus infecté par adobeR.exe
Résolu
mexik1
Messages postés
2
Statut
Membre
-
Yves -
Yves -
bonjour,
je suis infecté par le virus adobeR.exe. il est sur C: mais aussi sur mon disque dur.
quand je le supprime du disk dur je n arrive plus à l ouvrir. Ca m enerve donc un peu et je ne m en sors pas.
J ai fait un scan ewido dont voici le rapport:
+ Created at: 00:09:09 19/11/2006
+ Scan result:
F:\Mes images\mariage pauline et arnaud\x.exe/xbarre.dll -> Adware.BHO : Cleaned with backup (quarantined).
F:\Mes images\mariage pauline et arnaud\xbarresetup.exe/xbarre.dll -> Adware.BHO : Cleaned with backup (quarantined).
C:\Program Files\eChanblard\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignored.
:mozilla.10:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.14:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.15:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.16:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.257:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.258:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.386:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.222:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.223:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.56:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.57:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.231:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.232:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.233:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.234:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.98:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.27:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.267:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.243:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.244:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.245:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.246:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.69:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.7:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.59:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@estat[1].txt -> TrackingCookie.Estat : Cleaned.
:mozilla.413:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Etracker : Cleaned.
:mozilla.269:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.270:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.271:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.272:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.273:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@as1.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.225:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.230:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.538:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.334:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.335:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.336:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.74:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.268:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@questionmarket[2].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.112:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.113:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.114:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.115:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.116:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.117:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.402:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.403:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.404:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.405:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.401:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.11:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.12:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.6:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.8:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.38:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.100:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.101:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.102:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.103:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.99:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.396:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.485:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.71:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.72:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.73:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.371:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Xhit : Cleaned.
:mozilla.238:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.239:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.240:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.308:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.309:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.310:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
::Report end
et ensuite j ai fait un scan avec HijackThis:
Logfile of HijackThis v1.99.1
Scan saved at 00:10:37, on 19/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Lexmark\Lexmark Precision Photo\MemCard.exe
C:\WINDOWS\AdobeR.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Kerio\Personal Firewall\PERSFW.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Documents and Settings\AXELLE MARTIN\Bureau\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.sfr.fr/offres-numericable.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LXBSCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBStime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: lxbs_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbscoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall\persfw.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
voila je ne sias pas trop quoi faire d autre. en esperant que vous pourrez m apporter une solution!!!
je vous remercie d avance
je suis infecté par le virus adobeR.exe. il est sur C: mais aussi sur mon disque dur.
quand je le supprime du disk dur je n arrive plus à l ouvrir. Ca m enerve donc un peu et je ne m en sors pas.
J ai fait un scan ewido dont voici le rapport:
+ Created at: 00:09:09 19/11/2006
+ Scan result:
F:\Mes images\mariage pauline et arnaud\x.exe/xbarre.dll -> Adware.BHO : Cleaned with backup (quarantined).
F:\Mes images\mariage pauline et arnaud\xbarresetup.exe/xbarre.dll -> Adware.BHO : Cleaned with backup (quarantined).
C:\Program Files\eChanblard\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignored.
:mozilla.10:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.14:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.15:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.16:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.257:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.258:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.386:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.222:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.223:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.56:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.57:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.231:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.232:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.233:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.234:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.98:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.27:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.267:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.243:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.244:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.245:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.246:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.69:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.7:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.59:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@estat[1].txt -> TrackingCookie.Estat : Cleaned.
:mozilla.413:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Etracker : Cleaned.
:mozilla.269:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.270:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.271:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.272:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.273:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@as1.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.225:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.230:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.538:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.334:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.335:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.336:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.74:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.268:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@questionmarket[2].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.112:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.113:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.114:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.115:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.116:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.117:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.402:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.403:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.404:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.405:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.401:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.11:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.12:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.6:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.8:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.38:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.100:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.101:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.102:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.103:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.99:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.396:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.485:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.71:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.72:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.73:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle_martin@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\AXELLE MARTIN\Cookies\axelle martin@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.371:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Xhit : Cleaned.
