Sujet Précédent Sujet Suivant

Pb virus CID...

Résolu/Fermé
cogotch - 13 janv. 2008 à 13:01
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 - 20 janv. 2008 à 17:17
Saloute!!

Commme beaucoups, j'ai des fenetre CID qui s'ouvrent intempestivement et j'aimerai savoir comment areeter ca...

Merci d'avance!

cogotch
A voir également:

17 réponses

Réponse 1 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
13 janv. 2008 à 13:06
Salut

Télécharge ceci :

Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis

Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

++
0
Réponse 2 / 17
ptitecricri
13 janv. 2008 à 13:53
bonjour!!j'ai des fenetres cid qui reviennent souvent kelkun pourais til maider pour arreter sa!!
merci davance!!
cordialement

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:50:24, on 13/01/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\aol\1177148205\ee\aolsoftware.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IntelligentAdvisor - {6548BF73-58FF-71D5-F97D-17C71E323709} - C:\Program Files\IntelligentAdvisor\IntelligentAdvisor-2.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1177148205\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Pop-Up Stopper] "C:\Program Files\Panicware\Pop-Up Stopper\dpps2.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [StartKeep] "C:\ProgramData\firstmixmix.vg4a8"
O4 - HKCU\..\Run: [MODE FREE BIRD SURF] "C:\ProgramData\Locks Mix Bows.krhhfk"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Global Startup: OFFICE One Startup v7.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O13 - Gopher Prefix:
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-3-48.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkSrv.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
0
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
13 janv. 2008 à 13:58
Salut

merci de créer ton propre poste ! ;-)

==> http://pagesperso-orange.fr/rginformatique/section%20virus/demofairesontmessage.htm

++
0
Réponse 3 / 17
Erwan59 Messages postés 230 Date d'inscription samedi 12 janvier 2008 Statut Membre Dernière intervention 20 avril 2015 43
13 janv. 2008 à 13:55
Peut-etre que c'est un fichier qui envoi ses pubs... Cherchez et suprimez!
0
Réponse 4 / 17
ptitecricri
13 janv. 2008 à 14:01
j'ai chercher deja mais rien trouver..
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
Erwan59 Messages postés 230 Date d'inscription samedi 12 janvier 2008 Statut Membre Dernière intervention 20 avril 2015 43
13 janv. 2008 à 14:02
va dans ton panneau de configuration et cherche.
0
Réponse 6 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
19 janv. 2008 à 10:26
Salut!!

hmm dsl cette semaine j'étais en concours donc j'ai pas vraiment pu me connecter...

donc voici mle rapport demander :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:25:13, on 19/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Christian\Mes documents\Laurent\cogotch\Emulateurs\eMule\emule.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CAMP SHIM EXIT HECK] C:\Documents and Settings\All Users\Application Data\That Face Camp Shim\spam team.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [nurb city] C:\DOCUME~1\CHRIST~1\APPLIC~1\DASHCO~1\loadsect.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk580YYRE
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab
O16 - DPF: {1F831FA7-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD LT 2002 Fra\InstFred.ocx
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://sakura777.miemasu.net/kxhcm10.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.club-internet.fr/components/Metaboli.ocx
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://zone.msn.com/bingame/luxr/default/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Roxio Inc. - C:\WINDOWS\system32\ImapiRox.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
0
Réponse 7 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
19 janv. 2008 à 12:56
Salut

Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

++
0
Réponse 8 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
19 janv. 2008 à 13:05
voici le rapport :

Rapport Lopxp fait le 19/01/2008 à 13:02:01
Exécuté dans : C:\Program Files\Lopxp 


___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\A210455F918BFFCB.job 
Crée le : 16/01/2008 à 19:15
Fichier exécuté => c:\docume~1\nicole\applic~1\dashco~1\cornextrahope.exe 

C:\WINDOWS\tasks\AAD085EF918B3883.job 
Crée le : 17/01/2008 à 18:34
Fichier exécuté => c:\docume~1\christ~1\applic~1\dashco~1\cornextrahope.exe 

C:\WINDOWS\tasks\XoftSpySE 2.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe ShowReminders

C:\WINDOWS\tasks\XoftSpySE.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe -t


