Cywin
estica
Messages postés
3
Statut
Membre
-
estica -
estica -
Bonjour a tous ,tout d'abord je suis yper novice en informatique et je ne sais pas si je suis dans la bonne rubrique,alors je m'escuse aupres des "admin".
Voici mon probleme chaque fois que j'allume mon ordinateur un message d'erreur s'ouvre avec ceci:
"cywin.exe" information
signature
szAppName
sz AppVer 0.0.0.0
sz ModName:onKnown
szModVer0.0.0.0
offset00000000
info technique
c:document~1thierry\locals~temp\Wer 2D.tmp.dir00\
cywin.exemdmp.
appcomat.txt
Il m'est deja arriver d'avoir l'ecran bleu avec un message d'erreur fatal.
Ps:c'est un ordi que j'ai recuperer chez un amis et je ne sais pas du tout ce qu'il y a a l'interieur.
Je vous remercie d'avance pour me venir en aide.
Voici mon probleme chaque fois que j'allume mon ordinateur un message d'erreur s'ouvre avec ceci:
"cywin.exe" information
signature
szAppName
sz AppVer 0.0.0.0
sz ModName:onKnown
szModVer0.0.0.0
offset00000000
info technique
c:document~1thierry\locals~temp\Wer 2D.tmp.dir00\
cywin.exemdmp.
appcomat.txt
Il m'est deja arriver d'avoir l'ecran bleu avec un message d'erreur fatal.
Ps:c'est un ordi que j'ai recuperer chez un amis et je ne sais pas du tout ce qu'il y a a l'interieur.
Je vous remercie d'avance pour me venir en aide.
14 réponses
Voila apres avoir lu vos reponse j'ai fait une analyse de mon pc et effectivement il y a un virus qu'il a renomer et il s'agit bien de ""cywin.exe"" et non "cygwin.exe"" apres tout ça le message d'erreur aparais toujours .Merci a vous
Rebonsoir
Effectivement il s'agir de cywin, il s'agirai plutôt d'un spyware iu d'un
Hijack plus que d'un virus. Pour ça il faut télécharger le logiciel Hijackthis et faire une analyse
le log qui en sortira il faudra le faire analyser sur le forum par quelqu'un de compétent en la matière
Bonne soirée
Effectivement il s'agir de cywin, il s'agirai plutôt d'un spyware iu d'un
Hijack plus que d'un virus. Pour ça il faut télécharger le logiciel Hijackthis et faire une analyse
le log qui en sortira il faudra le faire analyser sur le forum par quelqu'un de compétent en la matière
Bonne soirée
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Merci pour vos reponse; apres avoir fait ce que vous m'avez demander voila ce qui en resort.
Logfile of HijackThis v1.99.1
Scan saved at 02:43:58, on 24/11/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\pavsrv51.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\AVENGINE.EXE
c:\program files\panda software\panda antivirus + firewall 2007\firewall\PNMSRV.EXE
C:\WINDOWS\System32\Lssass.exe
C:\windows_e57.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\APVXDWIN.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\PavFnSvr.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\psimsvc.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
c:\program files\panda software\panda antivirus + firewall 2007\WebProxy.exe
C:\Program Files\Antipub\antipub.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\thierry\Mes documents\telechargement\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {3123f068-aad8-4258-a533-308d55243c89} - C:\WINDOWS\system32\cismsg.dll (file missing)
O2 - BHO: (no name) - {3304ABF0-AE08-436D-9172-0DBBFEB1081B} - C:\Program Files\Fichiers communs\hore.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Network Firewall] C:\WINDOWS\System32\firewall.exe
O4 - HKLM\..\Run: [Microsoft (R) Windows Update Manager] C:\WINDOWS\update\updmgr.exe
O4 - HKLM\..\Run: [Winsockett] udpdtflov.exe
O4 - HKLM\..\Run: [Ms System Config] Mscfg.exe
O4 - HKLM\..\Run: [Managments Service] gvwuwtl.exe
O4 - HKLM\..\Run: [DLL execute] Lssass.exe
O4 - HKLM\..\Run: [windows] C:\\windows_e57.exe
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PopUp Destroy] C:\Program Files\PopUp Destroy\Popup-Destroy.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunServices: [Winsockett] udpdtflov.exe
O4 - HKLM\..\RunServices: [Ms System Config] Mscfg.exe
O4 - HKLM\..\RunServices: [Managments Service] gvwuwtl.exe
O4 - HKLM\..\RunServices: [DLL execute] Lssass.exe
O4 - HKLM\..\RunServices: [TPSRV9x] "C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe"
O4 - HKCU\..\Run: [Ms System Config] Mscfg.exe
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DLL execute] Lssass.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\RunServices: [Ms System Config] Mscfg.exe
O4 - HKCU\..\RunServices: [DLL execute] Lssass.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {00330010-0000-0000-0000-000020160026} - http://207.234.185.217/installer/ABoxInst_int26.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: dxclib303562752.dll
O20 - Winlogon Notify: avldr - C:\WINDOWS\SYSTEM32\avldr.dll
O20 - Winlogon Notify: cismsg - cismsg.dll (file missing)
