3 rapports avant formatage
Résolu
SuperLibellule
Messages postés
23
Statut
Membre
-
easyclyner57 Messages postés 292 Date d'inscription Statut Membre Dernière intervention -
easyclyner57 Messages postés 292 Date d'inscription Statut Membre Dernière intervention -
Bonjour à tous,
Comme me l'a conseillé easyclyner57 dans mon post du forum Windows ("formater XP sur toshiba satellite A100-165 ?"), je viens d'abord ici pour vous soumettre les différents rapports de scan que je viens de terminer :
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:24:10 21/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Gaelle\Cookies\gaelle@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.80:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.9:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@com[1].txt -> TrackingCookie.Com : Nettoyé.
:mozilla.38:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.36:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.69:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.53:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.55:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.56:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.57:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.21:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.26:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.27:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.28:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
Fin du rapport
______________________________________________________
BitDefender Online Scanner
Scan report generated at: Sun, Jan 21, 2007 - 19:31:20
Scan path: C:\;D:\;
Statistics
Time
01:07:10
Files
711989
Folders
5210
Boot Sectors
3
Archives
8992
Packed Files
55147
Results
Identified Viruses
4
Infected Files
22
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
44
Engines Info
Virus Definitions
390090
Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Deleted
______________________________________________________
Logfile of HijackThis v1.99.1
Scan saved at 19:36:19, on 21/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TDispVol.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\MUSICM~1\MUSICM~2\MMDiag.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\Rar$EX05.016\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [TDispVol] TDispVol.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~2\mimboot.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [msci] C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe /insfin
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9C024426-7859-4B2D-AB4C-B1E370AE7549} - http://us.mcafee.com/Apps/WSC/en-us/WscWlanScannerCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
______________________________________________________
Voilà.
Je suis en train de faire la sauvegarde de mes données, me prépare tout doucement au formatage.
Mais au cas où ça ne soit pas nécessaire, voici les principaux problèmes auxquels j'espère remedier en réinstallant tout :
- Emule ne fonctionne plus du tout
- Impossible d'accéder aux sites sécurisés
Merci beaucoup.
A bientôt.
Comme me l'a conseillé easyclyner57 dans mon post du forum Windows ("formater XP sur toshiba satellite A100-165 ?"), je viens d'abord ici pour vous soumettre les différents rapports de scan que je viens de terminer :
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:24:10 21/01/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Gaelle\Cookies\gaelle@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.80:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.9:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@com[1].txt -> TrackingCookie.Com : Nettoyé.
:mozilla.38:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.36:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.69:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.53:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.55:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.56:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.57:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.21:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.26:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.27:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.28:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
Fin du rapport
______________________________________________________
BitDefender Online Scanner
Scan report generated at: Sun, Jan 21, 2007 - 19:31:20
Scan path: C:\;D:\;
Statistics
Time
01:07:10
Files
711989
Folders
5210
Boot Sectors
3
Archives
8992
Packed Files
55147
Results
Identified Viruses
4
Infected Files
22
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
44
Engines Info
Virus Definitions
390090
Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Deleted
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Disinfection failed
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Deleted
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Disinfection failed
C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Deleted
______________________________________________________
Logfile of HijackThis v1.99.1
Scan saved at 19:36:19, on 21/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TDispVol.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\MUSICM~1\MUSICM~2\MMDiag.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\Rar$EX05.016\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [TDispVol] TDispVol.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~2\mimboot.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [msci] C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe /insfin
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9C024426-7859-4B2D-AB4C-B1E370AE7549} - http://us.mcafee.com/Apps/WSC/en-us/WscWlanScannerCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
______________________________________________________
Voilà.
Je suis en train de faire la sauvegarde de mes données, me prépare tout doucement au formatage.
Mais au cas où ça ne soit pas nécessaire, voici les principaux problèmes auxquels j'espère remedier en réinstallant tout :
- Emule ne fonctionne plus du tout
- Impossible d'accéder aux sites sécurisés
Merci beaucoup.
A bientôt.
A voir également:
- 3 rapports avant formatage
- Formatage clé usb - Guide
- Formatage pc - Guide
- Ai suite 3 - Télécharger - Optimisation
- Code formatage samsung - Astuces et Solutions
- Picasa 3 - Télécharger - Albums photo
7 réponses
bonsoir peu etre que ca vien de kerio ou de spyware doctor
essay dans un premier de desactiver spyware doctor pour voir si ca vien de la
et dit nous ce que ca donne
a++
essay dans un premier de desactiver spyware doctor pour voir si ca vien de la
et dit nous ce que ca donne
a++
Merci pour vos réponses.
En ce qui concerne Spyware doctor, je ne trouve ni dans ma barre d'état, ni dans le menu démarrer, ni dans services.msc...
J'ai quitté Kerio et l'ai désactivé dans services.msc, toujours impossible d'accéder au site de ma banque par ex ou des assedics.
En ce qui concerne Norton, je ne sais pas comment le désinstaller puisque ça ne marche pas dans Ajout/Suppression de programmes. Il est aussi désactivé dans services.msc ainsi que tous les services "Symantec"...
En ce qui concerne Spyware doctor, je ne trouve ni dans ma barre d'état, ni dans le menu démarrer, ni dans services.msc...
J'ai quitté Kerio et l'ai désactivé dans services.msc, toujours impossible d'accéder au site de ma banque par ex ou des assedics.
En ce qui concerne Norton, je ne sais pas comment le désinstaller puisque ça ne marche pas dans Ajout/Suppression de programmes. Il est aussi désactivé dans services.msc ainsi que tous les services "Symantec"...
bonsoir tout le monde :)
et pourtant spyware doctor est bel et bien installer sur ton ordi
C:\Program Files\Spyware Doctor\sdhelp.exe
pour norton essay de le virer avec le desinstalateur http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20050414110429924
a+++
et pourtant spyware doctor est bel et bien installer sur ton ordi
C:\Program Files\Spyware Doctor\sdhelp.exe
pour norton essay de le virer avec le desinstalateur http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20050414110429924
a+++
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bon autant pour moi, je vous ai répondu trop vite.
Suis en train de désinstaller Norton (ma mémoire me fait défaut).
Ai j'ai trouvé Spyware Doctor et le désinstalle aussi.
Je vous tiens au courant dans la foulée.
A tout'
Suis en train de désinstaller Norton (ma mémoire me fait défaut).
Ai j'ai trouvé Spyware Doctor et le désinstalle aussi.
Je vous tiens au courant dans la foulée.
A tout'
EUREKAAAAAAAAA !!!!!!!!!
YOUPIIIIIIIII !!!
Vous êtes trop forts !
Je sais pas comment vous signifier ma reconnaissance !
Après avoir désinstallé Norton, Spyware Doctore, et redémarré mon ordi, j'ai à nouveau accès aux sites sécurisés et en plus je peux à nouveau me servir d'Emule !!!
Plus besoin de formater pour l'instant donc !
Merci beaucoup.
Je ne manquerai pas de revenir sur site (que j'ajoute à mes favoris).
Je vous souhaite de passer une excellente soirée.
YOUPIIIIIIIII !!!
Vous êtes trop forts !
Je sais pas comment vous signifier ma reconnaissance !
Après avoir désinstallé Norton, Spyware Doctore, et redémarré mon ordi, j'ai à nouveau accès aux sites sécurisés et en plus je peux à nouveau me servir d'Emule !!!
Plus besoin de formater pour l'instant donc !
Merci beaucoup.
Je ne manquerai pas de revenir sur site (que j'ajoute à mes favoris).
Je vous souhaite de passer une excellente soirée.
