bidoubou
Messages postés9Date d'inscriptionmercredi 23 mai 2007StatutMembreDernière intervention20 septembre 2007
-
23 mai 2007 à 15:05
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 2012
-
29 mai 2007 à 00:07
bonjour tout le monde , j'ai un problème , depuis quelques jours j'ai une apparition de popup donc sur les conseils d'un copain j'ai installé mozilla (censé être plus performant que IE et bloquer les popup) seulement voila depuis c'est encore pire car en plus des popup qui ne veulent toujours pas partir , dès que je me connecte à mozilla j'ai des fenêtres avec marqué "http 404 non trouvé microsoft internet explorer" donc bon c'est légèrement relou alors svp si quelqu'un peut m'aider , je poste çi dessous ma liste hijack
Logfile of HijackThis v1.99.1
Scan saved at 14:54:07, on 23/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 201279 23 mai 2007 à 17:08
salut
oui pas mal de trucs ! pour commencer rends toi sur ce lien et suit les etapes afin de faire du ménage :
virus methode preliminaire de desinfection version fr
ensuite posts tous rapports générés ainsi que un nouveau log hijack mais avant de lancer le scan désinstalle puis reinstalle hijack en le renomant par abcde.exe de façon a qu'il se trouve dans c:progamme car la il est mal placé
bizz
bidoubou
Messages postés9Date d'inscriptionmercredi 23 mai 2007StatutMembreDernière intervention20 septembre 2007 24 mai 2007 à 13:44
merci à toi d'avoir repondu à mon message . donc voiçi les rapports avg antispyware , bitdefender et hijack après réinstallation
AVG Anti-Spyware - Rapport d'analyse---------------------------------------------------------
Logfile of HijackThis v1.99.1 Scan saved at 13:28:04, on 24/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
bidoubou
Messages postés9Date d'inscriptionmercredi 23 mai 2007StatutMembreDernière intervention20 septembre 2007
>
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 2012 25 mai 2007 à 09:55
c'est gentil d'avoir repondu , voila le rapport smitfraudfix
SmitFraudFix v2.186
Rapport fait à 9:48:53,70, 25/05/2007
Executé à partir de C:\Documents and Settings\Marion\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
merci pour ton aide , j'espère ne plus avoir à te déranger trop longtemps avec tout ça ^^. bisou
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 201279
>
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 2012 25 mai 2007 à 15:57
salut
il me semble que ton rapport n'est pas entier ^^
bizz
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 201279
>
raleuboleu
Messages postés5022Date d'inscriptionmercredi 13 décembre 2006StatutMembreDernière intervention14 mars 2012 26 mai 2007 à 00:53
bonsoir
Télécharge VirtumundoBegone sur le bureau:
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
Double clique ensuite sur VirtumundoBeGone.exe et suis les instructions.
Une fois terminé, redémarre et poste le rapport VBG.TXT créé sur le bureau dans ta prochaine réponse avec un nouveau rapport HijackThis.
Ne t'inquiète pas si tu vois un message Ecran bleu "Erreur fatale", c'est normal et attendu
puis donne tous rapports y compris 1 nouvel hijack , si possible désinstalle le et réinstallle le en le renomant ! voir ce lien :
24 mai 2007 à 13:44
AVG Anti-Spyware - Rapport d'analyse---------------------------------------------------------
+ Créé à: 13:18:11 24/05/2007
+ Résultat de l'analyse:
C:\Program Files\HbTools\HBTV\HBTV.exe -> Adware.180Solutions : Ignoré.
C:\Program Files\HbTools\HBTV\uninstaller.exe -> Adware.180Solutions : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078990.exe -> Adware.180Solutions : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078991.exe -> Adware.180Solutions : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092423.dll -> Adware.AdvertMen : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092424.dll -> Adware.AdvertMen : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092412.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092416.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092417.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092422.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092427.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092428.dll -> Adware.BHO : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092430.dll -> Adware.BHO : Ignoré.