O20 - Winlogon Notify: Nls - C:\WINDOWS\system32\ixlogmsg.dll (file missing)
O23 - Service: Print Spooler Service (ilai4abo65tw) - Unknown owner - c:\windows\cywin.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\pavsrv51.exe
O23 - Service: Panda Network Manager (PNMSRV) - Panda Software International - c:\program files\panda software\panda antivirus + firewall 2007\firewall\PNMSRV.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\psimsvc.exe
O23 - Service: Remote TCP Services - Unknown owner - C:\WINDOWS\system32\vcmon.exe (file missing)
O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe
O23 - Service: Windows Update Manager (UpdateManager) - Unknown owner - C:\WINDOWS\update\updmgr.exe (file missing)
Logfile of HijackThis v1.99.1
Scan saved at 02:43:58, on 24/11/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\pavsrv51.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\AVENGINE.EXE
c:\program files\panda software\panda antivirus + firewall 2007\firewall\PNMSRV.EXE
C:\WINDOWS\System32\Lssass.exe
C:\windows_e57.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\APVXDWIN.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\PavFnSvr.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\psimsvc.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
c:\program files\panda software\panda antivirus + firewall 2007\WebProxy.exe
C:\Program Files\Antipub\antipub.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\thierry\Mes documents\telechargement\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {3123f068-aad8-4258-a533-308d55243c89} - C:\WINDOWS\system32\cismsg.dll (file missing)
O2 - BHO: (no name) - {3304ABF0-AE08-436D-9172-0DBBFEB1081B} - C:\Program Files\Fichiers communs\hore.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Network Firewall] C:\WINDOWS\System32\firewall.exe
O4 - HKLM\..\Run: [Microsoft (R) Windows Update Manager] C:\WINDOWS\update\updmgr.exe
O4 - HKLM\..\Run: [Winsockett] udpdtflov.exe
O4 - HKLM\..\Run: [Ms System Config] Mscfg.exe
O4 - HKLM\..\Run: [Managments Service] gvwuwtl.exe
O4 - HKLM\..\Run: [DLL execute] Lssass.exe
O4 - HKLM\..\Run: [windows] C:\\windows_e57.exe
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PopUp Destroy] C:\Program Files\PopUp Destroy\Popup-Destroy.exe
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunServices: [Winsockett] udpdtflov.exe
O4 - HKLM\..\RunServices: [Ms System Config] Mscfg.exe
O4 - HKLM\..\RunServices: [Managments Service] gvwuwtl.exe
O4 - HKLM\..\RunServices: [DLL execute] Lssass.exe
O4 - HKLM\..\RunServices: [TPSRV9x] "C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe"
O4 - HKCU\..\Run: [Ms System Config] Mscfg.exe
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DLL execute] Lssass.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\RunServices: [Ms System Config] Mscfg.exe
O4 - HKCU\..\RunServices: [DLL execute] Lssass.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {00330010-0000-0000-0000-000020160026} - http://207.234.185.217/installer/ABoxInst_int26.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: dxclib303562752.dll
O20 - Winlogon Notify: avldr - C:\WINDOWS\SYSTEM32\avldr.dll
O20 - Winlogon Notify: cismsg - cismsg.dll (file missing)
O20 - Winlogon Notify: Nls - C:\WINDOWS\system32\ixlogmsg.dll (file missing)
O23 - Service: Print Spooler Service (ilai4abo65tw) - Unknown owner - c:\windows\cywin.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\pavsrv51.exe
O23 - Service: Panda Network Manager (PNMSRV) - Panda Software International - c:\program files\panda software\panda antivirus + firewall 2007\firewall\PNMSRV.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\psimsvc.exe
O23 - Service: Remote TCP Services - Unknown owner - C:\WINDOWS\system32\vcmon.exe (file missing)
O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus + Firewall 2007\TPSrv.exe
O23 - Service: Windows Update Manager (UpdateManager) - Unknown owner - C:\WINDOWS\update\updmgr.exe (file missing)
Ton anti-virus fonctionne t-il bien ? est-ce un cracké ?
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2 (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici stp
Ewido: (en Anglais reste gratuit après la période d'essai)
Ewido
Si tu as besoin d'aide avec Ewido(devenu AVG-antispyware) regarde ce tutoriel:
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2 (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici stp
Ewido: (en Anglais reste gratuit après la période d'essai)
Ewido
Si tu as besoin d'aide avec Ewido(devenu AVG-antispyware) regarde ce tutoriel:
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html
Voila le rapport: petite precision je n'est pas sp2 impossible de l'insta ller il me marque toujours manque de composant impossible de poursuivre.
