Virus

Résolu
houari -  
blondin777 Messages postés 6162 Statut Contributeur -
bonjour à tous, voilà j'ai un pb qui m'empoisone la vie et je vous demande de m'aidez svp:
qd j'ouvre internet il ya un onglet ou on peut lire: PRIVACY ALERT avec un cercle qui tourne. en fait il s'agit d'une page avec des photos porno qui offre le pb et sa résolution en vendant un SPYWARE WIZARD.
s'agit il d'un virus?
s'adure depuis 3 mois et je veux m'en débarassé svp j'ai éssayer l'antivirus; l'antispyware et ça donne rien!
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 17:17:01 13/03/2007

+ Résultat de l'analyse:

HKU\S-1-5-21-3296790786-902213144-3948070435-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager.1 -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CLSID -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CurVer -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\HOUARI\Cookies\houari@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@msnclassifieds.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@notrefamille.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@media.fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@goclick[2].txt -> TrackingCookie.Goclick : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@questionmarket[1].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@edge.ru4[1].txt -> TrackingCookie.Ru4 : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\HOUARI\Cookies\houari@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\LEILA\Cookies\leila@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.

Fin du rapport
Configuration: Windows XP
Internet Explorer 7.0

29 réponses

  • 1
  • 2
Résumé de la discussion

Un problème remonte: une page affiche 'Privacy Alert' et propose un spyware 'Spyware Wizard', suscitant la question s'il s'agit d'un virus persistant. Des tentatives de désinfection avec AVG Anti-Spyware n'ont pas suffi, et des réponses recommandent des outils comme HijackThis et SmitFraudFix pour identifier les composants rémanents. En parallèle, Avast Free Antivirus est évoqué comme solution gratuite en français, avec des conseils pour supprimer des entrées et scripts potentiellement malveillants tels navilog1 et d'autres éléments résiduels. D'autres interventions notent l'usage d'outils comme SmitFraudFix v2.151 et rappellent que des barres d'outils ou extensions intrusives peuvent persister tant que les clés de démarrage et les paramètres du navigateur ne sont pas nettoyés.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Salut.

    télécharges « Hijackthis »:

    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html

    *Installes-le dans un dossier créé spécialement à la racine de ta partition principale (généralement c:\).
    *Renommes le en hij.exe par exemple
    *Double cliques sur hij.exe
    *Cliques sur le fichier > « exécute » > « do a scan and save a logfile ».
    *Une fois fini tu vas avoir un « rapport.txt » (dans le dossier où tu l’as installé)
    *Postes ici ce rapport

    Démo pour cocher et fixer les lignes:

    http://pageperso.aol.fr/balltrap34/Hijenr.gif
    http://pageperso.aol.fr/balltrap34/demohijack.htm
    0
    1. houari67 Messages postés 58 Statut Membre
       
      bonjour blondin777,
      excuse moi de la réponse tardive
      voici le rapport que tu ma demandé:
      Logfile of HijackThis v1.99.1
      Scan saved at 16:18:25, on 14/03/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16414)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
      C:\WINDOWS\system32\RUNDLL32.EXE
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\WINDOWS\system32\SysMonitor.exe
      C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      C:\Program Files\Acer TV-FM\PCMService.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\PC MightyMax\pcmm.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      C:\WINDOWS\Explorer.exe
      C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
      C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\DOCUME~1\HOUARI\LOCALS~1\Temp\Répertoire temporaire 3 pour hijackthis[1].zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
      R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbhelper.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\wizard.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
      O2 - BHO: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
      O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
      O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\wizard.dll
      O4 - HKLM\..\Run: [LaunchApp] Alaunch
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
      O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
      O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
      O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
      O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
      O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
      O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
      O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
      O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
      O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
      O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
      O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
      O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
      O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
      O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [{D7CC80D4-376C-4586-B023-4F35C2CEB28E} Deskbar AutoExec] rundll32 "C:\WINDOWS\system32\Favorites\deskbar.dll", WindowsStartup
      O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
      O4 - HKCU\..\Run: [Democracy Player] C:\Program Files\Participatory Culture Foundation\Democracy Player\Democracy.exe
      O4 - Global Startup: Acer Empowering Technology.lnk = ?
      O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
      O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
      O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
      O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
      O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
      O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      0
  2. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Hijackthis mal installé! C'est le 6ème aujourd'hui au moins! On recommence.