C:\Program Files\Fichiers communs\WinAntiVirus Pro 2006\WapCHK.dll -> Adware.Companion : Ignoré.
C:\Program Files\HbTools\Bin\4.8.4.0\HbtHostOE.dll -> Adware.Hotbar : Ignoré.
C:\Program Files\HbTools\Bin\4.8.4.0\SPY_WINSOS_DETECTED.TXT -> Adware.HotBar : Ignoré.
C:\Program Files\HbTools\HBTV\__delete_on_reboot__h_b_t_v_h_e_l_p_e_r_._d_l_l_ -> Adware.HotBar : Ignoré.
C:\Program Files\Hotbar -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078993.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081221.exe -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081223.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081224.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081225.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081226.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081227.dll -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081228.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081229.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081230.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081231.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081232.dll -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081233.dll -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081234.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081236.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081237.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081238.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081239.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081240.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081241.exe -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081242.dll -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081243.dll -> Adware.Hotbar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0081244.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082249.exe -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0092377.dll -> Adware.HotBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092444.dll -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\AppID\WeatherOnTray.EXE -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand.1 -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CLSID -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CurVer -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho.1 -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CLSID -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CurVer -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtTools.HbMain -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtTools.HbMain.1 -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CLSID -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CurVer -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\Install -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\MachineInfo -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\Mail -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\PI -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\PI\3.2 -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\Updates -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HbTools\Upgrade -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOI -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOI\Mail -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOI\Updates -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOI\options -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOL -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOL\Mail -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\HostOL\Updates -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\Install -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\HbTools\Install\CmpMap -> Adware.HotBar : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ISTbarISTbar -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Common -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Common\Time -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Common\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\EUI -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\HtmlPPP -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\ImagesHistory -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Install -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\MachineInfo -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\MultiUrl -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\PI -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\PI\3.2 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg955 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg956 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg957 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg963 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg964 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg965 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg969 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg970 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg974 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg975 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg976 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg978 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Sample\Hist\sg984 -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\UserInfo -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\Weather -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\dynamic -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\links -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\mail -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\options -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HbTools\updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HostOI -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HostOI\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HostOI\links -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\HostOI\setting -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Install -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Install\Icons -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Install\Links -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostIE -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostIE\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostOI -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostOI\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostOL -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\Time\HostOL\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol\Mail -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol\Updates -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol\links -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol\setting -> Adware.HotBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\HbTools\hostol\soho -> Adware.HotBar : Ignoré.
C:\Program Files\Internet Optimizer -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper\cf1 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf1 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf2 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf3 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf4 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf5 -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rotue -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\AMeOpt -> Adware.InternetOptimizer : Ignoré.
HKLM\SOFTWARE\Policies\Avenue Media -> Adware.InternetOptimizer : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Adware.InternetOptimizer : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\Policies\Avenue Media -> Adware.InternetOptimizer : Ignoré.
C:\Program Files\ISTbar -> Adware.ISTBar : Ignoré.
C:\Program Files\ISTbar\navmain.bmp -> Adware.ISTBar : Ignoré.
C:\Program Files\ISTbar\search.bmp -> Adware.ISTBar : Ignoré.
C:\Program Files\ISTbar\version_xml.php -> Adware.ISTBar : Ignoré.
C:\Program Files\ISTbar\xml_istbar.php -> Adware.ISTBar : Ignoré.
C:\Program Files\ISTsvc -> Adware.ISTBar : Ignoré.
HKLM\SOFTWARE\ISTsvc -> Adware.ISTBar : Ignoré.
HKLM\SOFTWARE\ISTsvc\history -> Adware.ISTBar : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISTbarISTbar -> Adware.ISTBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\IST -> Adware.ISTBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\ISTbar -> Adware.ISTBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\ISTbar\ISTbar -> Adware.ISTBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\ISTbar\ISTbar\Historyfiles -> Adware.ISTBar : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\ISTbar\ISTbar\Historys1 -> Adware.ISTBar : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Adware.MoneyTree : Ignoré.
