Comment debarasse de cheval de troi
larou
-
sulli -
sulli -
Bonjour, j ai un virus cheval de troi detece par avastet avoir analyse par AVG je suprime tout les fichier detecte et apre je fait un autre analyse avec Hijakthis donc que ce que je doit faire apre tout ca mercie de me repondre
voila e raport de AVG
+ Résultat de l'analyse:
C:\Documents and Settings\lamzou\Local Settings\Temporary Internet Files\Content.IE5\QPCVYP65\MirarDownloader_876932[1].exe -> Adware.Mirar : Nettoyé.
C:\WINDOWS\MirarDownloader_876932.exe -> Adware.Mirar : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005018.dll -> Adware.SmartShopper : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005019.dll -> Adware.SmartShopper : Nettoyé.
C:\Documents and Settings\lamzou\Local Settings\Temporary Internet Files\Content.IE5\0T4LIV85\distro_SelectRebatesSetup_um1001[1].exe -> Logger.Agent.aan : Nettoyé.
C:\WINDOWS\distro_SelectRebatesSetup_um1001.exe -> Logger.Agent.aan : Nettoyé.
:mozilla.235:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.236:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.198:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.199:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.200:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.202:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.407:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.206:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.207:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.208:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ads.adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.152:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.11:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.12:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.13:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.9:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.330:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.25:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.26:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.163:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.164:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.165:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.166:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.167:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.168:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.169:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.170:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.249:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.250:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.251:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.27:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.288:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.90:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.91:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.92:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.93:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.94:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.299:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.314:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.179:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.180:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.181:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.326:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.44:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.100:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.98:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.99:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.414:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.415:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.424:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.425:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.426:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.427:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@revsci[2].txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.52:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.53:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.55:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.56:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.57:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.58:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.40:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.41:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.42:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.43:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.398:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.156:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.157:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.158:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.159:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@tacoda[2].txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.28:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.30:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.67:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.68:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.69:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.184:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.101:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.105:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.106:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.272:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.273:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.274:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
D:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP3\A0000176.exe -> Trojan.Proxcrak.A : Nettoyé.
D:\kubas\Winrar 3.0\Crack_Winrar 2.9\patch__WinRAR.exe -> Trojan.Proxcrak.A : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005015.exe -> Worm.Delf.ca : Nettoyé.
C:\WINDOWS\system32\trz83.tmp -> Worm.Delf.ca : Nettoyé.
Fin du rapport
et voila le raport de Hijackthis apre l analyse de AVG
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:31:16, on 07/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr9/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: ohb - {5ED7D3DE-6DBE-4516-8712-01B1B64B7057} - C:\WINDOWS\system32\UpMedia\ContentTool.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Mirar - {9A9C9B69-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\WinNB58.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Mirar - {9A9C9B68-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\WinNB58.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
voila e raport de AVG
+ Résultat de l'analyse:
C:\Documents and Settings\lamzou\Local Settings\Temporary Internet Files\Content.IE5\QPCVYP65\MirarDownloader_876932[1].exe -> Adware.Mirar : Nettoyé.
C:\WINDOWS\MirarDownloader_876932.exe -> Adware.Mirar : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005018.dll -> Adware.SmartShopper : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005019.dll -> Adware.SmartShopper : Nettoyé.
C:\Documents and Settings\lamzou\Local Settings\Temporary Internet Files\Content.IE5\0T4LIV85\distro_SelectRebatesSetup_um1001[1].exe -> Logger.Agent.aan : Nettoyé.
C:\WINDOWS\distro_SelectRebatesSetup_um1001.exe -> Logger.Agent.aan : Nettoyé.
:mozilla.235:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.236:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.198:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.199:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.200:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.202:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.407:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.206:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.207:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.208:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ads.adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.152:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.11:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.12:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.13:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.9:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.330:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.25:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.26:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.163:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.164:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.165:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.166:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.167:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.168:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.169:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.170:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.249:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.250:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.251:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.27:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.288:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.90:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.91:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.92:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.93:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.94:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.299:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.314:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.179:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.180:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.181:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.326:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.44:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.100:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.98:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.99:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.414:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.415:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.424:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.425:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.426:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.427:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@revsci[2].txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.52:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.53:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.55:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.56:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.57:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.58:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.40:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.41:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.42:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.43:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.398:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.156:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.157:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.158:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.159:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@tacoda[2].txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.28:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.30:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.67:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.68:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.69:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.184:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.101:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.105:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.106:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.272:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.273:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.274:C:\Documents and Settings\lamzou\Application Data\Mozilla\Firefox\Profiles\6ujkjtab.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\lamzou\Cookies\lamzou@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
D:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP3\A0000176.exe -> Trojan.Proxcrak.A : Nettoyé.