Merci de votre patiente
wido anti-spyware - Scan Report
+ Created at: 15:07:38 24/11/2006
+ Scan result:
C:\Program Files\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
C:\Program Files\DeluxeCommunications\bak -> Adware.DeluxeCommunications : No action taken.
HKU\S-1-5-21-1085031214-1708537768-1957994488-1005\Software\Microsoft\Windows\CurrentVersion\Run\\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
HKU\.DEFAULT\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
C:\Installer5.exe -> Adware.Look2Me : No action taken.
C:\warebundlenewer.exe -> Adware.Look2Me : No action taken.
C:\yz02.exe -> Adware.NewDotNet : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : No action taken.
C:\WINDOWS\system32\SpOrder.dll -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : No action taken.
C:\nwnmff_e20.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e35.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e37.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e21.exe -> Downloader.Adload.fs : No action taken.
C:\WINDOWS\dov9.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a41.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a42.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a43.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a50.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a51.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a52.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a53.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a54.exe -> Downloader.Adload.fu : No action taken.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e34.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : No action taken.
C:\nwnmff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\nwnmff_e26.exe -> Downloader.Adload.go : No action taken.
C:\nwnmff_e34.exe -> Downloader.Adload.hb : No action taken.
C:\kybrdff_e36.exe -> Downloader.Adload.hk : No action taken.
C:\dfndrff_e36.exe -> Downloader.Adload.hl : No action taken.
C:\nwnmff_e36.exe -> Downloader.Adload.hm : No action taken.
C:\kybrdff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\nwnmff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\kybrdff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e46.exe -> Downloader.Adload.hy : No action taken.
C:\dfndrff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\kybrdff_e51.exe -> Downloader.Adload.ic : No action taken.
C:\nwnmff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\windows_e51.exe -> Downloader.Adload.id : No action taken.
C:\nwnmff_e51.exe -> Downloader.Adload.if : No action taken.
C:\kybrdff_e55.exe -> Downloader.Adload.ij : No action taken.
C:\radicalev.exe -> Downloader.Small.duf : No action taken.
C:\syndomxx.exe -> Downloader.Small.duf : No action taken.
C:\dollarrev.exe -> Downloader.Small.dxm : No action taken.
C:\WINDOWS\docsys.exe -> Downloader.VB.apw : No action taken.
C:\WINDOWS\volt7.exe -> Downloader.VB.apw : No action taken.
C:\mc44a55.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a56.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a57.exe -> Downloader.VB.aqc : No action taken.
C:\Program Files\MSN Gaming Zone\howy.html -> Hijacker.Small.jf : No action taken.
C:\Program Files\Windows Media Player\kyzeweqe.html -> Hijacker.Small.jf : No action taken.
C:\bak\dfndrff_e41.exe -> Hijacker.VB.kc : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\send_car_int[2].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\sxe4.tmp -> Proxy.Ranky : No action taken.
:mozilla.222:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.333:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.205:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.206:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.218:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.376:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.380:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
:mozilla.313:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.315:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.344:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.306:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.307:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.308:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.309:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.270:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
:mozilla.351:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.371:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.372:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.373:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@i12[2].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@max.i12[1].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@creative.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.219:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Realtracker : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.251:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.207:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@media.top-banners[1].txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@vegasred[1].txt -> TrackingCookie.Vegasred : No action taken.
C:\nwnmff_e27.exe -> Trojan.Agent.tx : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temp\NI.UWA6PV_0001_N91M2107\setup.exe -> Trojan.Fakealert : No action taken.
C:\nwnmff_e32.exe -> Trojan.Pakes : No action taken.
::Report end
Merci de votre patiente
wido anti-spyware - Scan Report
+ Created at: 15:07:38 24/11/2006
+ Scan result:
C:\Program Files\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
C:\Program Files\DeluxeCommunications\bak -> Adware.DeluxeCommunications : No action taken.
HKU\S-1-5-21-1085031214-1708537768-1957994488-1005\Software\Microsoft\Windows\CurrentVersion\Run\\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
HKU\.DEFAULT\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
C:\Installer5.exe -> Adware.Look2Me : No action taken.
C:\warebundlenewer.exe -> Adware.Look2Me : No action taken.
C:\yz02.exe -> Adware.NewDotNet : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : No action taken.
C:\WINDOWS\system32\SpOrder.dll -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : No action taken.
C:\nwnmff_e20.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e35.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e37.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e21.exe -> Downloader.Adload.fs : No action taken.
C:\WINDOWS\dov9.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a41.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a42.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a43.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a50.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a51.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a52.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a53.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a54.exe -> Downloader.Adload.fu : No action taken.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e34.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : No action taken.
C:\nwnmff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\nwnmff_e26.exe -> Downloader.Adload.go : No action taken.