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

03/06/2005 15:33:35 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla
07/01/2008 10:38:48 ... Real ------= Real
06/01/2008 11:26:42 ... Talkback --= Talkback

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

03/06/2005 15:33:36 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla

+- C:\Documents and Settings\All Users\Application Data

03/09/2005 08:19:42 ... ABBYY -----= ABBYY
28/06/2005 07:23:53 ... Adobe -----= Adobe
08/06/2005 06:05:45 ... APPLEC~1 --= Apple Computer
08/12/2005 14:34:21 ... Autodesk --= Autodesk
19/04/2006 17:00:05 ... BITSEX~1 --= Bitsexitlogsite
08/11/2006 16:53:12 ... BOONTY ----= BOONTY
26/07/2006 13:48:36 ... CanonBJ ---= CanonBJ
04/08/2006 11:33:13 ... Google ----= Google
31/12/2007 11:54:14 ... GOOGLE~1 --= Google Updater
08/03/2006 13:04:07 ... INSTAL~1 --= InstallShield
26/09/2005 16:27:06 ... MACROV~1 --= Macrovision
19/10/2005 11:45:03 ... MESSEN~1 --= Messenger Plus!
03/06/2005 14:40:32 ... MICROS~1 --= Microsoft
16/11/2006 20:54:45 ... MSN6 ------= MSN6
16/01/2006 08:24:10 ... MUMBOJ~1 --= MumboJumbo
06/06/2005 04:47:16 ... QUICKT~1 --= QuickTime
02/10/2005 12:41:08 ... Skype -----= Skype
06/10/2007 12:59:41 ... SONYER~1 --= Sony Ericsson
06/10/2007 12:59:17 ... Teleca ----= Teleca
24/12/2007 12:26:10 ... THATFA~1 --= That Face Camp Shim
14/10/2007 16:34:28 ... VICEVE~1 --= ViceVersa PRO 2
11/10/2005 17:04:35 ... WINDOW~1 --= Windows Genuine Advantage
26/09/2005 16:45:23 ... Zylom -----= Zylom

+- C:\Documents and Settings\Christian\Application Data

28/06/2005 07:10:39 ... Adobe -----= Adobe
28/06/2005 07:31:26 ... AdobeUM ---= AdobeUM
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
07/06/2005 05:52:56 ... ArcSoft ---= ArcSoft
25/05/2007 16:52:53 ... DASHCO~1 --= dash comp poke
08/11/2005 15:15:02 ... EASYNO~1 --= Easy Notes User Files
24/07/2006 09:42:31 ... F-Secure --= F-Secure
04/12/2005 13:32:06 ... Google ----= Google
28/10/2007 18:50:19 ... gtk-2.0 ---= gtk-2.0
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:01:04 ... IDENTI~1 --= Identities
24/07/2006 09:40:11 ... ispnews ---= ispnews
29/11/2007 19:03:08 ... JASCSO~1 --= Jasc Software Inc
06/06/2005 17:45:38 ... MACROM~1 --= Macromedia
03/06/2005 12:00:34 ... MICROS~1 --= Microsoft
26/08/2005 06:40:48 ... Mozilla ---= Mozilla
07/06/2005 05:54:10 ... Nikon -----= Nikon
07/06/2005 05:25:36 ... OPENOF~1.79 -----= OpenOffice.org1.9.79
06/09/2006 19:37:15 ... OPENOF~1.ORG -----= OpenOffice.org2
02/06/2007 15:08:24 ... PEX -------= PEX
23/08/2006 12:28:13 ... Real ------= Real
24/08/2006 13:21:20 ... RTE -------= RTE
16/09/2007 15:07:06 ... SECOND~1 --= SecondLife
03/06/2005 17:10:19 ... Skype -----= Skype
28/08/2006 07:31:51 ... SmartCom --= SmartCom
07/06/2005 06:42:37 ... Sun -------= Sun
26/08/2005 06:41:38 ... Talkback --= Talkback
03/04/2006 05:29:49 ... TEAMSP~1 --= teamspeak2
06/10/2007 13:01:17 ... Teleca ----= Teleca
04/08/2005 11:10:10 ... Template --= Template
17/11/2007 15:24:41 ... U3 --------= U3
24/06/2005 17:32:08 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Christian\Local Settings\Application Data