C:\Program Files\Outerinfo\OiUninstaller.exe -> Adware.PurityScan : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086475.exe -> Adware.PurityScan : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP365\A0086482.dll -> Adware.PurityScan : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0088973.dll -> Adware.PurityScan : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0088974.exe -> Adware.PurityScan : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092405.dll -> Adware.PurityScan : Ignoré.
C:\WINDOWS\ѕystem\rеgsvr32.exe -> Adware.PurityScan : Ignoré.
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086474.exe -> Adware.Softomate : Ignoré.
C:\WINDOWS\b116.exe -> Adware.Softomate : Ignoré.
C:\WINDOWS\b122.exe -> Adware.Softomate : Ignoré.
C:\WINDOWS\b136.exe -> Adware.Softomate : Ignoré.
C:\Program Files\Starware -> Adware.Starware : Ignoré.
C:\Program Files\Starware\bin -> Adware.Starware : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092420.dll -> Adware.Virtumonde : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092449.dll -> Adware.Virtumonde : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083250.dll -> Adware.WebHancer : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083251.dll -> Adware.WebHancer : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083252.exe -> Adware.WebHancer : Ignoré.
C:\WINDOWS\b129.exe -> Adware.WebHancer : Ignoré.
HKLM\SOFTWARE\webhancer -> Adware.WebHancer : Ignoré.
HKLM\SOFTWARE\webhancer\CC -> Adware.WebHancer : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Enum -> Adware.WinAntiVirus : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Enum -> Adware.WinAntiVirus : Ignoré.
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Ignoré.
HKU\S-1-5-21-117609710-1220945662-839522115-1005\Software\WinAntiVirus Pro 2006\Settings -> Adware.WinAntiVirus : Ignoré.
C:\Documents and Settings\Martine\Local Settings\Temporary Internet Files\Content.IE5\YSRB6QXE\setar-101[1].0000 -> Adware.Yazzle : Ignoré.
HKLM\SOFTWARE\Classes\YSBactivex.Installer -> Adware.YourSiteBar : Ignoré.
HKLM\SOFTWARE\Classes\YSBactivex.Installer\CLSID -> Adware.YourSiteBar : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP365\A0086490.exe -> Downloader.Agent.bls : Ignoré.
C:\Documents and Settings\Martine\Local Settings\Temporary Internet Files\Content.IE5\KWAC1PKP\installdrivecleanerstart_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.m : Ignoré.
C:\Documents and Settings\Marion\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\Cache\BC62D28Cd01 -> Not-A-Virus.Downloader.Win32.WinFixer.q : Ignoré.
C:\Documents and Settings\Marion\Local Settings\Temporary Internet Files\Content.IE5\05AZWHMZ\SystemDoctor2006FreeInstall_fr[1].cab/USDR6V_0001_N19M2604NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.q : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.10:C:\Documents and Settings\Martine\Application Data\Mozilla\Firefox\Profiles\a0aija8z.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@stats.adbrite[2].txt -> TrackingCookie.Adbrite : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@rotator.adjuggler[2].txt -> TrackingCookie.Adjuggler : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@adrevolver[1].txt -> TrackingCookie.Adrevolver : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@adtech[2].txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@advertising[1].txt -> TrackingCookie.Advertising : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@advertising[2].txt -> TrackingCookie.Advertising : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@atdmt[1].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@atdmt[3].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bfast[2].txt -> TrackingCookie.Bfast : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@doubleclick[2].txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.10:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@estat[1].txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@fastclick[1].txt -> TrackingCookie.Fastclick : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ehg-hollywood.hitbox[1].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ehg-hollywoodmedia.hitbox[1].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ehg-pcsecurityshield.hitbox[1].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ehg-telecomitalia.hitbox[2].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@hitbox[1].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@searchportal.information[1].txt -> TrackingCookie.Information : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@search.live[1].txt -> TrackingCookie.Live : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@mediaplex[2].txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@overture[1].txt -> TrackingCookie.Overture : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@questionmarket[2].txt -> TrackingCookie.Questionmarket : Ignoré.