    télécharges « Hijackthis »:

    https://www.01net.com/

    *Installes-le dans un dossier créé spécialement à la racine de ta partition principale (généralement c:\).
    *Renommes le en hij.exe par exemple

    *Double cliques sur hij.exe
    *Cliques sur le fichier > « exécute » > « do a scan and save a logfile ».
    *Une fois fini tu vas avoir un « rapport.txt » (dans le dossier où tu l’as installé)
    *Postes ici ce rapport

    Démo pour cocher et fixer les lignes:

    http://pageperso.aol.fr/balltrap34/Hijenr.gif
    http://pageperso.aol.fr/balltrap34/demohijack.htm
    0
  3. houari67 Messages postés 58 Statut Membre
     
    me revoilà blondin777
    Logfile of HijackThis v1.99.1
    Scan saved at 21:59:55, on 14/03/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16414)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\WINDOWS\system32\SysMonitor.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    C:\Program Files\Acer TV-FM\PCMService.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\PC MightyMax\pcmm.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\WINDOWS\Explorer.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
    C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
    C:\Documents and Settings\HOUARI\Mes documents\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbu02653\tbhelper.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O4 - HKLM\..\Run: [LaunchApp] Alaunch
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
    O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [{D7CC80D4-376C-4586-B023-4F35C2CEB28E} Deskbar AutoExec] rundll32 "C:\WINDOWS\system32\Favorites\deskbar.dll", WindowsStartup
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [Democracy Player] C:\Program Files\Participatory Culture Foundation\Democracy Player\Democracy.exe
    O4 - Global Startup: Acer Empowering Technology.lnk = ?
    O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
    O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    0
  4. houari67 Messages postés 58 Statut Membre
     
    quelle ligne cocher?
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Désolé d'insister mais hijackthis est toujours mal installé. et c'est trés important qu'il soit correctement installé.

    *Installes-le dans un dossier créé spécialement à la racine de ta partition principale (généralement c:\).
    Donc tu l'installes dans C:\ et pas dans C: \.........\........\.
    *Renommes le en hij.exe par exemple
    0
  7. houari67 Messages postés 58 Statut Membre
     
    salut blondin
    excuse moi je ne suis pas trés doué en informatique:
    Logfile of HijackThis v1.99.1
    Scan saved at 12:07:36, on 15/03/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16414)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\WINDOWS\system32\SysMonitor.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    C:\Program Files\Acer TV-FM\PCMService.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\PC MightyMax\pcmm.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
    C:\WINDOWS\Explorer.exe
    C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\hij.exe\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbu02653\tbhelper.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O4 - HKLM\..\Run: [LaunchApp] Alaunch
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
    O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [{D7CC80D4-376C-4586-B023-4F35C2CEB28E} Deskbar AutoExec] rundll32 "C:\WINDOWS\system32\Favorites\deskbar.dll", WindowsStartup
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [Democracy Player] C:\Program Files\Participatory Culture Foundation\Democracy Player\Democracy.exe
    O4 - Global Startup: Acer Empowering Technology.lnk = ?
    O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
    O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    0
  8. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Tu fais Ctrl+alt+suppr, tu vas dans l'onglet processus et tu coupe ce processus:

    pcmm.exe

    Fais démarrer>>panneau de configuration>>ajout/suppr de programme et supprimes ce programme:

    PC MightyMax

    Ensuite coches et fixes ces lignes:

    R3 - URLSearchHook: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbu02653\tbhelper.dll
    O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O2 - BHO: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [{D7CC80D4-376C-4586-B023-4F35C2CEB28E} Deskbar AutoExec] rundll32 "C:\WINDOWS\system32\Favorites\deskbar.dll", WindowsStartup
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [Democracy Player] C:\Program Files\Participatory Culture Foundation\Democracy Player\Democracy.exe
    O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/

    Fais un clic droit sur ce lien :

    http://perso.orange.fr/il.mafioso/Navifix/navilog1.zip

    Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
    Fais un clic droit sur navilog1.zip et choisis "tout extraire"
    Ensuite double clique sur navilog1.bat
    Laisses-toi guider. Au menu principal, choisis 1 et valides.
    Patientes jusqu'au message :

    "Analyse Termine le ..... "

    Appuies sur une touche comme demandé, le bloc-notes va s'ouvrir.
    Copies-colles l'intégralité içi. Refermes le bloc-notes.