C:\nwnmff_e34.exe -> Downloader.Adload.hb : No action taken.
C:\kybrdff_e36.exe -> Downloader.Adload.hk : No action taken.
C:\dfndrff_e36.exe -> Downloader.Adload.hl : No action taken.
C:\nwnmff_e36.exe -> Downloader.Adload.hm : No action taken.
C:\kybrdff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\nwnmff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\kybrdff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e46.exe -> Downloader.Adload.hy : No action taken.
C:\dfndrff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\kybrdff_e51.exe -> Downloader.Adload.ic : No action taken.
C:\nwnmff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\windows_e51.exe -> Downloader.Adload.id : No action taken.
C:\nwnmff_e51.exe -> Downloader.Adload.if : No action taken.
C:\kybrdff_e55.exe -> Downloader.Adload.ij : No action taken.
C:\radicalev.exe -> Downloader.Small.duf : No action taken.
C:\syndomxx.exe -> Downloader.Small.duf : No action taken.
C:\dollarrev.exe -> Downloader.Small.dxm : No action taken.
C:\WINDOWS\docsys.exe -> Downloader.VB.apw : No action taken.
C:\WINDOWS\volt7.exe -> Downloader.VB.apw : No action taken.
C:\mc44a55.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a56.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a57.exe -> Downloader.VB.aqc : No action taken.
C:\Program Files\MSN Gaming Zone\howy.html -> Hijacker.Small.jf : No action taken.
C:\Program Files\Windows Media Player\kyzeweqe.html -> Hijacker.Small.jf : No action taken.
C:\bak\dfndrff_e41.exe -> Hijacker.VB.kc : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\send_car_int[2].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\sxe4.tmp -> Proxy.Ranky : No action taken.
:mozilla.222:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.333:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.205:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.206:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.218:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.376:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.380:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
:mozilla.313:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.315:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.344:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.306:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.307:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.308:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.309:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.270:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
:mozilla.351:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.371:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.372:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.373:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@i12[2].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@max.i12[1].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@creative.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.219:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Realtracker : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.251:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.207:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@media.top-banners[1].txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@vegasred[1].txt -> TrackingCookie.Vegasred : No action taken.
C:\nwnmff_e27.exe -> Trojan.Agent.tx : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temp\NI.UWA6PV_0001_N91M2107\setup.exe -> Trojan.Fakealert : No action taken.
C:\nwnmff_e32.exe -> Trojan.Pakes : No action taken.
::Report end
Salut,
supprime tout, regarde le tutoriel si besoin.
Ton anti-virus est-il cracké ???
Car vu l'etat de ton PC ont se demande !
Pense à Bitdefender aussi ;-)
supprime tout, regarde le tutoriel si besoin.
Ton anti-virus est-il cracké ???
Car vu l'etat de ton PC ont se demande !
Pense à Bitdefender aussi ;-)
Voila le rapport wido,petite presicion je n'est pas sp2 impossible a l'instalation:
wido anti-spyware - Scan Report
+ Created at: 15:07:38 24/11/2006
+ Scan result:
C:\Program Files\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
C:\Program Files\DeluxeCommunications\bak -> Adware.DeluxeCommunications : No action taken.
HKU\S-1-5-21-1085031214-1708537768-1957994488-1005\Software\Microsoft\Windows\CurrentVersion\Run\\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
HKU\.DEFAULT\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
C:\Installer5.exe -> Adware.Look2Me : No action taken.
C:\warebundlenewer.exe -> Adware.Look2Me : No action taken.
C:\yz02.exe -> Adware.NewDotNet : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : No action taken.
C:\WINDOWS\system32\SpOrder.dll -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : No action taken.
C:\nwnmff_e20.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e35.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e37.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e21.exe -> Downloader.Adload.fs : No action taken.
C:\WINDOWS\dov9.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a41.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a42.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a43.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a50.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a51.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a52.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a53.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a54.exe -> Downloader.Adload.fu : No action taken.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e34.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : No action taken.
C:\nwnmff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\nwnmff_e26.exe -> Downloader.Adload.go : No action taken.
C:\nwnmff_e34.exe -> Downloader.Adload.hb : No action taken.
C:\kybrdff_e36.exe -> Downloader.Adload.hk : No action taken.
C:\dfndrff_e36.exe -> Downloader.Adload.hl : No action taken.
C:\nwnmff_e36.exe -> Downloader.Adload.hm : No action taken.
C:\kybrdff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\nwnmff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\kybrdff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e46.exe -> Downloader.Adload.hy : No action taken.
C:\dfndrff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\kybrdff_e51.exe -> Downloader.Adload.ic : No action taken.
C:\nwnmff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\windows_e51.exe -> Downloader.Adload.id : No action taken.
C:\nwnmff_e51.exe -> Downloader.Adload.if : No action taken.