:mozilla.17:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.21:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.22:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.23:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.24:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.25:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.26:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.27:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@revenue[2].txt -> TrackingCookie.Revenue : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@serving-sys[3].txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.29:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.30:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.31:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@h.starware[1].txt -> TrackingCookie.Starware : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@try.starware[2].txt -> TrackingCookie.Starware : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.28:C:\Documents and Settings\Marion\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Marion\Cookies\marion@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@bnpparibas.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@weborama[3].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.
C:\Documents and Settings\Martine\Cookies\martine@zedo[1].txt -> TrackingCookie.Zedo : Ignoré.
C:\Program Files\Ipwindows\UnInstall.exe -> Trojan.Rond : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087941.exe -> Trojan.Rond : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086478.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0088977.exe -> Trojan.Small : Ignoré.
C:\WINDOWS\system32\wapicc.exe -> Trojan.Small : Ignoré.
Fin du rapport
bitdefender
Scanned File
Status
C:\Documents and Settings\Marion\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\Cache\9568A9C6d01
Infected with: Trojan.Downloader.Winfixer.O
C:\Documents and Settings\Marion\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\Cache\9568A9C6d01
Disinfection failed
C:\Documents and Settings\Marion\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9z4r4zr.default\Cache\9568A9C6d01
Deleted
C:\Documents and Settings\Marion\Local Settings\Temp\ndqxflu0.exe
Infected with: Trojan.Downloader.Winfixer.O
C:\Documents and Settings\Marion\Local Settings\Temp\ndqxflu0.exe
Disinfection failed
C:\Documents and Settings\Marion\Local Settings\Temp\ndqxflu0.exe
Deleted
C:\Documents and Settings\Martine\Local Settings\Temporary Internet Files\Content.IE5\J1CK2TCK\rwpemol[1].ani
Infected with: Exploit.Win32.MS05-002.Gen
C:\Documents and Settings\Martine\Local Settings\Temporary Internet Files\Content.IE5\J1CK2TCK\rwpemol[1].ani
Disinfection failed
C:\Documents and Settings\Martine\Local Settings\Temporary Internet Files\Content.IE5\J1CK2TCK\rwpemol[1].ani
Deleted
C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Outerinfo\Uninstall.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Purityad.O
C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Outerinfo\Uninstall.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Outerinfo\Uninstall.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Deleted
C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Outerinfo\Uninstall.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)
Update failed
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
Infected with: Trojan.Downloader.PurityScan.CR
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
Disinfection failed
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
Deleted
C:\Program Files\HbTools\HBTV\uninstaller.exe=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\Program Files\HbTools\HBTV\uninstaller.exe=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\Program Files\HbTools\HBTV\uninstaller.exe=>(NSIS o)=>zlib_nsis0001
Deleted
C:\Program Files\HbTools\HBTV\uninstaller.exe=>(NSIS o)
Update failed
C:\Program Files\Internet Optimizer\optimize.exe
Infected with: Trojan.Downloader.Dyfuca.EY
C:\Program Files\Internet Optimizer\optimize.exe
Disinfection failed
C:\Program Files\Internet Optimizer\optimize.exe
Deleted
C:\Program Files\Ipwindows\ipwins.dll
Infected with: Trojan.Matcash.DLL
C:\Program Files\Ipwindows\ipwins.dll
Disinfection failed
C:\Program Files\Ipwindows\ipwins.dll