28/06/2005 07:30:47 ... Adobe -----= Adobe
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
17/02/2006 16:08:09 ... APPLIC~1 --= ApplicationHistory
22/04/2006 06:19:08 ... Dell ------= Dell
03/06/2005 14:13:11 ... Google ----= Google
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:37:04 ... IDENTI~1 --= Identities
15/09/2005 15:05:03 ... IM --------= IM
03/06/2005 12:00:35 ... MICROS~1 --= Microsoft
19/03/2007 18:27:36 ... Mozilla ---= Mozilla
07/01/2006 11:30:35 ... OD2 -------= OD2
05/06/2005 14:57:40 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\Nicole\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
03/03/2006 05:05:01 ... AdobeUM ---= AdobeUM
15/07/2006 17:29:40 ... APPLEC~1 --= Apple Computer
01/12/2006 19:11:11 ... Autodesk --= Autodesk
24/03/2007 21:34:18 ... DASHCO~1 --= dash comp poke
27/11/2006 10:04:47 ... DRIVEC~1 --= DriveCleaner 2006 Free
29/07/2006 10:00:04 ... F-Secure --= F-Secure
04/08/2006 11:33:20 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:31:57 ... IDENTI~1 --= Identities
26/07/2006 10:05:18 ... ispnews ---= ispnews
28/06/2005 15:04:04 ... JASCSO~1 --= Jasc Software Inc
19/06/2005 16:50:11 ... MACROM~1 --= Macromedia
19/06/2005 16:31:37 ... MICROS~1 --= Microsoft
27/11/2005 06:39:41 ... Mozilla ---= Mozilla
16/11/2006 20:54:44 ... MSN6 ------= MSN6
19/06/2005 17:08:01 ... OPENOF~1.79 ------= OpenOffice.org1.9.79
25/08/2006 08:46:02 ... OPENOF~1.ORG ------= OpenOffice.org2
08/11/2007 16:32:57 ... ORDIGR~1 --= Ordigramme
24/08/2006 12:39:00 ... Real ------= Real
29/07/2006 18:03:38 ... REGIST~1 --= Registry Cleaner
25/03/2007 19:15:49 ... SCREEN~1 --= Screenshot Sender
28/06/2005 04:25:47 ... Skype -----= Skype
09/09/2006 17:50:07 ... SmartCom --= SmartCom
06/09/2005 15:18:58 ... Sun -------= Sun
24/08/2007 09:21:11 ... Talkback --= Talkback
07/10/2007 09:18:10 ... Teleca ----= Teleca
04/09/2005 11:39:10 ... Template --= Template
22/06/2005 04:19:02 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Nicole\Local Settings\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
18/02/2006 17:12:05 ... APPLEC~1 --= Apple Computer
15/10/2005 16:52:33 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:50:51 ... IDENTI~1 --= Identities
13/09/2005 16:56:45 ... IM --------= IM
19/06/2005 16:31:39 ... MICROS~1 --= Microsoft
24/08/2007 09:20:57 ... Mozilla ---= Mozilla
04/01/2006 13:33:43 ... OD2 -------= OD2
14/10/2007 16:22:53 ... WinAVI ----= WinAVI
25/07/2005 17:50:22 ... WMTOOL~1 --= WMTools Downloaded Files

