C'est au sujet de mon pc qui est super lent

[Résolu/Fermé]
Signaler
-
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
-
Salut les copains

je venais tout juste de parler de mon pc qui est lent et trés lent encore et a à voirle voyant veille sur l'unité centrale il est toujours en travail.S'il vous plait aider moi voici mon logfile of hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 16:50:34, on 21/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\DAP\DAP.EXE
C:\PROGRA~1\MYWEBS~1\bar\4.bin\mwsoemon.exe
C:\Program Files\Hotbar\bin\10.0.351.0\OEAddOn.exe
C:\Program Files\Hotbar\bin\10.0.351.0\HotbarSA.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\documents and settings\ibra\local settings\application data\bysliuo.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hotbar\bin\10.0.351.0\Srv.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\IBRA\Local Settings\Temp\wza961\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\4.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\4.bin\MWSSRCAS.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Hotbar /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B9499803B2A2303766A - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Hotbar\bin\10.0.351.0\HostIE.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\4.bin\MWSBAR.DLL
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Hotbar - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Hotbar\bin\10.0.351.0\HostIE.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\4.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\4.bin\mwsoemon.exe
O4 - HKLM\..\Run: [HotbarOE] C:\Program Files\Hotbar\bin\10.0.351.0\OEAddOn.exe
O4 - HKLM\..\Run: [HotbarSA] "C:\Program Files\Hotbar\bin\10.0.351.0\HotbarSA.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\4.bin\mwsoemon.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZC
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Allocam Multi Vision - {2D6B57BF-71FA-41A3-BDC5-3B5A25813D2E} - C:\PROGRA~1\ALLOCA~1\allocam.exe (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Allocam Multi Vision - {2D6B57BF-71FA-41A3-BDC5-3B5A25813D2E} - C:\PROGRA~1\ALLOCA~1\allocam.exe (file missing) (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe

27 réponses

Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Bonjour,

* Prière d'imprimer ces instructions, ou de les coller dans un fichier texte pour lecture en mode Sans Échec.

* Télécharge Brute Force Uninstaller (de Merijn) : http://www.merijn.org/files/bfu.zip
* Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU).
* Fais un clic droit ici : http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger toolbar.bfu (de Chercheur). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utlises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).
* Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8 ou F5 ; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.
* Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU).
o Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur : toolbar.bfu
o Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\toolbar.bfu
o Clique sur Execute et laisse-le faire son travail.
o Attendre que Complete script execution apparaîsse et clique sur OK.
o Clique Exit pour fermer le programme BFU.
* Redémarre normalement.

Edite aussi un nouveau rapport Hijackthis.

FillPCA
merci mon brave

j'ai réalisé votre methode pour régler mon prob. Semble t'il que l'amélioration n'est pas totale ce qui fait que je continue toujours par etre embêté par les Spywares. D'ailleurs je tente de télécharger l'antiSpyware mais cela ne prend pas. J'ignore sur quel site trouver le bon téléchargement. je suis à votre écoute et merci de m'aider.
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Bonjour,
Je n'ai pas prétendu que tout allait rentrer dans l'ordre ainsi. Ce n'est qu'une étape.
Edite comme demandé un rapport Hijackthis pour que je vois les améliorations.

FillPCA
Salut FillpCA
je t'envoie le rapport et merci


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:38, on 24/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Re,

1/ Télécharge Ccleaner Basic https://www.ccleaner.com/ccleaner/download

Ouvre Ccleaner, clique sur "lancer le nettoyage".

2/ Télécharge AVGantispyware : https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente.

Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas. Ensuite.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.

3/ Edite le rapport AVG antispyware et un nouveau rapport Hijackthis.