C:\kybrdff_e55.exe -> Downloader.Adload.ij : No action taken.
C:\radicalev.exe -> Downloader.Small.duf : No action taken.
C:\syndomxx.exe -> Downloader.Small.duf : No action taken.
C:\dollarrev.exe -> Downloader.Small.dxm : No action taken.
C:\WINDOWS\docsys.exe -> Downloader.VB.apw : No action taken.
C:\WINDOWS\volt7.exe -> Downloader.VB.apw : No action taken.
C:\mc44a55.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a56.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a57.exe -> Downloader.VB.aqc : No action taken.
C:\Program Files\MSN Gaming Zone\howy.html -> Hijacker.Small.jf : No action taken.
C:\Program Files\Windows Media Player\kyzeweqe.html -> Hijacker.Small.jf : No action taken.
C:\bak\dfndrff_e41.exe -> Hijacker.VB.kc : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\send_car_int[2].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\sxe4.tmp -> Proxy.Ranky : No action taken.
:mozilla.222:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.333:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.205:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.206:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.218:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.376:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.380:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
:mozilla.313:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.315:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.344:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.306:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.307:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.308:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.309:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.270:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
:mozilla.351:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.371:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.372:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.373:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@i12[2].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@max.i12[1].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@creative.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.219:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Realtracker : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.251:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.207:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@media.top-banners[1].txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@vegasred[1].txt -> TrackingCookie.Vegasred : No action taken.
C:\nwnmff_e27.exe -> Trojan.Agent.tx : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temp\NI.UWA6PV_0001_N91M2107\setup.exe -> Trojan.Fakealert : No action taken.
C:\nwnmff_e32.exe -> Trojan.Pakes : No action taken.
::Report end
wido anti-spyware - Scan Report
+ Created at: 15:07:38 24/11/2006
+ Scan result:
C:\Program Files\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
C:\Program Files\DeluxeCommunications\bak -> Adware.DeluxeCommunications : No action taken.
HKU\S-1-5-21-1085031214-1708537768-1957994488-1005\Software\Microsoft\Windows\CurrentVersion\Run\\DeluxeCommunications -> Adware.DeluxeCommunications : No action taken.
HKU\.DEFAULT\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\.DEFAULT\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : No action taken.
HKU\S-1-5-18\Software\Effective-i\TheSearchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : No action taken.
C:\Installer5.exe -> Adware.Look2Me : No action taken.
C:\warebundlenewer.exe -> Adware.Look2Me : No action taken.
C:\yz02.exe -> Adware.NewDotNet : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DBTB00001.DBTB00001Deskbar -> Adware.Softomate : No action taken.
C:\WINDOWS\system32\SpOrder.dll -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : No action taken.
C:\nwnmff_e20.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e35.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e37.exe -> Downloader.Adload.fk : No action taken.
C:\nwnmff_e21.exe -> Downloader.Adload.fs : No action taken.
C:\WINDOWS\dov9.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a41.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a42.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a43.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a50.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a51.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a52.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a53.exe -> Downloader.Adload.fu : No action taken.
C:\mc44a54.exe -> Downloader.Adload.fu : No action taken.
C:\kybrdff_e18.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e20.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e34.exe -> Downloader.Adload.fy : No action taken.
C:\kybrdff_e21.exe -> Downloader.Adload.gb : No action taken.
C:\nwnmff_e24.exe -> Downloader.Adload.gg : No action taken.
C:\nwnmff_e26.exe -> Downloader.Adload.go : No action taken.
C:\nwnmff_e34.exe -> Downloader.Adload.hb : No action taken.
C:\kybrdff_e36.exe -> Downloader.Adload.hk : No action taken.
C:\dfndrff_e36.exe -> Downloader.Adload.hl : No action taken.
C:\nwnmff_e36.exe -> Downloader.Adload.hm : No action taken.
C:\kybrdff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\nwnmff_e48.exe -> Downloader.Adload.hw : No action taken.
C:\kybrdff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e45.exe -> Downloader.Adload.hx : No action taken.
C:\nwnmff_e46.exe -> Downloader.Adload.hy : No action taken.
C:\dfndrff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\kybrdff_e51.exe -> Downloader.Adload.ic : No action taken.
C:\nwnmff_e52.exe -> Downloader.Adload.ic : No action taken.
C:\windows_e51.exe -> Downloader.Adload.id : No action taken.
C:\nwnmff_e51.exe -> Downloader.Adload.if : No action taken.
C:\kybrdff_e55.exe -> Downloader.Adload.ij : No action taken.
C:\radicalev.exe -> Downloader.Small.duf : No action taken.
C:\syndomxx.exe -> Downloader.Small.duf : No action taken.
C:\dollarrev.exe -> Downloader.Small.dxm : No action taken.
C:\WINDOWS\docsys.exe -> Downloader.VB.apw : No action taken.