Deleted
C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Purityad.O
C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Deleted
C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)
Update failed
C:\Program Files\RACLE~1\regsvr32.exe
Infected with: Trojan.Downloader.PurityScan.EK
C:\Program Files\RACLE~1\regsvr32.exe
Disinfection failed
C:\Program Files\RACLE~1\regsvr32.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP336\A0078572.exe
Infected with: Trojan.Downloader.Dyfuca.EZ
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP336\A0078572.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP336\A0078572.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078991.exe=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078991.exe=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078991.exe=>(NSIS o)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078991.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP351\A0078994.exe=>(NSIS o)=>lzma_nsis0017=>(NSIS o)=>zlib_nsis0006=>(NSIS g)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Infected with: Trojan.Hotbar.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0006=>(NSIS g)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0082219.exe=>(NSIS o)=>lzma_nsis0005=>(NSIS o)=>zlib_nsis0006=>(NSIS g)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083249.exe
Infected with: Trojan.Dloader.AFR
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083249.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP359\A0083249.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP362\A0085350.dll
Infected with: Trojan.Virtumod.JQ
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP362\A0085350.dll
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP362\A0085350.dll
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP363\A0086402.exe
Infected with: Trojan.Downloader.JIPM
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP363\A0086402.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP363\A0086402.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086477.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Infected with: Trojan.Purityad.O
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086477.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086477.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)=>zlib_nsis0001
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP364\A0086477.lnk=>C:\Program Files\Outerinfo\OiUninstaller.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087939.dll
Infected with: Trojan.Matcash.DLL
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087939.dll
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087939.dll
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087940.exe
Infected with: Trojan.Rond.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087940.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP368\A0087940.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092402.exe
Infected with: Trojan.Agent.AACA
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092402.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092402.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092403.exe
Infected with: Trojan.Rond.A
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092403.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092403.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092404.dll
Infected with: Trojan.BHO.AR
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092404.dll
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092404.dll
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092408.exe
Infected with: Trojan.Downloader.PurityScan.CR
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092408.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092408.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092409.exe
Infected with: Trojan.Downloader.Dyfuca.EY
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092409.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092409.exe
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092410.dll
Infected with: Trojan.Matcash.DLL
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092410.dll
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092410.dll
Deleted
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092411.exe