    Et repostes un log hijackthis.
    0
  9. houari67 Messages postés 58 Statut Membre
     
    je crois que cette fois c'est le bon?
    Logfile of HijackThis v1.99.1
    Scan saved at 16:14:41, on 15/03/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16414)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\WINDOWS\system32\SysMonitor.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    C:\Program Files\Acer TV-FM\PCMService.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\PC MightyMax\pcmm.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
    C:\WINDOWS\Explorer.exe
    C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
    C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\hij4.exe\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbu02653\tbhelper.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: DeskbarBHO - {C6BC3414-BF19-4dfd-BAB5-70C5C395E9B4} - C:\WINDOWS\system32\Favorites\deskbar.dll
    O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\tbu02653\wizard.dll
    O4 - HKLM\..\Run: [LaunchApp] Alaunch
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
    O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
    O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
    O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PCMMRealtime] C:\Program Files\PC MightyMax\pcmm.exe /R
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [{D7CC80D4-376C-4586-B023-4F35C2CEB28E} Deskbar AutoExec] rundll32 "C:\WINDOWS\system32\Favorites\deskbar.dll", WindowsStartup
    O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
    O4 - HKCU\..\Run: [Democracy Player] C:\Program Files\Participatory Culture Foundation\Democracy Player\Democracy.exe
    O4 - Global Startup: Acer Empowering Technology.lnk = ?
    O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
    O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
    O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
    O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    0
  10. houari67 Messages postés 58 Statut Membre
     
    SALUT BLONDIN
    COMMENT JE COUPE :pcmm.exe
    tu ve dire le sélectionner puis clic droit ,puis terminer le processus?
    0
  11. blondin777 Messages postés 6162 Statut Contributeur 945
     
    tu ve dire le sélectionner puis clic droit ,puis terminer le processus?

    Exactement.

    Tu me renvoies un log hijackthis mais tu n'as pas coché les cases?
    0
    1. houari67 Messages postés 58 Statut Membre
       
      salut blondin777
      en attendant ta réponse, j'ai brulé les étapes sur: "pcmm.exe "et "pcMightyMax" ie j'ai rien fait!
      mais j'ai coché et fixé les lignes que tu ma demandé et j'ai fait la suite avec "navilog1.zip" et "navilog1.bat"
      et j'ai envoyé le blocnote dans le forum
      ensuite j'ai fait un démarrage sans échec (une opération que j'ai vu dans le forum.
      est ce que je suis sur la bonne voie?
      apparement je ne vois plus l'onglet sur la page "porno"
      0
  12. houari67 Messages postés 58 Statut Membre
     
    Search Navipromo version 1.0.7 commencé le 15/03/2007 à 17:52:52,76

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Poster ce rapport sur le forum pour le faire analyser !!!
    !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

    Fix lancé depuis C:\Documents and Settings\HOUARI\Bureau\navilog1
    Mise a jour le 12.03.2007 a 18h00 by IL-MAFIOSO

    Executé en mode normal

    *** Recherche Programmes installes ***

    *** Recherche dossiers dans C:\WINDOWS ***

    *** Recherche dossiers dans C:\Program Files ***

    *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

    *** Recherche dossiers dans C:\Documents and Settings\HOUARI\Application Data ***

    *** Recherche avec BlackLight Engine/F-secure ***
    BlackLight Engine est un produit de F-secure, pour + d'infos :
    https://www.f-secure.com/en

    F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
    ======================================

    Copyright 2005-2006 F-Secure Corporation. All rights reserved.
    This is a beta version. It will expire on 1st of April, 2007.
    Version information: 2.2.1055.

    [+] Started on 03/15/07 at 17:52:54.
    [+] Initializing ...
    [+] Starting scan, press Ctrl-C to abort.
    [+] Scanning for hidden items ....................................
    [+] Scan complete.
    [+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
    [+] Exited on 03/15/07 at 17:55:39 (return code = 0).

