Avast a detecte un cheval de troie
Résolu
delphy
-
g!rly Messages postés 18215 Date d'inscription Statut Contributeur Dernière intervention -
g!rly Messages postés 18215 Date d'inscription Statut Contributeur Dernière intervention -
Bonjour, avast a detecte un cheval de troie sur mon ordinateur, je suis debutante en informatique. voila ce que disait le rapport:
nom du fichier
c:system volume information\-restore{c4f2328d-34cc-4bb4-a8
nom du logiciel malveillant
win32agent-nja[trj]
type de logiciel malveillant
cheval de troie
version vps 071128-0,28/11/2007
je vous remercie de me venir en aide
nom du fichier
c:system volume information\-restore{c4f2328d-34cc-4bb4-a8
nom du logiciel malveillant
win32agent-nja[trj]
type de logiciel malveillant
cheval de troie
version vps 071128-0,28/11/2007
je vous remercie de me venir en aide
A voir également:
- Avast a detecte un cheval de troie
- Clé usb non detecté - Guide
- Désinstaller avast - Télécharger - Antivirus & Antimalwares
- Comment détecter un traceur sur téléphone - Accueil - Confidentialité
- Mail avast 499 euros - Forum Consommation & Internet
- Dri avast software - Forum Vos droits sur internet
79 réponses
re,
ok on reprendra la prochaine fois
pour firefox,en l´installant il va créer un racourci sur ton bureau tu le lancera a partir de la, il faudra toute fois choisir si tu veux qu´il soit ton navigateur par default, au debut réponds non et ne cohe pas la case ne plus me demander, comme ca tu pourras tester, et si tu choisie de le garder, tu pourras alors lui dire qu´il sera ton navigateur par defaut...
bonne soirée
@+
ok on reprendra la prochaine fois
pour firefox,en l´installant il va créer un racourci sur ton bureau tu le lancera a partir de la, il faudra toute fois choisir si tu veux qu´il soit ton navigateur par default, au debut réponds non et ne cohe pas la case ne plus me demander, comme ca tu pourras tester, et si tu choisie de le garder, tu pourras alors lui dire qu´il sera ton navigateur par defaut...
bonne soirée
@+
RE
Jj'ai suprimé avast et téléchatgé antivir, le scan est parti,seulement j'ai un petit soucis avec l'anglais! existe t il la version francaise?
Jj'ai suprimé avast et téléchatgé antivir, le scan est parti,seulement j'ai un petit soucis avec l'anglais! existe t il la version francaise?
bonjour g!rly voici le rapport antivir.
AntiVir PersonalEdition Classic
Report file date: samedi 1 décembre 2007 11:21
Scanning for 955520 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: BUREAU-D2EABD9F
Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 30/11/2007 21:45:59
AVSCAN.DLL : 7.0.6.0 49192 Bytes 30/11/2007 21:45:59
LUKE.DLL : 7.0.5.3 147496 Bytes 30/11/2007 21:46:01
LUKERES.DLL : 7.0.6.1 10280 Bytes 30/11/2007 21:46:01
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 21:46:04
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 21:46:05
ANTIVIR2.VDF : 7.0.1.30 1575424 Bytes 30/11/2007 21:46:05
ANTIVIR3.VDF : 7.0.1.31 2048 Bytes 30/11/2007 21:46:05
AVEWIN32.DLL : 7.6.0.34 3125760 Bytes 30/11/2007 21:46:06
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 30/11/2007 21:45:59
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 30/11/2007 21:46:06
AVREG.DLL : 7.0.1.6 30760 Bytes 30/11/2007 21:45:59
AVARKT.DLL : 1.0.0.20 278568 Bytes 30/11/2007 21:45:58
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 30/11/2007 21:45:58
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 30/11/2007 21:45:46
RCTEXT.DLL : 7.0.62.0 86056 Bytes 30/11/2007 21:45:46
SQLITE3.DLL : 3.3.17.1 339968 Bytes 30/11/2007 21:46:02
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: samedi 1 décembre 2007 11:21
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'Watch.exe' - '1' Module(s) have been scanned
Scan process 'hpqste08.exe' - '1' Module(s) have been scanned
Scan process 'hpqimzone.exe' - '1' Module(s) have been scanned
Scan process 'ALERTM~1.EXE' - '1' Module(s) have been scanned
Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
Scan process 'Toaster.exe' - '1' Module(s) have been scanned
Scan process 'GoogleUpdater.exe' - '1' Module(s) have been scanned
Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned
Scan process 'ComComp.exe' - '1' Module(s) have been scanned
Scan process 'CPSHelpRunner.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'issch.exe' - '1' Module(s) have been scanned
Scan process 'reader_sl.exe' - '1' Module(s) have been scanned
Scan process 'TaskBarIcon.exe' - '1' Module(s) have been scanned
Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatchTray9.exe' - '1' Module(s) have been scanned
Scan process 'DrgToDsc.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB9.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch9.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB.exe' - '1' Module(s) have been scanned
Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned
Scan process 'GEARSEC.EXE' - '1' Module(s) have been scanned
Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '0' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
52 processes with 52 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Starting to scan the registry.