Infected with: Trojan.Downloader.PurityScan.EK
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092411.exe
Disinfection failed
C:\System Volume Information\_restore{196057A8-D547-4F15-B66A-24776F3458F3}\RP369\A0092411.exe
Deleted
C:\WINDOWS\b116.exe=>(NSIS o)=>lzma_solid_nsis0002
Infected with: Trojan.Downloader.Purityscan.EH
C:\WINDOWS\b116.exe=>(NSIS o)=>lzma_solid_nsis0002
Disinfection failed
C:\WINDOWS\b116.exe=>(NSIS o)=>lzma_solid_nsis0002
Deleted
C:\WINDOWS\b116.exe=>(NSIS o)
Update failed
C:\WINDOWS\b129.exe=>(NSIS o)=>lzma_solid_nsis0006
Infected with: Trojan.Dloader.AFR
C:\WINDOWS\b129.exe=>(NSIS o)=>lzma_solid_nsis0006
Disinfection failed
C:\WINDOWS\b129.exe=>(NSIS o)=>lzma_solid_nsis0006
Deleted
C:\WINDOWS\b129.exe=>(NSIS o)
Update failed
C:\WINDOWS\b136.exe=>(NSIS o)=>lzma_solid_nsis0002
Infected with: Trojan.Dropper.RGG
C:\WINDOWS\b136.exe=>(NSIS o)=>lzma_solid_nsis0002
Disinfection failed
C:\WINDOWS\b136.exe=>(NSIS o)=>lzma_solid_nsis0002
Deleted
C:\WINDOWS\b136.exe=>(NSIS o)
Update failed
C:\WINDOWS\Downloaded Program Files\ysbactivex.dll
Infected with: Generic.Istbar.613D71C1
C:\WINDOWS\Downloaded Program Files\ysbactivex.dll
Disinfection failed
C:\WINDOWS\Downloaded Program Files\ysbactivex.dll
Deleted
C:\WINDOWS\system32\bboxqihn.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\bboxqihn.dll
Disinfection failed
C:\WINDOWS\system32\bboxqihn.dll
Deleted
C:\WINDOWS\system32\bcamvrgi.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\bcamvrgi.dll
Deleted
C:\WINDOWS\system32\ckuebujj.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\ckuebujj.dll
Deleted
C:\WINDOWS\system32\ddccb.dll
Infected with: MemScan:Trojan.Virtumod.JQ
C:\WINDOWS\system32\ddccb.dll
Disinfection failed
C:\WINDOWS\system32\ddccb.dll
Deleted
C:\WINDOWS\system32\dhewtbkx.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\dhewtbkx.dll
Disinfection failed
C:\WINDOWS\system32\dhewtbkx.dll
Deleted
C:\WINDOWS\system32\ihokijac.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\ihokijac.dll
Disinfection failed
C:\WINDOWS\system32\ihokijac.dll
Deleted
C:\WINDOWS\system32\jucfnctp.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\jucfnctp.dll
Deleted
C:\WINDOWS\system32\lkbcutbk.dll
Infected with: Trojan.Vundo.DLP
C:\WINDOWS\system32\lkbcutbk.dll
Disinfection failed
C:\WINDOWS\system32\lkbcutbk.dll
Deleted
C:\WINDOWS\system32\lvsxummo.dll
Infected with: MemScan:Trojan.BHO.BG
C:\WINDOWS\system32\lvsxummo.dll
Disinfection failed
C:\WINDOWS\system32\lvsxummo.dll
Delete failed
C:\WINDOWS\system32\mljkhgf.dll
Infected with: MemScan:Trojan.Vundo.DLQ
C:\WINDOWS\system32\mljkhgf.dll
Disinfection failed
C:\WINDOWS\system32\mljkhgf.dll
Deleted
C:\WINDOWS\system32\mycuatfe.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\mycuatfe.dll
Deleted
C:\WINDOWS\system32\onvykupr.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\onvykupr.dll
Disinfection failed
C:\WINDOWS\system32\onvykupr.dll
Deleted
C:\WINDOWS\system32\opnmnoo.dll
Infected with: MemScan:Trojan.Vundo.DLQ
C:\WINDOWS\system32\opnmnoo.dll
Disinfection failed
C:\WINDOWS\system32\opnmnoo.dll
Delete failed
C:\WINDOWS\system32\pmkjj.dll
Infected with: MemScan:Trojan.Virtumod.JQ
C:\WINDOWS\system32\pmkjj.dll
Disinfection failed
C:\WINDOWS\system32\pmkjj.dll
Delete failed
C:\WINDOWS\system32\pushow75.dll
Infected with: Trojan.Clicker.GG
C:\WINDOWS\system32\pushow75.dll
Disinfection failed
C:\WINDOWS\system32\pushow75.dll
Deleted
C:\WINDOWS\system32\pushow96.dll
Infected with: Trojan.Clicker.GG
C:\WINDOWS\system32\pushow96.dll
Disinfection failed
C:\WINDOWS\system32\pushow96.dll
Deleted
C:\WINDOWS\system32\qqqnbidw.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\qqqnbidw.dll
Deleted
C:\WINDOWS\system32\qvtmhbdx.dll
Infected with: Trojan.Spy.VBStat.B
C:\WINDOWS\system32\qvtmhbdx.dll
Deleted
C:\WINDOWS\system32\rftcajvp.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\rftcajvp.dll
Disinfection failed
C:\WINDOWS\system32\rftcajvp.dll
Deleted
C:\WINDOWS\system32\ssfobhwu.dll
Infected with: Trojan.Vundo.AY
C:\WINDOWS\system32\ssfobhwu.dll
Disinfection failed
C:\WINDOWS\system32\ssfobhwu.dll
Delete failed
C:\WINDOWS\system32\umdufinn.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\umdufinn.dll
Disinfection failed
C:\WINDOWS\system32\umdufinn.dll
Deleted