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/06/2005 17:28:52 ... Adaptec ---= Adaptec
28/06/2005 07:23:53 ... Adobe -----= Adobe
10/06/2007 17:45:27 ... Adverts ---= Adverts
03/08/2006 15:40:21 ... ALWILS~1 --= Alwil Software
28/05/2007 12:07:46 ... ANTIVI~1 --= AntivirusFirewall
03/07/2007 13:34:02 ... ArcSoft ---= ArcSoft
01/12/2006 18:25:27 ... AUTOCA~1 --= AutoCAD LT 2002 Fra
08/12/2005 14:35:22 ... BACKBU~1 --= backburner 2
13/10/2007 14:31:10 ... BFG -------= BFG
18/07/2006 15:57:42 ... Canon -----= Canon
24/12/2007 12:25:09 ... CIRCLE~1 --= Circle Developement
06/01/2008 11:06:45 ... CleanUp! --= CleanUp!
11/06/2005 07:00:28 ... Creative --= Creative
03/06/2005 17:12:27 ... CYBERL~1 --= CyberLink
07/09/2007 07:24:12 ... Dactylo ---= Dactylo
17/01/2008 18:33:54 ... DASHCO~1 --= dash comp poke
06/06/2005 04:39:27 ... Dell ------= Dell
18/08/2005 17:31:23 ... directx ---= directx
06/10/2007 13:09:19 ... DISC2P~1 --= Disc2Phone
05/06/2005 11:41:00 ... DivX ------= DivX
19/08/2005 07:02:11 ... DIVXCO~1 --= DivXCodec
17/11/2007 13:00:59 ... ECHANB~1 --= eChanblard
29/09/2007 20:08:12 ... eMule -----= eMule
03/06/2005 14:41:11 ... FICHIE~1 --= Fichiers communs
30/03/2007 18:38:48 ... FREEAU~1 --= Free Audio Pack
31/12/2007 11:54:10 ... Google ----= Google
27/08/2005 08:38:42 ... HABITA~1 --= Habitat 3D Maison
03/06/2005 12:30:56 ... INSTAL~1 --= InstallShield Installation Information
03/06/2005 11:50:43 ... INTERN~1 --= Internet Explorer
07/06/2005 05:49:27 ... JASCSO~1 --= Jasc Software Inc
07/06/2005 06:41:28 ... Java ------= Java
19/01/2008 12:59:50 ... Lopxp -----= Lopxp
03/06/2005 11:49:49 ... MESSEN~1 --= Messenger
26/07/2006 18:16:44 ... MESSEN~3 --= Messenger Plus! Live
03/06/2005 11:53:49 ... MICROS~1 --= microsoft frontpage
29/01/2006 12:51:45 ... MICROS~1.0 --= Microsoft IntelliPoint 5.0
30/06/2005 10:26:37 ... MICROS~2 --= Microsoft Office
30/06/2005 10:27:43 ... MICROS~3 --= Microsoft Visual Studio
30/06/2005 10:28:01 ... MICROS~4 --= Microsoft Works
03/06/2005 11:51:24 ... MOVIEM~1 --= Movie Maker
19/03/2007 18:23:14 ... MOZILL~1 --= Mozilla Firefox
28/05/2007 12:59:02 ... MSBuild ---= MSBuild
03/06/2005 11:49:41 ... MSNGAM~1 --= MSN Gaming Zone
03/06/2005 13:22:36 ... MSNMES~1 --= MSN Messenger
18/11/2006 12:42:48 ... MSXML4~1.0 --= MSXML 4.0
28/05/2007 13:02:53 ... MSXML6~1.0 --= MSXML 6.0
03/06/2005 11:50:58 ... NETMEE~1 --= NetMeeting
03/07/2007 13:35:13 ... Nikon -----= Nikon
25/08/2006 08:40:32 ... OPENOF~1.0 -----= OpenOffice.org 2.0
03/06/2005 11:50:53 ... OUTLOO~1 --= Outlook Express
07/09/2007 19:22:59 ... PDFEDI~1 --= PDF Editeur 2
07/01/2006 12:40:59 ... QUICKT~1 --= QuickTime
23/08/2006 12:28:33 ... Real ------= Real
28/05/2007 12:50:28 ... REFERE~1 --= Reference Assemblies
14/03/2006 17:49:04 ... RM-XPL~1 --= RM-X Player V4
22/05/2007 19:10:30 ... SAGEM -----= SAGEM
16/05/2007 18:01:31 ... SECURI~1 --= Securitoo
03/06/2005 17:10:08 ... Skype -----= Skype
07/09/2007 18:50:43 ... SODEAS~1 --= SodeaSoft
06/10/2007 12:59:17 ... SONYER~1 --= Sony Ericsson
20/03/2006 05:45:50 ... SONYSE~1 --= Sony Setup
12/07/2005 13:17:19 ... TERRAG~1 --= TerraGame
10/09/2005 07:48:43 ... TIEDUC~1 --= TI Education
19/01/2008 10:24:01 ... TRENDM~1 --= Trend Micro
04/07/2005 14:39:20 ... Trymedia --= Trymedia
14/07/2006 15:22:22 ... TWEAK-~1 --= Tweak-XP Pro 4
19/08/2007 18:21:30 ... UNINST~1 --= Uninstall Information
22/06/2005 04:15:24 ... WATCHT~1 --= Watchtower
10/06/2007 17:45:19 ... WI1F86~1 --= Windows Live
05/02/2007 19:21:41 ... WIE5D0~1 --= Windows Live Safety Center
12/10/2005 17:22:42 ... WINDOW~4 --= Windows Media Bonus Pack for Windows XP
01/02/2006 14:18:01 ... WI4DF6~1 --= Windows Media Connect 2
03/06/2005 11:51:02 ... WINDOW~3 --= Windows Media Player
03/06/2005 11:49:33 ... WINDOW~1 --= Windows NT
03/06/2005 11:49:53 ... WINDOW~2 --= WindowsUpdate
03/06/2005 17:02:33 ... WinRAR ----= WinRAR
03/06/2005 11:53:49 ... xerox -----= xerox
30/12/2007 10:14:29 ... XOFTSP~1 --= XoftSpySE
14/07/2006 15:01:13 ... XviD ------= XviD