    *** Recherche fichiers ***

    *** Recherche cles registre ***

    Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]

    Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]

    Recherche Clé Magic Control

    *** Module de recherche complémentaire ***
    (recherche fichiers spécifiques)

    1)Recherche fichiers connus:

    2)Recherche Heuristique :
    *
    **
    ***
    ****
    *****
    ******
    *******
    ********

    *** Analyse Terminé le 15/03/2007 à 17:55:47,04 ***
    0
  13. houari67 Messages postés 58 Statut Membre
     
    le probleme est tjrs là?
    0
  14. houari67 Messages postés 58 Statut Membre
     
    cou cou je cherche de l'aide!!!!!!
    please help me!!!!!
    0
  15. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Je suis pas là 24/24 non plus...

    Pourrais tu reposter un log hijackthis, stp?

    Fais ça aussi:

    ** télécharges « CCleaner »:
    https://www.01net.com/404/
    après l’install. lances-le et
    Clic sur "Options" > "Avancé" et décoches la case "Effacer uniquement ...que 48 heures".
    clic sur « erreurs » (à gauche) coches toutes les cases (sauf la dernière), puis
    clic sur « chercher des erreurs » une fois fini,
    clic sur « réparer les erreurs »
    au message pour sauvegarder la base de registre clic « oui »
    dans la fenêtre qui apparaît clic sur « corriger toutes les erreurs » puis sur « ok »
    recommencer jusqu’a ce qu’il n’y aie plus d’erreurs.
    dans la colonne de gauche clic sur « nettoyeur »puis « analyse ».
    attendre la fin et clic sur « lancer le nettoyage » autant de fois que nécessaire.

    ** télécharges « spybot »: https://www.01net.com/
    lances le apres install. >
    dans « langue » choisis « fr » (si besoin est)
    dans « mode » choisir « mode avancé »
    clic sur « réglages » (à gauche) >> « modules add. », coches toutes les cases sauf la dernière (traceur...)
    reviens sur l'onglet "spybot-S&D" (à gauche) cliques sur "vérif tout"
    quand c'est fini supprimes tt ce q’il trouve en cliquant sur "corriger..."
    (s'il te propose de redémarrer le pc pour finir le nettoyage acceptes et laisses-le faire, (mais dès que c'est fini redémarres en mode sans echec et continues les étapes)
    utilises la rubrique "aide" si nécssaire

    **Télécharge la version d'essai d'AVG Anti-Spyware 7.5 ici :
    https://www.avg.com/en-ww/free-antivirus-download
    et l'installer.

    Son tuto (merci malekal_morte) : https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/

    Démarrer AVG antispyware. Cliquer sur "mise à jour", cliquer sur le bouton "Commencer la mise à jour" et attendre la fin de cette mise à jour puis, fermer le programme.
    Redemarrer en mode sans échec, relancer AVG AS et cliquer sur l'onglet "scanner" puis sur "Analyse complète du système".
    Une fois le scan terminé, il t'affiche un rapport. Cliquer sur "configurer..." en bas a gauche et choisir "supprimer". Ensuite cliquer sur "Appliquer toutes les actions ", ca va supprimer toutes les infections détectées.
    Ensuite cliquer sur "Enregistrer le rapport d'analyse" -> "enregistrer sous" et enregistrer le rapport où bon te semble, afin de me l'envoyer dans ta prochaine réponse.

    Pour vérifier, scanne ton PC avec cet antivirus en ligne (sous IE et accepte l’activX) :
    http://www.bitdefender.fr/bd/site/search.php#
    Clique sur « Bitdefender scan on line » suis les instructions.
    Et colle le rapport.
    0
    1. houari67 Messages postés 58 Statut Membre
       
      Logfile of HijackThis v1.99.1
      Scan saved at 23:38:00, on 15/03/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16414)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      C:\WINDOWS\system32\RUNDLL32.EXE
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\WINDOWS\system32\SysMonitor.exe
      C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
      C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      C:\Program Files\Acer TV-FM\PCMService.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
      C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
      C:\DOCUME~1\HOUARI\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbhelper.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\wizard.dll (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
      O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
      O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\wizard.dll (file missing)
      O4 - HKLM\..\Run: [LaunchApp] Alaunch
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
      O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
      O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
      O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
      O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
      O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
      O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
      O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      O4 - Global Startup: Acer Empowering Technology.lnk = ?
      O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
      O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
      O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
      O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
      O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      0
    2. houari67 Messages postés 58 Statut Membre
       
      je n'arrive pas à télécharger CCleaner : la page d'accueil me dit que ce lien n'existe plus!
      a demain blondin et ne t'énerve pas merci bcp pour ton aide.
      0
  16. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Coches et fixes ces lignes:

    O2 - BHO: XBTB01994 - {5CDD839E-255C-415D-9927-3AF98318D15B} - C:\WINDOWS\system32\Search\wizard.dll (file missing)
    O3 - Toolbar: Search - {BFB5F154-9212-46F3-B547-AC6106030A54} - C:\WINDOWS\system32\Search\wizard.dll (file missing)

    Le reste est propre.