D:\kubas\Winrar 3.0\Crack_Winrar 2.9\patch__WinRAR.exe -> Trojan.Proxcrak.A : Nettoyé.
C:\System Volume Information\_restore{A2D5DE97-4715-45CA-8C8C-659CA6B6FA76}\RP49\A0005015.exe -> Worm.Delf.ca : Nettoyé.
C:\WINDOWS\system32\trz83.tmp -> Worm.Delf.ca : Nettoyé.
Fin du rapport
et voila le raport de Hijackthis apre l analyse de AVG
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:31:16, on 07/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr9/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: ohb - {5ED7D3DE-6DBE-4516-8712-01B1B64B7057} - C:\WINDOWS\system32\UpMedia\ContentTool.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Mirar - {9A9C9B69-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\WinNB58.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Mirar - {9A9C9B68-F908-4AAB-8D0C-10EA8997F37E} - C:\WINDOWS\system32\WinNB58.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
A voir également:
- Comment debarasse de cheval de troi
- Antivirus cheval de troie gratuit - Télécharger - Antivirus & Antimalwares
- Ordinateur bloqué cheval de troie - Accueil - Arnaque
- Jeux de petit chevaux gratuit à télécharger - Télécharger - Jeux vidéo
- Cheval au poker - Forum Virus
- Skyrim retrouver son cheval - Forum Jeux PC
12 réponses
hahahaha vous avez raison mai le virus toujour la quans j ouvre la boite messageie de msn
merci de repondre
merci de repondre
pourquoi:HAHAHA????
télécharge msnfix:http://sosvirus.changelog.fr/MSNFix.zip
tuto ici:https://www.malekal.com/supprimer-virus-desinfecter-pc/
fais une analyse avec.
télécharge msnfix:http://sosvirus.changelog.fr/MSNFix.zip
tuto ici:https://www.malekal.com/supprimer-virus-desinfecter-pc/
fais une analyse avec.
je rigole setout car ma copine elle ma dit meme reponse que toi au debut
bon je vai essaye avec sa
merci beaucoup
bon je vai essaye avec sa
merci beaucoup
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
salut
voila le raport apre l analyse
MSNFix 1.60
C:\Documents and Settings\lamzou\Local Settings\Temp\MSNFix\MSNFix
Fix exécuté le 07/12/2007 - 22:16:32,70 By lamzou
mode normal
************************ Recherche les fichiers présents
... C:\WINDOWS\system32\WinNB58.dll
************************ MSNCHK ***** /!\ beta test /!\
************************ Recherche les dossiers présents
Aucun dossier trouvé
************************ Suppression des fichiers
.. OK ... C:\WINDOWS\system32\WinNB58.dll
************************ Nettoyage du registre
************************ Fichiers suspects
Aucun Fichier trouvé
Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 07122007_22172425.zip
------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------
--------------------------------------------- END ---------------------------------------------
voila le raport apre l analyse
MSNFix 1.60
C:\Documents and Settings\lamzou\Local Settings\Temp\MSNFix\MSNFix
Fix exécuté le 07/12/2007 - 22:16:32,70 By lamzou
mode normal
************************ Recherche les fichiers présents
... C:\WINDOWS\system32\WinNB58.dll
************************ MSNCHK ***** /!\ beta test /!\
************************ Recherche les dossiers présents
Aucun dossier trouvé
************************ Suppression des fichiers
.. OK ... C:\WINDOWS\system32\WinNB58.dll
************************ Nettoyage du registre
************************ Fichiers suspects
Aucun Fichier trouvé
Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 07122007_22172425.zip
------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------
--------------------------------------------- END ---------------------------------------------
ouééé tout a fait merci merci merci beaucouuuuuuuuuuuuuuuuuuuuuuuuuuuuuuup vous ete tres gentille
oui est ceque je peux metre le fichier dans le corbeil
et je peut suprime tout les logiciel que je utilise pour le virus ?
oui est ceque je peux metre le fichier dans le corbeil
et je peut suprime tout les logiciel que je utilise pour le virus ?
gentille????la on va pas etre copain LOL
tu peux desinstaller les logiciels qui t'ont servi pour la desinfection
@++
tu peux desinstaller les logiciels qui t'ont servi pour la desinfection
@++
merci ce gentille biensur si tu aide les gen comme ca bon j ai d autre probleme dans mon PC
je suis un debitant et je instale windows XP sur mon PC (formatage ) mai le sond ne marche pas je utilise maitenant le USB pour le sonet le PC il fait des bruit a chaque fois si je t enbete pas dit moi que ce que je pourai faire merci
je suis un debitant et je instale windows XP sur mon PC (formatage ) mai le sond ne marche pas je utilise maitenant le USB pour le sonet le PC il fait des bruit a chaque fois si je t enbete pas dit moi que ce que je pourai faire merci