___________________________________________________________________________

=> Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CAMP SHIM EXIT HECK"="C:\Documents and Settings\All Users\Application Data\That Face Camp Shim\spam team.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nurb city"="C:\DOCUME~1\CHRIST~1\APPLIC~1\DASHCO~1\loadsect.exe"


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :

host-domain-lookup.com
www.host-domain-lookup.com
searchweb2.com
www.searchweb2.com

___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

+- Dossiers suspects :

C:\Documents and Settings\All Users\Application Data\Bitsexitlogsite
C:\Documents and Settings\All Users\Application Data\That Face Camp Shim
C:\Documents and Settings\Christian\Application Data\dash comp poke
C:\Documents and Settings\Nicole\Application Data\dash comp poke
C:\Program Files\dash comp poke
C:\Program Files\Adverts
C:\Program Files\Circle Developement

+- Tâches planifiées suspectes :

C:\WINDOWS\tasks\A210455F918BFFCB.job
C:\WINDOWS\tasks\AAD085EF918B3883.job

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CAMP SHIM EXIT HECK"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nurb city"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"host-domain-lookup.com"=-
"www.host-domain-lookup.com"=-
"searchweb2.com"=-
"www.searchweb2.com"=-

- Fin du rapport -
0
Réponse 9 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
19 janv. 2008 à 13:12
très bien :

va dans : Démarrer > Exécuter puis copie/colle cette ligne en gras exactement y compris les guillemets :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme

puis valide, et poste le rapport stp

++
0
Réponse 10 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
19 janv. 2008 à 13:57
encore un rapport.... ^^

Rapport Lopxp fait le 19/01/2008 à 13:26:30
Exécuté dans : C:\Program Files\Lopxp 


___________________________________________________________________________

=> Fixme :

+- Fichiers temporaires :
Nettoyage effectué.

___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\XoftSpySE 2.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe ShowReminders

C:\WINDOWS\tasks\XoftSpySE.job 
Crée le : 30/12/2007 à 10:14
Fichier exécuté => C:\Program Files\XoftSpySE\XoftSpy.exe -t


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

03/06/2005 15:33:35 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla
07/01/2008 10:38:48 ... Real ------= Real
06/01/2008 11:26:42 ... Talkback --= Talkback

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

03/06/2005 15:33:36 ... MICROS~1 --= Microsoft
06/01/2008 11:26:24 ... Mozilla ---= Mozilla