FillPCA
bonjour monsieur FillPCA

voici le rapport de AVG

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 16:04:27 25/09/2007

+ Résultat de l'analyse:



C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe -> Adware.Trymedia : Ignoré.
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004608.exe -> Backdoor.Small.lo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP38\A0009947.exe -> Dropper.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004613.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004614.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004607.exe -> Trojan.Copier : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004612.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004615.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport


voici celui de hija


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:16:39, on 25/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\setup_wm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\NORTON~1\navw32.exe
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
Messages postés
2244
Date d'inscription
samedi 24 mars 2007
Statut
Membre
Dernière intervention
22 janvier 2016
147
Bonjour,

tu peux fixer les lignes suivantes:
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
Ca accélérera un peu ton pc ^^
bonjour mon pote

je vais les fixer et te dire la suite merci de me repondre
bonjour Pi_Xi

jé fixé les quatre lignes mais le problème persiste encore et le voyant veille de l'unité centrale qui indique que l'UC bosse travaille tjs au lieu de scintiller
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Re,

1/ Ton fournisseur d'accès à Internet est bien au Bénin : https://whois.domaintools.com/81.91.225.1 ?

2/ * Fais un scan en ligne en cliquant ici : http://assiste.com.free.fr/...
* Choisis Panda.
* Tu dois réaliser le scan en utilisant Internet explorer. Une information apparait en haut, près de la barre d'état. Tu dois accepter et installer l'activeX proposé. La mise à jour de l'antivirus se lance.
* Réalise un scan complet du système.
* Sauvegarde le rapport en mode texte à l'issue du scan.

Edite le rapport Panda.

FillPCA
salut FillPCA

Voici le rapport du scan panda


Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017891.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027356.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020831.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020836.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027361.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017895.DLL
Adware/Trymedi... Adware
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP51\A0017724.exe
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027369.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020805.dll
C:\System Volume Informat...7CACD9}\RP81\A0027334.dll
C:\System Volume Informat...7CACD9}\RP70\A0020841.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017899.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027338.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020813.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017878.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020838.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027363.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017897.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020826.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027351.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017888.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017883.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027345.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020820.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...9}\RP70\A0020828.MANIFEST
C:\System Volume Informat...9}\RP81\A0027353.MANIFEST
C:\System Volume Informat...9}\RP52\A0017889.MANIFEST
C:\System Volume Informat...9}\RP56\A0018180.manifest
C:\System Volume Informat...9}\RP52\A0017870.manifest
C:\System Volume Informat...9}\RP81\A0023897.manifest
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020806.dll
C:\System Volume Informat...7CACD9}\RP81\A0030427.dll
C:\System Volume Informat...7CACD9}\RP52\A0017871.dll
C:\System Volume Informat...7CACD9}\RP70\A0020819.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017882.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027344.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017884.SCR
C:\System Volume Informat...7CACD9}\RP81\A0027333.scr
C:\System Volume Informat...7CACD9}\RP52\A0017869.scr
C:\System Volume Informat...7CACD9}\RP81\A0027346.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020821.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020804.scr
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027347.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020822.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017885.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020818.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017881.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027343.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020816.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017880.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027341.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027359.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020834.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017894.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020843.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020815.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027340.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020847.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020829.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027354.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027368.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027337.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020852.DLL
application/fu... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...9-499C-A11F-23C360D7C3F8}
HKEY_CURRENT_USER\Softwar...9-47A3-BD87-1E41684E07BB}
HKEY_CLASSES_ROOT\TypeLib...a-464a-9326-3f2801535a4d}
HKEY_LOCAL_MACHINE\softwa...B-42D5-8C85-4469CDA897AB}
hkey_classes_root\funwebproductsinstaller.start.1
hkey_classes_root\clsid\{...b-42d5-8c85-4469cda897ab}
HKEY_CURRENT_USER\Softwar...0-46FC-94B8-81276E4E27DF}
HKEY_CLASSES_ROOT\TypeLib...e-479e-b922-fbbd096e792c}
hkey_classes_root\clsid\{...9-499c-a11f-23c360d7c3f8}
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020845.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020825.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027350.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027349.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020824.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017887.EXE
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP79\A0022580.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020837.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027362.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017896.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027377.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027378.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020853.DLL
application/my... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...E-44cf-8957-5838F569A31D}
hkey_classes_root\clsid\{...e-44cf-8957-5838f569a31d}
HKEY_CLASSES_ROOT\TypeLib...B-4F24-AE82-7E2CE94BB6A9}
HKEY_LOCAL_MACHINE\softwa...3-4961-B6BB-170DE4475CCA}
hkey_classes_root\clsid\{...3-4961-b6bb-170de4475cca}
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027335.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020849.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027365.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020842.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027348.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020823.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017886.DLL
Application/Ps... Tracking Application
Latent
Show + Info
C:\Documents and Settings...A\Bureau\clean\pskill.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020846.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020827.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027352.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020839.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027364.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017898.EXE
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020835.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020848.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027360.DLL
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0024066.DLL
Application/Pr... Tracking Application
Latent
Show + Info
C:\Documents and Settings...ix\SDFix\apps\Process.exe
C:\RECYCLER\S-1-5-21-1512...e[SDFix\apps\Process.exe]
C:\Program Files\Navilog1\Process.exe
C:\System Volume Informat...7CACD9}\RP81\A0031517.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020851.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020840.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027367.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027336.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020850.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027366.EXE
Cookie/Doublec... Tracking Cookie
Latent
Show + Info
C:\Documents and Settings...es.txt[.doubleclick.net/]
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017879.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027339.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020814.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017890.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027355.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020830.DLL
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP80\A0022764.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020844.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020817.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027342.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027357.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020832.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017892.DLL
Cookie/Bluestr... Tracking Cookie
Latent
Show + Info
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Bonjour,
Je ne comprends pas ton rapport Panda. Il devrait se présenter ainsi : http://www.infos-du-net.com/forum/104468-11-panda-antivirus-ligne-rapport-hijackthis