:mozilla.238:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.239:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.240:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.308:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.309:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.310:C:\Documents and Settings\AXELLE MARTIN\Application Data\Mozilla\Firefox\Profiles\ldzc4h0b.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
::Report end
et ensuite j ai fait un scan avec HijackThis:
Logfile of HijackThis v1.99.1
Scan saved at 00:10:37, on 19/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Lexmark\Lexmark Precision Photo\MemCard.exe
C:\WINDOWS\AdobeR.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Kerio\Personal Firewall\PERSFW.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Documents and Settings\AXELLE MARTIN\Bureau\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.sfr.fr/offres-numericable.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LXBSCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBStime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=compaq-notebook.msn.com&ocid=HPDHP&pc=CPNTDF
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: lxbs_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbscoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall\persfw.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
voila je ne sias pas trop quoi faire d autre. en esperant que vous pourrez m apporter une solution!!!
je vous remercie d avance
A voir également:
- Virus infecté par adobeR.exe
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Virus informatique - Guide
- Undisclosed-recipients virus - Guide
26 réponses
Tu veux dire le télécharger ici ;-)
http://www.techsupportforum. com/sectools/sUBs/Flash_Disinfector.exe
http://www.techsupportforum. com/sectools/sUBs/Flash_Disinfector.exe
Voilà, pour tous ceux qui sont débutant en informatique ou qui ont besoin de le voir pour le croire, j'ai réalisé une petite video tutoriel.
Aller voir la video sur : https://www.youtube.com/watch?v=VTi8HYFVteM&feature=user&gl=FR
Aller voir la video sur : https://www.youtube.com/watch?v=VTi8HYFVteM&feature=user&gl=FR
ALors, a toutes les personnes infectées par AdobeR.Exe, si vous voulez vous en débarraser, utilisez ma méthode suivante.
Surtout, suivez là avant de reposter en disant "hey moi aussi blabla" essayez avant d'encombrer le forum pour rien.
1°) faites un ctrl+alt+suppr , allez dans le gestionnaires des tâches, puis dans l'onglet processus. vous sliquez sur AdobeR.exe puis sur fin de tâche, recommencez autant de fois que necessaire pour qu'il ne revienne plus.
2°) allez dans votre disque dur windows ( s'il est infecté lui aussi, alors ouvrez le en clic droit puis explorer ) allez dans le dossier WINDOWS, puis supprimez "adobeR.exe", sachant que cette manipulation était impossible auparavant du fait que le virus était toujours en cours d'execution.
3°) si vous êtes sur de l'éfficacité de votre anti-virus, alors scannez votre pc de fond en comble.
Ce que je vous conseil moi, Téléchargez Avast Home.
clé de licence dispo à cette adresse https://www.avast.com/fr-fr/registration-free-antivirus#register-form
Avast Home dispo a cette adresse http://files.avast.com/iavs4pro/setupfre.exe
4°) une fois installé et enregistré, planifiez un scan au démarrage. outils, planifier ou quelquechose du genre.
lors de la planification du scan choisisez au démarrage, pour TOUT les disques et supprimer sans confirmation.
cliquez sur OK, et redémarez tout de suite. cela vas prendre un peu de temps selon la taille de vos disque mais avast se chargera de supprimer tout les programmes malveillant.
Voilà, en esperant vous avoir été utile.
Surtout, suivez là avant de reposter en disant "hey moi aussi blabla" essayez avant d'encombrer le forum pour rien.
1°) faites un ctrl+alt+suppr , allez dans le gestionnaires des tâches, puis dans l'onglet processus. vous sliquez sur AdobeR.exe puis sur fin de tâche, recommencez autant de fois que necessaire pour qu'il ne revienne plus.
2°) allez dans votre disque dur windows ( s'il est infecté lui aussi, alors ouvrez le en clic droit puis explorer ) allez dans le dossier WINDOWS, puis supprimez "adobeR.exe", sachant que cette manipulation était impossible auparavant du fait que le virus était toujours en cours d'execution.
3°) si vous êtes sur de l'éfficacité de votre anti-virus, alors scannez votre pc de fond en comble.
Ce que je vous conseil moi, Téléchargez Avast Home.
clé de licence dispo à cette adresse https://www.avast.com/fr-fr/registration-free-antivirus#register-form
Avast Home dispo a cette adresse http://files.avast.com/iavs4pro/setupfre.exe
4°) une fois installé et enregistré, planifiez un scan au démarrage. outils, planifier ou quelquechose du genre.
lors de la planification du scan choisisez au démarrage, pour TOUT les disques et supprimer sans confirmation.
cliquez sur OK, et redémarez tout de suite. cela vas prendre un peu de temps selon la taille de vos disque mais avast se chargera de supprimer tout les programmes malveillant.
Voilà, en esperant vous avoir été utile.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