C:\WINDOWS\volt7.exe -> Downloader.VB.apw : No action taken.
C:\mc44a55.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a56.exe -> Downloader.VB.aqc : No action taken.
C:\mc44a57.exe -> Downloader.VB.aqc : No action taken.
C:\Program Files\MSN Gaming Zone\howy.html -> Hijacker.Small.jf : No action taken.
C:\Program Files\Windows Media Player\kyzeweqe.html -> Hijacker.Small.jf : No action taken.
C:\bak\dfndrff_e41.exe -> Hijacker.VB.kc : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\send_car_int[2].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : No action taken.
C:\sxe4.tmp -> Proxy.Ranky : No action taken.
:mozilla.222:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.333:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.205:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.206:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.218:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.376:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.380:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@casinoking[2].txt -> TrackingCookie.Casinoking : No action taken.
:mozilla.313:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.315:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.344:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Casinopays : No action taken.
:mozilla.306:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.307:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.308:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.309:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Cpvfeed : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.270:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : No action taken.
:mozilla.351:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.371:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.372:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.373:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@i12[2].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@max.i12[1].txt -> TrackingCookie.I12 : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@creative.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.219:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Realtracker : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@edge.ru4[1].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.251:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.207:C:\Documents and Settings\thierry\Application Data\Mozilla\Firefox\Profiles\iydjhjx9.default\cookies.txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@media.top-banners[1].txt -> TrackingCookie.Top-banners : No action taken.
C:\Documents and Settings\thierry\Cookies\thierry@vegasred[1].txt -> TrackingCookie.Vegasred : No action taken.
C:\nwnmff_e27.exe -> Trojan.Agent.tx : No action taken.
C:\Documents and Settings\thierry\Local Settings\Temp\NI.UWA6PV_0001_N91M2107\setup.exe -> Trojan.Fakealert : No action taken.
C:\nwnmff_e32.exe -> Trojan.Pakes : No action taken.
::Report end
Salut,
regarde: No action taken il ne devrait pas y être marqué ça
Regarde le tutoriel, ou une fois que le scanne est fini clique sur "remove" "deleted" puis colle à nouveau le rapport ici stp
Pense a faire le scanne en ligne avec Bitdefender
regarde: No action taken il ne devrait pas y être marqué ça
Regarde le tutoriel, ou une fois que le scanne est fini clique sur "remove" "deleted" puis colle à nouveau le rapport ici stp
Pense a faire le scanne en ligne avec Bitdefender
salut;Panda n'est pas un crack je l'est telecharger sur '01tele....com' il y a ~8jours.
BitDefender Online Scanner
Scan report generated at: Sat, Nov 25, 2006 - 01:19:34
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
02:12:12
Files
108479
Folders
2237
Boot Sectors
2
Archives
1153
Packed Files
11404
Results
Identified Viruses
39
Infected Files
55
Suspect Files
3
Warnings
0
Disinfected
0
Deleted Files
56
Engines Info
Virus Definitions
318711
Engine build
AVCORE v1.0 (build 2368) (i386) (Nov 16 2006 11:31:19)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Delete
Second Action
None
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\popup[2].php
Detected with: Application.JS.ForcePopup.D
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\popup[2].php
Deleted
C:\kybrdff_e56.exe
Infected with: Trojan.Downloader.Agent.DI
C:\kybrdff_e56.exe
Deleted
C:\kybrdff_e57.exe
Infected with: Trojan.Adload.J
C:\kybrdff_e57.exe
Deleted
C:\nwnmff_e25.exe
Infected with: Trojan.Downloader.Adload.AS
C:\nwnmff_e25.exe
Deleted
C:\nwnmff_e55.exe
Infected with: Trojan.Adload.F
C:\nwnmff_e55.exe
Deleted
C:\nwnmff_e57.exe
Infected with: Trojan.Adload.J
C:\nwnmff_e57.exe
Deleted
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat=>(gzip)
Infected with: Trojan.Clicker.Small.AV
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat
Update failed
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0003
Infected with: Trojan.Downloader.VB.QB
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0003
Deleted
C:\RDFX4.exe=>(NSIS o)
Update failed
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0004
Infected with: Trojan.Downloader.Small.ALG
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0004
Deleted
C:\RDFX4.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP115\A0058370.exe
Infected with: Trojan.Proxy.Ranky.D
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP115\A0058370.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080529.exe
Infected with: Trojan.Downloader.VB.XF
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080529.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080530.exe
Infected with: Trojan.Downloader.Adload.ED
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080530.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080531.exe
Infected with: Trojan.Downloader.Adload.AQ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080531.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080532.exe
Infected with: Trojan.Downloader.Adload.CO
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080532.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080533.exe
Infected with: Trojan.Downloader.AOV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080533.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080534.exe
Infected with: Trojan.Downloader.DollarRevenue.AD
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080534.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080535.exe
Infected with: Trojan.Downloader.Adload.IK
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080535.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080536.exe
Infected with: Trojan.Downloader.Adload.IK
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080536.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080537.exe
Infected with: Trojan.DollarRevenue.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080537.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080538.exe
Infected with: Trojan.Proxy.Ranky.D
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080538.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080544.exe
Infected with: Trojan.Dropper.Small.AUC
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080544.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080545.exe
Infected with: Trojan.Downloader.Adload.DS
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080545.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080546.exe
Infected with: Trojan.Downloader.Adload.EG
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080546.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080548.exe