    J'attends les autres rapports.
    0
  17. blondin777 Messages postés 6162 Statut Contributeur 945
     
    Essaies là:

    https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/

    Le savoir n'est richesse que s'il est partagé
    0
    1. houari67 Messages postés 58 Statut Membre
       
      Logfile of HijackThis v1.99.1
      Scan saved at 00:11:40, on 16/03/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16414)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      C:\WINDOWS\system32\RUNDLL32.EXE
      C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\WINDOWS\system32\SysMonitor.exe
      C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
      C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      C:\Program Files\Acer TV-FM\PCMService.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
      C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
      C:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
      C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
      C:\DOCUME~1\HOUARI\LOCALS~1\Temp\Répertoire temporaire 3 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.free.fr/freebox/index.html
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\WINDOWS\system32\Search\tbhelper.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
      O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
      O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
      O4 - HKLM\..\Run: [LaunchApp] Alaunch
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
      O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
      O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
      O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
      O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
      O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
      O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
      O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
      O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
      O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Acer TV-FM\PCMService.exe"
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
      O4 - HKCU\..\Run: [EPSON Stylus COLOR 480SXU (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_SICN03.EXE /A "C:\WINDOWS\system32\E_S19.tmp"
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      O4 - Global Startup: Acer Empowering Technology.lnk = ?
      O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
      O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
      O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
      O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
      O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
      O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
      O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
      O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
      O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
      0
    2. houari67 Messages postés 58 Statut Membre
       
      salut voici le rapport aprés ttes les opérations
      ------------------------------------------------------
      AVG Anti-Spyware - Rapport d'analyse
      ---------------------------------------------------------

      + Créé à: 01:36:31 16/03/2007

      + Résultat de l'analyse:



      C:\System Volume Information\_restore{27929864-1714-4615-A18A-05D85FEEEFEA}\RP70\A0011176.dll -> Adware.Softomate : Nettoyé.
      C:\Documents and Settings\HOUARI\Cookies\houari@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
      C:\Documents and Settings\HOUARI\Cookies\houari@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
      C:\Documents and Settings\HOUARI\Cookies\houari@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
      C:\Documents and Settings\HOUARI\Cookies\houari@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.


      Fin du rapport
      0
  18. blondin777 Messages postés 6162 Statut Contributeur 945
     
    J'attends ton log bitdefender.

    Télécharge clean.zip
    http://www.malekal.com/download/clean.zip
    Décompresse-le sur ton bureau (clic droit / extraire tout), tu dois obtenir un dossier clean.
    Ouvre le dossier Clean qui se trouve sur ton bureau.
    Double-clic sur clean.cmd.
    Une fenêtre noire va apparaître, suis les consignes.
    Poste le rapport qui se trouve ici C:\rapport_clean.txt
    0
  19. houari67 Messages postés 58 Statut Membre
     
    salut blondin, notre pb persiste tjrs et voici le rapport bitdefender:
    BitDefender Online Scanner - Real Time Virus Report

    Generated at: Fri, Mar 16, 2007 - 20:20:06

    --------------------------------------------------------------------------------

    Scan Info

    Scanned Files
    408468

    Infected Files
    548

    Virus Detected

    Win32.Worm.Brontok.H
    2

    Win32.HLLW.Sachiel.D
    1

    Win32.Brontok.C@mm
    545

    --------------------------------------------------------------------------------

    This summary of the scan process will be used by the BitDefender Antivirus Lab to create agregate statistics about virus activity around the world.
    0
  20. houari67 Messages postés 58 Statut Membre
     
    voici avec plus de détails:
    BitDefender Online Scanner

    Scan report generated at: Fri, Mar 16, 2007 - 20:16:17

    Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;