The registry was scanned ( '30' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\atapi.sys
[WARNING] The file could not be opened!
End of the scan: samedi 1 décembre 2007 12:11
Used time: 49:16 min
The scan has been done completely.
6752 Scanning directories
215625 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
215625 Files not concerned
1624 Archives were scanned
3 Warnings
4 Notes
AntiVir PersonalEdition Classic
Report file date: samedi 1 décembre 2007 11:21
Scanning for 955520 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: BUREAU-D2EABD9F
Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 30/11/2007 21:45:59
AVSCAN.DLL : 7.0.6.0 49192 Bytes 30/11/2007 21:45:59
LUKE.DLL : 7.0.5.3 147496 Bytes 30/11/2007 21:46:01
LUKERES.DLL : 7.0.6.1 10280 Bytes 30/11/2007 21:46:01
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 21:46:04
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 21:46:05
ANTIVIR2.VDF : 7.0.1.30 1575424 Bytes 30/11/2007 21:46:05
ANTIVIR3.VDF : 7.0.1.31 2048 Bytes 30/11/2007 21:46:05
AVEWIN32.DLL : 7.6.0.34 3125760 Bytes 30/11/2007 21:46:06
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 30/11/2007 21:45:59
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 30/11/2007 21:46:06
AVREG.DLL : 7.0.1.6 30760 Bytes 30/11/2007 21:45:59
AVARKT.DLL : 1.0.0.20 278568 Bytes 30/11/2007 21:45:58
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 30/11/2007 21:45:58
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 30/11/2007 21:45:46
RCTEXT.DLL : 7.0.62.0 86056 Bytes 30/11/2007 21:45:46
SQLITE3.DLL : 3.3.17.1 339968 Bytes 30/11/2007 21:46:02
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: samedi 1 décembre 2007 11:21
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'Watch.exe' - '1' Module(s) have been scanned
Scan process 'hpqste08.exe' - '1' Module(s) have been scanned
Scan process 'hpqimzone.exe' - '1' Module(s) have been scanned
Scan process 'ALERTM~1.EXE' - '1' Module(s) have been scanned
Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
Scan process 'Toaster.exe' - '1' Module(s) have been scanned
Scan process 'GoogleUpdater.exe' - '1' Module(s) have been scanned
Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned
Scan process 'ComComp.exe' - '1' Module(s) have been scanned
Scan process 'CPSHelpRunner.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'issch.exe' - '1' Module(s) have been scanned
Scan process 'reader_sl.exe' - '1' Module(s) have been scanned
Scan process 'TaskBarIcon.exe' - '1' Module(s) have been scanned
Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatchTray9.exe' - '1' Module(s) have been scanned
Scan process 'DrgToDsc.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB9.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch9.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB.exe' - '1' Module(s) have been scanned
Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned
Scan process 'GEARSEC.EXE' - '1' Module(s) have been scanned
Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '0' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
52 processes with 52 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Starting to scan the registry.
The registry was scanned ( '30' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\atapi.sys
[WARNING] The file could not be opened!
End of the scan: samedi 1 décembre 2007 12:11
Used time: 49:16 min
The scan has been done completely.