Infected with: Trojan.Downloader.Adload.EF
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080548.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080554.exe
Infected with: Trojan.Downloader.Adload.FY
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080554.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080555.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080555.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080556.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080556.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080557.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080557.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080558.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080558.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080559.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080559.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080560.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080560.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080561.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080561.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080562.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080562.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080563.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080563.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080564.exe
Infected with: Trojan.Downloader.VB.HT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080564.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080565.exe
Infected with: Trojan.Downloader.Adload.FZ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080565.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080566.exe
Infected with: Trojan.Downloader.Adload.FZ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080566.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080568.exe
Infected with: Trojan.Downloader.AOW
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080568.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080569.exe
Infected with: Trojan.Downloader.DollarRevenue.AD
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080569.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080570.exe
Infected with: Trojan.Downloader.Adload.EE
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080570.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080571.exe
Infected with: Trojan.Downloader.Adload.GG
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080571.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080572.exe
Infected with: Trojan.DollarRevenue.E
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080572.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080573.exe
Infected with: Trojan.DollarR.BV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080573.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080574.exe
Infected with: Trojan.Spy.DollarRevenue.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080574.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080575.exe
Infected with: Trojan.Downloader.Adload.FB
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080575.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080576.exe
Infected with: Trojan.Agent.SQ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080576.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080579.exe
Infected with: DeepScan:Generic.Malware.dld!!.017A0331
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080579.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080580.exe
Infected with: DeepScan:Generic.Malware.dld!!.017A0331
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080580.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080583.exe
Infected with: Trojan.Downloader.Adload.FV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080583.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084538.exe
Infected with: Trojan.Downloader.Agent.DI
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084538.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084539.exe
Infected with: Trojan.Adload.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084539.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084540.exe
Infected with: Trojan.Downloader.Adload.AS
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084540.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084541.exe
Infected with: Trojan.Adload.F
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084541.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084542.exe
Infected with: Trojan.Adload.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084542.exe
Deleted
C:\WINDOWS\cywin.exe
Infected with: Trojan.Proxy.K
C:\WINDOWS\cywin.exe
Deleted
C:\WINDOWS\system32\Lssass.exe
Infected with: Generic.Sdbot.3E964633
C:\WINDOWS\system32\Lssass.exe
Delete failed
C:\windows_e56.exe
Infected with: Trojan.Adload.G
C:\windows_e56.exe
Deleted
C:\windows_e57.exe
Infected with: Trojan.Adload.J
C:\windows_e57.exe
Delete failed
BitDefender Online Scanner
Scan report generated at: Sat, Nov 25, 2006 - 01:19:34
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
02:12:12
Files
108479
Folders
2237
Boot Sectors
2
Archives
1153
Packed Files
11404
Results
Identified Viruses
39
Infected Files
55
Suspect Files
3
Warnings
0
Disinfected
0
Deleted Files
56
Engines Info
Virus Definitions
318711
Engine build
AVCORE v1.0 (build 2368) (i386) (Nov 16 2006 11:31:19)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Delete
Second Action
None
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\popup[2].php
Detected with: Application.JS.ForcePopup.D
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\4TI9K7IB\popup[2].php
Deleted
C:\kybrdff_e56.exe
Infected with: Trojan.Downloader.Agent.DI
C:\kybrdff_e56.exe
Deleted
C:\kybrdff_e57.exe
Infected with: Trojan.Adload.J
C:\kybrdff_e57.exe
Deleted
C:\nwnmff_e25.exe
Infected with: Trojan.Downloader.Adload.AS
C:\nwnmff_e25.exe
Deleted
C:\nwnmff_e55.exe
Infected with: Trojan.Adload.F
C:\nwnmff_e55.exe
Deleted
C:\nwnmff_e57.exe
Infected with: Trojan.Adload.J
C:\nwnmff_e57.exe
Deleted
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat=>(gzip)
Infected with: Trojan.Clicker.Small.AV
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-spyware 4.0\Quarantine\fil20CD8909.dat
Update failed
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0003
Infected with: Trojan.Downloader.VB.QB
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0003
Deleted
C:\RDFX4.exe=>(NSIS o)
Update failed
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0004
Infected with: Trojan.Downloader.Small.ALG
C:\RDFX4.exe=>(NSIS o)=>zlib_nsis0004
Deleted
C:\RDFX4.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP115\A0058370.exe
Infected with: Trojan.Proxy.Ranky.D
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP115\A0058370.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080529.exe
Infected with: Trojan.Downloader.VB.XF
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080529.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080530.exe
Infected with: Trojan.Downloader.Adload.ED
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080530.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080531.exe
Infected with: Trojan.Downloader.Adload.AQ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080531.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080532.exe
Infected with: Trojan.Downloader.Adload.CO