    Statistics

    Time
    00:40:55

    Files
    408330

    Folders
    3101

    Boot Sectors
    4

    Archives
    6942

    Packed Files
    59012

    Results

    Identified Viruses
    3

    Infected Files
    548

    Suspect Files
    0

    Warnings
    0

    Disinfected
    0

    Deleted Files
    1094

    Engines Info

    Virus Definitions
    405525

    Engine build
    AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)

    Scan plugins
    14

    Archive plugins
    38

    Unpack plugins
    6

    E-mail plugins
    6

    System plugins
    1

    Scan Settings

    First Action
    Disinfect

    Second Action
    Delete

    Heuristics
    Yes

    Enable Warnings
    Yes

    Scanned Extensions
    *;

    Exclude Extensions

    Scan Emails
    Yes

    Scan Archives
    Yes

    Scan Packed
    Yes

    Scan Files
    Yes

    Scan Boot
    Yes

    Scanned File
    Status

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00394B3B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00394B3B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00394B3B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A5132E.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A5132E.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00A5132E.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00B81FE9.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00B81FE9.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\00B81FE9.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\016844BC.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\016844BC.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\016844BC.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01C23385.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01C23385.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01C23385.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01CD17E8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01CD17E8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01CD17E8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02326B13.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02326B13.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02326B13.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02520E11.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02520E11.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02520E11.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BC6728.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BC6728.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02BC6728.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02CC4720.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02CC4720.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02CC4720.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02FD1169.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02FD1169.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02FD1169.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03571D22.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03571D22.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03571D22.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03CC660D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03CC660D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\03CC660D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0430165C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0430165C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0430165C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\049C2416.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\049C2416.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\049C2416.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04E9698E.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04E9698E.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04E9698E.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04FB2D67.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04FB2D67.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04FB2D67.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0528753C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0528753C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0528753C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\05E12187.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\05E12187.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\05E12187.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\069E3DAD.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\069E3DAD.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\069E3DAD.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06EB3523.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06EB3523.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06EB3523.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\070021BB.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\070021BB.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\070021BB.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\076674E6.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\076674E6.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\076674E6.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\07CB4812.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\07CB4812.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\07CB4812.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08301B3D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08301B3D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08301B3D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089205D3.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089205D3.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\089205D3.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08956E68.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08956E68.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08956E68.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F758FE.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F758FE.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F758FE.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F77BEE.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F77BEE.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08F77BEE.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08FA4193.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08FA4193.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\08FA4193.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09085791.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09085791.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09085791.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09C6470C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09C6470C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09C6470C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D649A2.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D649A2.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09D649A2.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0B8B731B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0B8B731B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0B8B731B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB60690.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB60690.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB60690.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C73779D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C73779D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C73779D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CED7D15.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CED7D15.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CED7D15.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CFB6950.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CFB6950.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0CFB6950.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D1669F1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D1669F1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D1669F1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D284593.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D284593.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D284593.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D3F1C94.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D3F1C94.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D3F1C94.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D6A3009.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D6A3009.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0D6A3009.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DC60FA6.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DC60FA6.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DC60FA6.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DD65F00.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DD65F00.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DD65F00.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E207D8C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E207D8C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E207D8C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E2B62D2.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E2B62D2.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E2B62D2.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E3C5465.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E3C5465.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E3C5465.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E9035FD.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E9035FD.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E9035FD.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF50928.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF50928.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF50928.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF91499.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF91499.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EF91499.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F291128.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F291128.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F291128.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAC2D89.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAC2D89.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAC2D89.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAF5786.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAF5786.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FAF5786.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FBF2F7F.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FBF2F7F.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0FBF2F7F.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1011431A.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1011431A.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1011431A.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10156D16.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10156D16.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10156D16.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\102402AA.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\102402AA.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\102402AA.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107658AB.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107658AB.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107658AB.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107A02A7.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107A02A7.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\107A02A7.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DC6E3B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DC6E3B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DC6E3B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DF1838.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DF1838.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10DF1838.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10F02C1B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10F02C1B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10F02C1B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\114103CC.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\114103CC.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\114103CC.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11442DC8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11442DC8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11442DC8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11473396.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11473396.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11473396.