C:\WINDOWS\system32\vtuts.dll
Infected with: MemScan:Trojan.Virtumod.JQ
C:\WINDOWS\system32\vtuts.dll
Disinfection failed
C:\WINDOWS\system32\vtuts.dll
Deleted
C:\WINDOWS\system32\yynvesbl.dll
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\yynvesbl.dll
Disinfection failed
C:\WINDOWS\system32\yynvesbl.dll
Deleted
C:\WINDOWS\system32\__delete_on_reboot__a_k_o_x_v_g_l_f_._d_l_l_
Infected with: Trojan.BHO.AR
C:\WINDOWS\system32\__delete_on_reboot__a_k_o_x_v_g_l_f_._d_l_l_
Disinfection failed
C:\WINDOWS\system32\__delete_on_reboot__a_k_o_x_v_g_l_f_._d_l_l_
Deleted
Logfile of HijackThis v1.99.1
Scan saved at 13:28:04, on 24/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Thomson\Auto Updater\Auto Updater.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\programme\abcde.exe.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: (no name) - {065A1D74-B5E9-48BE-AC50-9BE697363BAd} - C:\WINDOWS\system32\akoxvglf.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {102BA10A-F604-4275-935B-F4A8030C4258} - C:\WINDOWS\system32\akoxvglf.dll (file missing)
O2 - BHO: (no name) - {338DA9F8-3260-41FC-A66B-19B525185D1A} - C:\WINDOWS\system32\opnmnoo.dll (file missing)
O2 - BHO: TVEngine Helper /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B94E2DF78587D412039CF - {4B18DD50-C996-44fc-AC52-0FECFF82ED58} - c:\program files\hbtools\hbtv\hbtvhelper.dll (file missing)
O2 - BHO: (no name) - {55DB983C-BDBF-426f-86F0-187B02DDA39B} - C:\WINDOWS\system32\lvsxummo.dll
O2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.4.0\HbtHostIE.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {AFC20656-7718-4C13-A126-13F56A60CCCE} - C:\WINDOWS\system32\pmkjj.dll
O2 - BHO: (no name) - {B55A481C-A4A3-CF02-D108-8AADD3B072EC} - C:\WINDOWS\system32\hiwjqzz.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.4.0\HbtHostIE.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [LyraUpdates] "C:\Program Files\Thomson\Auto Updater\Auto Updater.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [setup] rundll32.exe "C:\WINDOWS\system32\ssfobhwu.dll",realset
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [IpWins] C:\Program Files\Ipwindows\ipwins.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} (Installer Class) - http://www.ysbweb.com/ist/softwares/v4.0/ysb_regular.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://bidoubou.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: ,
O20 - Winlogon Notify: opnmnoo - opnmnoo.dll (file missing)
O20 - Winlogon Notify: pmkjj - C:\WINDOWS\system32\pmkjj.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
voila j'espère que tu vas t'en sortir bon courage et merci d'avance pour ta réponse bisou
25 mai 2007 à 00:38
ya pas mal de "merdes"
1/ce lien (merci a S!RI pour ce programme). http://siri.urz.free.fr/Fix/SmitfraudFix.php
et télécharge SmitfraudFix.exe.
Regarde le tuto
Exécute le en choisissant l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.
2/ telecharge spybot ici:
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html
fais le menage avec ,
bizz
25 mai 2007 à 09:55
SmitFraudFix v2.186
Rapport fait à 9:48:53,70, 25/05/2007
Executé à partir de C:\Documents and Settings\Marion\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» Process
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Program Files\Thomson\Auto Updater\Auto Updater.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\cmd.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
merci pour ton aide , j'espère ne plus avoir à te déranger trop longtemps avec tout ça ^^. bisou
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
25 mai 2007 à 15:57
il me semble que ton rapport n'est pas entier ^^
bizz
26 mai 2007 à 00:53
Télécharge VirtumundoBegone sur le bureau:
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
Double clique ensuite sur VirtumundoBeGone.exe et suis les instructions.
Une fois terminé, redémarre et poste le rapport VBG.TXT créé sur le bureau dans ta prochaine réponse avec un nouveau rapport HijackThis.
Ne t'inquiète pas si tu vois un message Ecran bleu "Erreur fatale", c'est normal et attendu
puis donne tous rapports y compris 1 nouvel hijack , si possible désinstalle le et réinstallle le en le renomant ! voir ce lien :
https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html
bizz