Sujet Précédent Sujet Suivant

3 rapports avant formatage

Résolu/Fermé
SuperLibellule Messages postés 23 Date d'inscription dimanche 21 janvier 2007 Statut Membre Dernière intervention 30 janvier 2007 - 21 janv. 2007 à 19:50
easyclyner57 Messages postés 292 Date d'inscription mardi 9 mai 2006 Statut Membre Dernière intervention 16 février 2007 - 21 janv. 2007 à 21:09
Bonjour à tous,

Comme me l'a conseillé easyclyner57 dans mon post du forum Windows ("formater XP sur toshiba satellite A100-165 ?"), je viens d'abord ici pour vous soumettre les différents rapports de scan que je viens de terminer :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 17:24:10 21/01/2007

+ Résultat de l'analyse:



C:\Documents and Settings\Gaelle\Cookies\gaelle@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.80:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.9:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@com[1].txt -> TrackingCookie.Com : Nettoyé.
:mozilla.38:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.36:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.69:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.53:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.55:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.56:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.57:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.21:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.26:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.27:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.28:C:\Documents and Settings\Gaelle\Application Data\Mozilla\Firefox\Profiles\vaey9hc5.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Local Settings\Temp\Cookies\gaelle@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Gaelle\Cookies\gaelle@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.


Fin du rapport
______________________________________________________

BitDefender Online Scanner



Scan report generated at: Sun, Jan 21, 2007 - 19:31:20





Scan path: C:\;D:\;







Statistics

Time
01:07:10

Files
711989

Folders
5210

Boot Sectors
3

Archives
8992

Packed Files
55147




Results

Identified Viruses
4

Infected Files
22

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
44




Engines Info

Virus Definitions
390090

Engine build
AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1778383B.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25623D19.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F8D7023.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40E17EAD.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41630E1D.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492F438A.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B401939.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\547C131A.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\55154871.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\562B393F.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Infected with: Trojan.Downloader.JS.Winad.B

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\56662CFF.tmp=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59962D7C.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59995779.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\599D0175.exe=>(Quarantine-2)
Deleted

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59A02B71.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000007.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000008.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000009.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000010.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.DT

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000011.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Infected with: Trojan.Proxy.Horst.KQ

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000012.exe=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Infected with: Backdoor.IRCBot.XQ

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{D475D116-DF88-45C4-8BF3-9AB6FC089BD7}\RP1\A0000013.exe=>(Quarantine-2)
Deleted

______________________________________________________

Logfile of HijackThis v1.99.1
Scan saved at 19:36:19, on 21/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\TDispVol.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\MUSICM~1\MUSICM~2\MMDiag.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Gaelle\LOCALS~1\Temp\Rar$EX05.016\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [TDispVol] TDispVol.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~2\mimboot.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [msci] C:\DOCUME~1\Gaelle\LOCALS~1\Temp\20061228132659_mcinfo.exe /insfin
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: RAMASST.lnk = C:\WINDOWS\system32\RAMASST.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9C024426-7859-4B2D-AB4C-B1E370AE7549} - http://us.mcafee.com/Apps/WSC/en-us/WscWlanScannerCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0AA6F3E0-4ECC-45F6-958D-EA541261FCA9}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe

______________________________________________________

Voilà.
Je suis en train de faire la sauvegarde de mes données, me prépare tout doucement au formatage.

Mais au cas où ça ne soit pas nécessaire, voici les principaux problèmes auxquels j'espère remedier en réinstallant tout :
- Emule ne fonctionne plus du tout
- Impossible d'accéder aux sites sécurisés

Merci beaucoup.

A bientôt.
A voir également:

7 réponses

Réponse 1 / 7
salwa5 Messages postés 7452 Date d'inscription jeudi 30 novembre 2006 Statut Contributeur Dernière intervention 18 août 2012 1 632
21 janv. 2007 à 20:03
bonsoir peu etre que ca vien de kerio ou de spyware doctor

essay dans un premier de desactiver spyware doctor pour voir si ca vien de la

et dit nous ce que ca donne


a++
0
Réponse 2 / 7
easyclyner57 Messages postés 292 Date d'inscription mardi 9 mai 2006 Statut Membre Dernière intervention 16 février 2007 10
21 janv. 2007 à 20:09
salut salwa5


reste des traces de norton sur son hjt a desinstalé corectement

@+
0
Réponse 3 / 7
SuperLibellule Messages postés 23 Date d'inscription dimanche 21 janvier 2007 Statut Membre Dernière intervention 30 janvier 2007 8
21 janv. 2007 à 20:18
Merci pour vos réponses.

En ce qui concerne Spyware doctor, je ne trouve ni dans ma barre d'état, ni dans le menu démarrer, ni dans services.msc...

J'ai quitté Kerio et l'ai désactivé dans services.msc, toujours impossible d'accéder au site de ma banque par ex ou des assedics.

En ce qui concerne Norton, je ne sais pas comment le désinstaller puisque ça ne marche pas dans Ajout/Suppression de programmes. Il est aussi désactivé dans services.msc ainsi que tous les services "Symantec"...
0
Réponse 4 / 7
salwa5 Messages postés 7452 Date d'inscription jeudi 30 novembre 2006 Statut Contributeur Dernière intervention 18 août 2012 1 632
21 janv. 2007 à 20:29
bonsoir tout le monde :)

et pourtant spyware doctor est bel et bien installer sur ton ordi

C:\Program Files\Spyware Doctor\sdhelp.exe


pour norton essay de le virer avec le desinstalateur http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20050414110429924

a+++
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
SuperLibellule Messages postés 23 Date d'inscription dimanche 21 janvier 2007 Statut Membre Dernière intervention 30 janvier 2007 8
21 janv. 2007 à 20:31
Bon autant pour moi, je vous ai répondu trop vite.

Suis en train de désinstaller Norton (ma mémoire me fait défaut).
Ai j'ai trouvé Spyware Doctor et le désinstalle aussi.

Je vous tiens au courant dans la foulée.

A tout'
0
Réponse 6 / 7
SuperLibellule Messages postés 23 Date d'inscription dimanche 21 janvier 2007 Statut Membre Dernière intervention 30 janvier 2007 8
21 janv. 2007 à 20:51
EUREKAAAAAAAAA !!!!!!!!!
YOUPIIIIIIIII !!!

Vous êtes trop forts !
Je sais pas comment vous signifier ma reconnaissance !
Après avoir désinstallé Norton, Spyware Doctore, et redémarré mon ordi, j'ai à nouveau accès aux sites sécurisés et en plus je peux à nouveau me servir d'Emule !!!

Plus besoin de formater pour l'instant donc !

Merci beaucoup.

Je ne manquerai pas de revenir sur site (que j'ajoute à mes favoris).

Je vous souhaite de passer une excellente soirée.
0
Réponse 7 / 7
easyclyner57 Messages postés 292 Date d'inscription mardi 9 mai 2006 Statut Membre Dernière intervention 16 février 2007 10
21 janv. 2007 à 21:09
re
pas de quoi je pense que tous les personnes qui depanne sur ce site sont comme moi contre le formatage c bien trop simple et la personne sera jamais evolué en informatique

@+
0

Discussions similaires

Que signifie cet emoji :3
Moi -
AssassinTourist -

2 réponses
Signification de " :3 "
blanchecanelle -
Pistounette -

5 réponses
chaima csc
chaima -
chaima -

1 réponse
Comment savoir qui a visité notre profil copain d'avant et facebook ?
anonyme -
anonyme -

3 réponses
Copains d'avant, qui a visité notre profil
Grigri -
Grigri -

2 réponses