6752 Scanning directories
215625 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
215625 Files not concerned
1624 Archives were scanned
3 Warnings
4 Notes
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
bonsoir, la l'anti virus ne detecte plus rien,tout a l'air de fonctionner normalement. sur le rapport j'ai remarqué qu'il y a des dossiers qui n'ont pas pu etre ouverts, c'est important ou pas? Une petite question suplémentaire: j'ai un autre ordi, il se met en route tout seul quand ca lui toc. que pourrais je faire pour arreter ca! merci a toi
salut delphy,
bon et bien c´est cool; les warnings _> dossier qui n´ont pas pu etre ouvert, c´est normal...
pour l´autre pc, crée un nouveau topik sur le forum....
tiens moi au courrant pour le premier pc
@+
bon et bien c´est cool; les warnings _> dossier qui n´ont pas pu etre ouvert, c´est normal...
pour l´autre pc, crée un nouveau topik sur le forum....
tiens moi au courrant pour le premier pc
@+
bonjour g!rly, me revoila! j'ai installé zone alarm comme par feu, et antivir. je trouve que mon ordi met bcp de temps a ouvrir les pages et internet aussi. est ce du au par feu ou bien y a t- il un problème?
voila le rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:40:10, on 06/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\SYSTEM32\GEARSEC.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxMediaDB.exe
C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxWatch.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\FRANCO~1\LOCALS~1\Temp\Rar$EX00.109\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Fichiers communs\TerraTec\Remote\TTTVRC.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?512ab568a0944d7c86bda0f14eac6d30
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?512ab568a0944d7c86bda0f14eac6d30
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - file://C:\Documents and Settings\Francoise\Local Settings\Application Data\Oberon Media\Oberon Games Host\popcaploader_v6.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSEC.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxLiveShare.exe
O23 - Service: RoxMediaDB - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxMediaDB.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCom\RoxUpnpRenderer.exe
O23 - Service: RoxUpnpServer - Sonic Solutions - C:\Program Files\Roxio\Easy Media Creator 8\Digital Home\RoxUpnpServer.exe
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxWatch.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: UPnPService - Unknown owner - C:\Program Files\Fichiers communs\MAGIX Shared\UPnPService\UPnPService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:40:10, on 06/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\SYSTEM32\GEARSEC.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxMediaDB.exe
C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxWatch.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\FRANCO~1\LOCALS~1\Temp\Rar$EX00.109\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Fichiers communs\TerraTec\Remote\TTTVRC.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?512ab568a0944d7c86bda0f14eac6d30
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?512ab568a0944d7c86bda0f14eac6d30
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - file://C:\Documents and Settings\Francoise\Local Settings\Application Data\Oberon Media\Oberon Games Host\popcaploader_v6.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSEC.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxLiveShare.exe
O23 - Service: RoxMediaDB - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxMediaDB.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCom\RoxUpnpRenderer.exe
O23 - Service: RoxUpnpServer - Sonic Solutions - C:\Program Files\Roxio\Easy Media Creator 8\Digital Home\RoxUpnpServer.exe
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\SharedCOM8\RoxWatch.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: UPnPService - Unknown owner - C:\Program Files\Fichiers communs\MAGIX Shared\UPnPService\UPnPService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
il m'a effacé le rapport, le curseur s'est mit a reculer jusqu'à tout effacer, je n'arrive pas a le retrouver!
salut delphy,
j´ai vu ton rapport hijack this
premier chose a faire supprime hijack this reprends le ici :
-> https://www.zebulon.fr/telechargements/securite/systeme/hijackthis.html
et place le a la racine de c:\ <-important
comme ca il est possible de faire un back up des lignes fixés si necessaire...
puis ouvre hijack this :
rien ne va etre effacé, on va juste accellerer un peut le demarrage
a l´aide de hijack this coche et fix ceci :
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
comment fixer :
Tutoriel d´utilisation (video) :
-> http://pageperso.aol.fr/balltrap34/demohijack.htm
supprime ceci :
C:\WINDOWS\bdoscandel.exe
c´est le reste du scan on line de bitdefender, peut etre que tu en as deux alors supprime les...
dis moi quoi
@+
j´ai vu ton rapport hijack this
premier chose a faire supprime hijack this reprends le ici :
-> https://www.zebulon.fr/telechargements/securite/systeme/hijackthis.html
et place le a la racine de c:\ <-important
comme ca il est possible de faire un back up des lignes fixés si necessaire...
puis ouvre hijack this :
rien ne va etre effacé, on va juste accellerer un peut le demarrage
a l´aide de hijack this coche et fix ceci :
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
comment fixer :
Tutoriel d´utilisation (video) :
-> http://pageperso.aol.fr/balltrap34/demohijack.htm
supprime ceci :
C:\WINDOWS\bdoscandel.exe
c´est le reste du scan on line de bitdefender, peut etre que tu en as deux alors supprime les...
