Verificatiion après desinfection ... HELP !!!
Matthewz
Messages postés
15
Statut
Membre
-
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
suite à une desinfection complete vi la methode preconisée par ce site voici mes trois rapports obtenus :
Rapport AVG-Antispyware
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 00:55:07 05/10/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP476\A0068376.exe -> Adware.Casino : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.6:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.7:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.124:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.167:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.51:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.52:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.54:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.6:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.7:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.100:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.101:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.20:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.21:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.22:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.98:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.99:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.78:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@bluestreak[1].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@casalemedia[1].txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
:mozilla.15:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.17:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.38:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.51:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.206:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.207:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.208:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.209:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.210:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@as1.falkag[1].txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.258:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.65:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Hitslink : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Hotlog : Aucune action entreprise.
:mozilla.76:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.77:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.13:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.79:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Aucune action entreprise.
:mozilla.64:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.267:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Paypal : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.139:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.140:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@real[1].txt -> TrackingCookie.Real : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.163:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.164:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.165:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.166:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.87:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.88:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.89:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.90:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.91:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.92:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.281:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.282:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.283:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.73:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.74:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.75:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.16:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.188:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.189:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.190:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.22:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@c5.zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@zedo[2].txt -> TrackingCookie.Zedo : Aucune action entreprise.
Fin du rapport
Rapport Bit-Defender
BitDefender Online Scanner
Scan report generated at: Fri, Oct 05, 2007 - 02:25:55
Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;
Statistics
Time
01:27:17
Files
385733
Folders
11648
Boot Sectors
4
Archives
14708
Packed Files
14258
Results
Identified Viruses
1
Infected Files
1
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
1
Engines Info
Virus Definitions
825166
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
14
Archive plugins
38
Unpack plugins
7
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Infected with: Trojan.Cain.20
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Disinfection failed
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Deleted
Rapport Hijack this (mode normal)
Logfile of HijackThis v1.99.1
Scan saved at 07:39:14, on 05/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Extrac Exec\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: CmjBrowserHelperObject Object - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Send to Mindjet MindManager - {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
Voilà j'aimerai votre avis sur le resultat de la desinfection et eventuellement d'autres actions à entreprendre.
D'avance Merci.
suite à une desinfection complete vi la methode preconisée par ce site voici mes trois rapports obtenus :
Rapport AVG-Antispyware
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 00:55:07 05/10/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP476\A0068376.exe -> Adware.Casino : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.6:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.7:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.124:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.167:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.51:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.52:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.54:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.6:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.7:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.100:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.101:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.20:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.21:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.22:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.98:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.99:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.78:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@bluestreak[1].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@casalemedia[1].txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
:mozilla.15:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.17:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.38:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.51:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.206:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.207:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.208:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.209:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.210:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@as1.falkag[1].txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.258:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.65:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Hitslink : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Hotlog : Aucune action entreprise.
:mozilla.76:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.77:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.13:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.79:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Aucune action entreprise.
:mozilla.64:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.267:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Paypal : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.139:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.140:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@real[1].txt -> TrackingCookie.Real : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.163:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.164:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.165:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.166:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.87:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.88:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.89:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.90:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.91:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.92:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.281:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.282:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.283:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.73:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.74:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.75:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.16:C:\Documents and Settings\Matthieu BERNARD\Contacts\matthewz26@hotmail.com\Ignored\b97d7027-589a-49c6-9468-16c223655185.WindowsLiveContact -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.188:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.189:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.190:C:\Documents and Settings\Mélanie\Application Data\Mozilla\Firefox\Profiles\renni05y.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.22:C:\Documents and Settings\Matthieu BERNARD\Application Data\Mozilla\Firefox\Profiles\f7cwqzl4.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Matthieu BERNARD\Cookies\matthieu_bernard@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@c5.zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\Mélanie\Cookies\mélanie@zedo[2].txt -> TrackingCookie.Zedo : Aucune action entreprise.
Fin du rapport
Rapport Bit-Defender
BitDefender Online Scanner
Scan report generated at: Fri, Oct 05, 2007 - 02:25:55
Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;
Statistics
Time
01:27:17
Files
385733
Folders
11648
Boot Sectors
4
Archives
14708
Packed Files
14258
Results
Identified Viruses
1
Infected Files
1
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
1
Engines Info
Virus Definitions
825166
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
14
Archive plugins
38
Unpack plugins
7
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Infected with: Trojan.Cain.20
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Disinfection failed
C:\Documents and Settings\Mélanie\Local Settings\Application Data\Mozilla\Firefox\Profiles\renni05y.default\Cache\1567D497d01
Deleted
Rapport Hijack this (mode normal)
Logfile of HijackThis v1.99.1
Scan saved at 07:39:14, on 05/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Extrac Exec\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: CmjBrowserHelperObject Object - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Send to Mindjet MindManager - {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
Voilà j'aimerai votre avis sur le resultat de la desinfection et eventuellement d'autres actions à entreprendre.
D'avance Merci.
A voir également:
- Verificatiion après desinfection ... HELP !!!
- Désinfection du linge - Guide
- Demande de désinfection SVP !!! - Forum Virus
- Prévention et désinfection ✓ - Forum Virus
- Aide pour désinfection pc ✓ - Forum Virus
- [XP] Desinfection smitfraud ✓ - Forum Virus
1 réponse
slt,
lance firefox puis va en haut dans OUTILS puis effacer mes traces et supprime le cache
____________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
___________________________________
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP476\A0068376.exe -> Adware.Casino : Aucune action entreprise.
slt ,
ce virus est dans la restauration systeme:
désactive la restauration système pour purger les virus qui seraient dedans puis réactive là (dans DEMARRER puis TOUS LES PROGRAMMES puis ACCESSOIRE puis OUTILS SYSTEME puis RESTAURATION SYSTEME puis paramètre)
de plus:
comme tu peux voir avg a dis aucune action entreprise donc il faut le refaire et supprimer ce qui est trouvé et recolle le rapport
avec AVG:
Si un fichier est infecté en fin d'analyse
->Clique sur "Appliquer toutes les actions "
____________________
fix ces lignes avec hijackthis
:
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
________________
Titan Poker c'est toi qui l'a installé?
CmjBrowserHelperObject Object / Mindjet MindManager c'est toi qui as mis cette barre?
recolle hijackthis
lance firefox puis va en haut dans OUTILS puis effacer mes traces et supprime le cache
____________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
___________________________________
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP476\A0068376.exe -> Adware.Casino : Aucune action entreprise.
slt ,
ce virus est dans la restauration systeme:
désactive la restauration système pour purger les virus qui seraient dedans puis réactive là (dans DEMARRER puis TOUS LES PROGRAMMES puis ACCESSOIRE puis OUTILS SYSTEME puis RESTAURATION SYSTEME puis paramètre)
de plus:
comme tu peux voir avg a dis aucune action entreprise donc il faut le refaire et supprimer ce qui est trouvé et recolle le rapport
avec AVG:
Si un fichier est infecté en fin d'analyse
->Clique sur "Appliquer toutes les actions "
____________________
fix ces lignes avec hijackthis
:
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
________________
Titan Poker c'est toi qui l'a installé?
CmjBrowserHelperObject Object / Mindjet MindManager c'est toi qui as mis cette barre?
recolle hijackthis