Tu n'as pas répondu à ma question concernant ton fournisseur d'accès.

FillPCA
salut mon brave

voici le rapport du scan panda

;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
salut mon pote

je viens de t'envoyé un autre rapport que je vient de sauvegarder

merci


;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Re,

[*]Télécharge BTFix de Bibi26 : http://cluster1.easy-hebergement.net/
[*]Dézippe l'archive sur ton Bureau.
[*]Ouvre le dossier BTFix.
[*]Double clique surBTFix.exe.
[*]Clique sur Rechercher.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.

FillPCA
merci pour ton aide
voici le rapport

BTFix 1.046 (par bibi26) - 26/09/2007 14:26:53 - Analyse

---> Fichiers/Dossiers trouvés

- C:\Documents and Settings\IBRA\Application Data\ShoppingReport
- C:\Documents and Settings\IBRA\Application Data\Hotbar_Icons
- C:\Documents and Settings\IBRA\Application Data\WeatherDPA
- C:\Documents and Settings\All Users\Application Data\HotbarSA

---> Analyse terminée
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
Re,

1/ Imprime ceci.
2/ Redémarre en mode sans échec. Au démarrage du PC, tapote sur F8 (ou F5). Ton PC démarre, mais sans accès à Internet.
3/ [*]Ouvre BTFix.
[*]Clique sur Nettoyer.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.

4/ Tu n'as pas répondu à ma question : ton fournisseur d'accès à Internet correspond bien à cela ?
https://whois.domaintools.com/81.91.225.1

5/ As-tu toujours des soucis ?

FillPCA
je ne sais comment te remercier mais tu es vraiment un brave type et j'aimerai être danse comme toi car j'adore l'informatique. Moi même j'ai fait un brevet de technicien supérieur en Informatique de gestion et je compte continuer pour avoir une Licence Professionnel. Quel option tu me conseilles?

Bref j''ai déjà pu nettoyer les lignes en mode sans échec. seulement j'ai fait cela avant que tu ne m'écrive car en voulant supprimer en mode normal le système m'a dit de le faire en mode sans échec.

C'est vrai mon fournisseur d'accès se trouve au Bénin comme moi même d'ailleurs je suis au bénin. Nous somme connecté sur un site du Gouvernement car nous somme au ministère des Mines cé un truc de l'état.

Tu es vraiment trés gentil avec moi.
Messages postés
2241
Date d'inscription
samedi 21 avril 2007
Statut
Contributeur sécurité
Dernière intervention
27 octobre 2012
122
OK.

Ca semble propre. As-tu toujours des soucis, sinon, on passe à la dernière étape.

FillPCA
Pratiquement les choses sont revenues a la normale la rapidité revient et je continue de te suivre et de te remercier