dis moi quoi
@+
ok, la, j'ai du mal a comprendre ce que tu me dit. comment faire pour placer hijackthis à la racine de c:/
autre chose, la je ne sais pas si j'ai bien fait, mais j'ai fait un scan avec avg anti-spyware, il m'a trouvé 56 fichiers infectés. je les ai tous suprimés. je te joint le rapport après nettoyage.---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 15:59:37 06/12/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Francoise\Cookies\francoise@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.66:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.67:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@electronicarts.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.12:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.14:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.15:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.16:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@adviva[2].txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.126:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.11:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.29:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.80:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.81:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.79:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.84:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.43:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@data3.perf.overture[2].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.92:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.93:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.94:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.95:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.42:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.112:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.85:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.86:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.87:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.88:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.48:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.49:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.50:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.51:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.52:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
Fin du rapport
autre chose, la je ne sais pas si j'ai bien fait, mais j'ai fait un scan avec avg anti-spyware, il m'a trouvé 56 fichiers infectés. je les ai tous suprimés. je te joint le rapport après nettoyage.---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 15:59:37 06/12/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Francoise\Cookies\francoise@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.66:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.67:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@electronicarts.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.12:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.14:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.15:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.16:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@adviva[2].txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.126:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.11:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.29:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.80:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.81:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.79:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.84:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.43:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@data3.perf.overture[2].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.92:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.93:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.94:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.95:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.42:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.112:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.85:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.86:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.87:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.88:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Francoise\Cookies\francoise@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.48:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.49:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.50:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.51:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.52:C:\Documents and Settings\Francoise\Application Data\Mozilla\Firefox\Profiles\mim7hdmg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
Fin du rapport
re,
ce ne sont que des tracking cookie
un tracking cookie qu´est ce que c´est :
https://kerio.probb.fr/t161-qu-est-ce-qu-un-cookie-tracking-cookie
pour hijack this il faut le pacer a la racine de c:\
pour cela tu le telecharge et au moment de l´installer tu chosie le chemin c:\
car la pour le moment il est dans tes fichiers temporaires donc pas de back up possible...
ou tu peux aussi le placer sur ton bureau mais bon c´est moyen car tu va alors avoir les dossiers (backup) sur ton bureau
ce ne sont que des tracking cookie
un tracking cookie qu´est ce que c´est :
https://kerio.probb.fr/t161-qu-est-ce-qu-un-cookie-tracking-cookie
pour hijack this il faut le pacer a la racine de c:\
pour cela tu le telecharge et au moment de l´installer tu chosie le chemin c:\
car la pour le moment il est dans tes fichiers temporaires donc pas de back up possible...
ou tu peux aussi le placer sur ton bureau mais bon c´est moyen car tu va alors avoir les dossiers (backup) sur ton bureau
merci pour les précisions sur les cookies.
j'ai fait une mauvaise manipulation, j'ai enlevé hijackthis puis je l'ai téléchargé a nouveau mais dans les fichiers temporaires.
ensuite j'ai suivi tes conseils, lorsque j'ai vu ton dernier message, j'ai tout suprimé a nouveau et j'ai voulu recommencer l'opération, mais maintenant je n'arrive plus a retrouver les dossiers que tu m'a dit de cocher. désolée
j'ai fait une mauvaise manipulation, j'ai enlevé hijackthis puis je l'ai téléchargé a nouveau mais dans les fichiers temporaires.
ensuite j'ai suivi tes conseils, lorsque j'ai vu ton dernier message, j'ai tout suprimé a nouveau et j'ai voulu recommencer l'opération, mais maintenant je n'arrive plus a retrouver les dossiers que tu m'a dit de cocher. désolée
donx hijack this n´est plus dans les fichiers temporaires...
rien ne va etre effacé, on va juste accellerer un peut le demarrage
a l´aide de hijack this coche et fix ceci :
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
comment fixer :
Tutoriel d´utilisation (video) :
-> http://pageperso.aol.fr/balltrap34/demohijack.htm
supprime ceci :
C:\WINDOWS\bdoscandel.exe
c´est le reste du scan on line de bitdefender, peut etre que tu en as deux alors supprime les...
@+
rien ne va etre effacé, on va juste accellerer un peut le demarrage
a l´aide de hijack this coche et fix ceci :
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
comment fixer :
Tutoriel d´utilisation (video) :
-> http://pageperso.aol.fr/balltrap34/demohijack.htm
supprime ceci :
C:\WINDOWS\bdoscandel.exe
c´est le reste du scan on line de bitdefender, peut etre que tu en as deux alors supprime les...
@+