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080532.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080533.exe
Infected with: Trojan.Downloader.AOV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080533.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080534.exe
Infected with: Trojan.Downloader.DollarRevenue.AD
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080534.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080535.exe
Infected with: Trojan.Downloader.Adload.IK
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080535.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080536.exe
Infected with: Trojan.Downloader.Adload.IK
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080536.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080537.exe
Infected with: Trojan.DollarRevenue.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080537.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080538.exe
Infected with: Trojan.Proxy.Ranky.D
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080538.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080544.exe
Infected with: Trojan.Dropper.Small.AUC
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080544.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080545.exe
Infected with: Trojan.Downloader.Adload.DS
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080545.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080546.exe
Infected with: Trojan.Downloader.Adload.EG
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080546.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080548.exe
Infected with: Trojan.Downloader.Adload.EF
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080548.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080554.exe
Infected with: Trojan.Downloader.Adload.FY
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080554.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080555.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080555.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080556.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080556.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080557.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080557.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080558.exe
Infected with: Trojan.Downloader.Adload.FJ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080558.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080559.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080559.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080560.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080560.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080561.exe
Infected with: Trojan.Downloader.Adload.FT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080561.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080562.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080562.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080563.exe
Suspected of: BehavesLike:Trojan.Downloader
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080563.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080564.exe
Infected with: Trojan.Downloader.VB.HT
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080564.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080565.exe
Infected with: Trojan.Downloader.Adload.FZ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080565.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080566.exe
Infected with: Trojan.Downloader.Adload.FZ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080566.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080568.exe
Infected with: Trojan.Downloader.AOW
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080568.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080569.exe
Infected with: Trojan.Downloader.DollarRevenue.AD
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080569.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080570.exe
Infected with: Trojan.Downloader.Adload.EE
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080570.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080571.exe
Infected with: Trojan.Downloader.Adload.GG
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080571.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080572.exe
Infected with: Trojan.DollarRevenue.E
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080572.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080573.exe
Infected with: Trojan.DollarR.BV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080573.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080574.exe
Infected with: Trojan.Spy.DollarRevenue.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080574.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080575.exe
Infected with: Trojan.Downloader.Adload.FB
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080575.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080576.exe
Infected with: Trojan.Agent.SQ
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080576.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080579.exe
Infected with: DeepScan:Generic.Malware.dld!!.017A0331
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080579.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080580.exe
Infected with: DeepScan:Generic.Malware.dld!!.017A0331
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080580.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080583.exe
Infected with: Trojan.Downloader.Adload.FV
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0080583.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084538.exe
Infected with: Trojan.Downloader.Agent.DI
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084538.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084539.exe
Infected with: Trojan.Adload.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084539.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084540.exe
Infected with: Trojan.Downloader.Adload.AS
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084540.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084541.exe
Infected with: Trojan.Adload.F
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084541.exe
Deleted
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084542.exe
Infected with: Trojan.Adload.J
C:\System Volume Information\_restore{B654FDAE-43BE-4A07-B328-3AEC4D152D86}\RP128\A0084542.exe
Deleted
C:\WINDOWS\cywin.exe
Infected with: Trojan.Proxy.K
C:\WINDOWS\cywin.exe
Deleted
C:\WINDOWS\system32\Lssass.exe
Infected with: Generic.Sdbot.3E964633
C:\WINDOWS\system32\Lssass.exe
Delete failed
C:\windows_e56.exe
Infected with: Trojan.Adload.G
C:\windows_e56.exe
Deleted
C:\windows_e57.exe
Infected with: Trojan.Adload.J
C:\windows_e57.exe
Delete failed
Salut,
j'espère pour toi que tu l'as pas acheté car c'est une vraie passoire
Alors ceci; C:\System Volume Information\_restore indique que ta restauration du systeme etait infecté ou est infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
j'espère pour toi que tu l'as pas acheté car c'est une vraie passoire
Alors ceci; C:\System Volume Information\_restore indique que ta restauration du systeme etait infecté ou est infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
salut.mille merci pour tout ,non l'antivirus je ne l'est pas acheter;ouff,et a present tout marche des nouvelles mises a jour ce sont instaler y compris sp2 que je n'arrivais pas a mettre .Juste il est un peu lent .Bref pour l'instant c'est bon si tu a un bon anti virus a me conseiller je suis preneur .Encore merci pour tout