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11687BA1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11687BA1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11687BA1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\116B259D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\116B259D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\116B259D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11A6195C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11A6195C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11A6195C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11AB68EF.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11AB68EF.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11AB68EF.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120B2EED.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120B2EED.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120B2EED.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120F58E9.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120F58E9.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\120F58E9.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\123B22F1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\123B22F1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\123B22F1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\124D2EAB.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\124D2EAB.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\124D2EAB.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1271447E.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1271447E.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1271447E.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12746E7A.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12746E7A.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12746E7A.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12A55594.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12A55594.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12A55594.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D06909.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D06909.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D06909.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D65A0E.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D65A0E.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D65A0E.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D9040B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D9040B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\12D9040B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133B6F9F.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133B6F9F.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133B6F9F.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133E199B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133E199B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\133E199B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13A0052F.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13A0052F.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13A0052F.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13C33FD0.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13C33FD0.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\13C33FD0.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\140270C4.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\140270C4.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\140270C4.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14061AC0.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14061AC0.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14061AC0.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\142812FC.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\142812FC.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\142812FC.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\145C0DFD.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\145C0DFD.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\145C0DFD.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146B3051.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146B3051.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146B3051.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146E5A4D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146E5A4D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\146E5A4D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14841282.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14841282.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14841282.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\148D6627.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\148D6627.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\148D6627.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14B025F7.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14B025F7.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14B025F7.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D045E1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D045E1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D045E1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D21EF8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D21EF8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D21EF8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D36FDE.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D36FDE.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14D36FDE.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14F33952.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14F33952.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14F33952.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FD569C.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FD569C.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FD569C.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15355B72.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15355B72.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15355B72.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1539056E.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1539056E.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1539056E.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\155523E8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\155523E8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\155523E8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15580C7D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15580C7D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15580C7D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15662198.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15662198.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15662198.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15704F31.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15704F31.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15704F31.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1573792D.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1573792D.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1573792D.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159B7102.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159B7102.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159B7102.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159E1AFF.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159E1AFF.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\159E1AFF.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15BA7714.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15BA7714.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15BA7714.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16000693.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16000693.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16000693.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165E5991.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165E5991.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165E5991.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16627227.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16627227.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16627227.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16651C23.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16651C23.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16651C23.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\166854C8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\166854C8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\166854C8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CA31B4.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CA31B4.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CA31B4.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CD5BB1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CD5BB1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\16CD5BB1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\172F4745.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\172F4745.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\172F4745.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17337141.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17337141.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17337141.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17955CD5.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17955CD5.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17955CD5.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\179806D2.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\179806D2.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\179806D2.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FA7266.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FA7266.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FA7266.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FD1C62.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FD1C62.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\17FD1C62.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\180A0E95.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\180A0E95.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\180A0E95.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\185F07F6.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\185F07F6.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\185F07F6.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\187C7BFF.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\187C7BFF.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\187C7BFF.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\18C41D87.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\18C41D87.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\18C41D87.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192A3318.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192A3318.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192A3318.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192D5D14.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192D5D14.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\192D5D14.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197822C1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197822C1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197822C1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197B4CBE.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197B4CBE.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197B4CBE.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197F76BA.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197F76BA.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\197F76BA.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19850F9B.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19850F9B.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19850F9B.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198F48A8.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198F48A8.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\198F48A8.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19900AD1.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19900AD1.exe=>(Quarantine-2)
    Disinfection failed

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19900AD1.exe=>(Quarantine-2)
    Deleted

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\199272A5.exe=>(Quarantine-2)
    Infected with: Win32.Brontok.C@mm

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\199272A5.exe=>(Quarantin
    0
  21. houari67 Messages postés 58 Statut Membre
     
    voici le rapport de clean
    Script execute en mode normal
    Rapport clean par Malekal_morte - http://www.malekal.com
    Option 2, executee le 16/03/2007 a 22:05:58,57

    Microsoft Windows XP [version 5.1.2600]

    *** Suppression de fichiers sur C:

    *** Suppression des fichiers dans C:\WINDOWS\

    *** Suppression des fichiers dans C:\WINDOWS\system32

    tentative de suppression de "C:\Program Files\DivX\Google\Firefox\ffinstaller.exe"

    *** Suppression des clefs du registre effectuee..
    *** Fin du rapport !
    0
  • 1
  • 2