+- C:\Documents and Settings\All Users\Application Data

03/09/2005 08:19:42 ... ABBYY -----= ABBYY
28/06/2005 07:23:53 ... Adobe -----= Adobe
08/06/2005 06:05:45 ... APPLEC~1 --= Apple Computer
08/12/2005 14:34:21 ... Autodesk --= Autodesk
08/11/2006 16:53:12 ... BOONTY ----= BOONTY
26/07/2006 13:48:36 ... CanonBJ ---= CanonBJ
04/08/2006 11:33:13 ... Google ----= Google
31/12/2007 11:54:14 ... GOOGLE~1 --= Google Updater
08/03/2006 13:04:07 ... INSTAL~1 --= InstallShield
26/09/2005 16:27:06 ... MACROV~1 --= Macrovision
19/10/2005 11:45:03 ... MESSEN~1 --= Messenger Plus!
03/06/2005 14:40:32 ... MICROS~1 --= Microsoft
16/11/2006 20:54:45 ... MSN6 ------= MSN6
16/01/2006 08:24:10 ... MUMBOJ~1 --= MumboJumbo
06/06/2005 04:47:16 ... QUICKT~1 --= QuickTime
02/10/2005 12:41:08 ... Skype -----= Skype
06/10/2007 12:59:41 ... SONYER~1 --= Sony Ericsson
06/10/2007 12:59:17 ... Teleca ----= Teleca
14/10/2007 16:34:28 ... VICEVE~1 --= ViceVersa PRO 2
11/10/2005 17:04:35 ... WINDOW~1 --= Windows Genuine Advantage
26/09/2005 16:45:23 ... Zylom -----= Zylom

+- C:\Documents and Settings\Christian\Application Data

28/06/2005 07:10:39 ... Adobe -----= Adobe
28/06/2005 07:31:26 ... AdobeUM ---= AdobeUM
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
07/06/2005 05:52:56 ... ArcSoft ---= ArcSoft
08/11/2005 15:15:02 ... EASYNO~1 --= Easy Notes User Files
24/07/2006 09:42:31 ... F-Secure --= F-Secure
04/12/2005 13:32:06 ... Google ----= Google
28/10/2007 18:50:19 ... gtk-2.0 ---= gtk-2.0
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:01:04 ... IDENTI~1 --= Identities
24/07/2006 09:40:11 ... ispnews ---= ispnews
29/11/2007 19:03:08 ... JASCSO~1 --= Jasc Software Inc
06/06/2005 17:45:38 ... MACROM~1 --= Macromedia
03/06/2005 12:00:34 ... MICROS~1 --= Microsoft
26/08/2005 06:40:48 ... Mozilla ---= Mozilla
07/06/2005 05:54:10 ... Nikon -----= Nikon
07/06/2005 05:25:36 ... OPENOF~1.79 -----= OpenOffice.org1.9.79
06/09/2006 19:37:15 ... OPENOF~1.ORG -----= OpenOffice.org2
02/06/2007 15:08:24 ... PEX -------= PEX
23/08/2006 12:28:13 ... Real ------= Real
24/08/2006 13:21:20 ... RTE -------= RTE
16/09/2007 15:07:06 ... SECOND~1 --= SecondLife
03/06/2005 17:10:19 ... Skype -----= Skype
28/08/2006 07:31:51 ... SmartCom --= SmartCom
07/06/2005 06:42:37 ... Sun -------= Sun
26/08/2005 06:41:38 ... Talkback --= Talkback
03/04/2006 05:29:49 ... TEAMSP~1 --= teamspeak2
06/10/2007 13:01:17 ... Teleca ----= Teleca
04/08/2005 11:10:10 ... Template --= Template
17/11/2007 15:24:41 ... U3 --------= U3
24/06/2005 17:32:08 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Christian\Local Settings\Application Data

28/06/2005 07:30:47 ... Adobe -----= Adobe
07/01/2006 12:45:55 ... APPLEC~1 --= Apple Computer
17/02/2006 16:08:09 ... APPLIC~1 --= ApplicationHistory
22/04/2006 06:19:08 ... Dell ------= Dell
03/06/2005 14:13:11 ... Google ----= Google
06/06/2005 17:45:01 ... Help ------= Help
03/06/2005 12:37:04 ... IDENTI~1 --= Identities
15/09/2005 15:05:03 ... IM --------= IM
03/06/2005 12:00:35 ... MICROS~1 --= Microsoft
19/03/2007 18:27:36 ... Mozilla ---= Mozilla
07/01/2006 11:30:35 ... OD2 -------= OD2
05/06/2005 14:57:40 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\Nicole\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
03/03/2006 05:05:01 ... AdobeUM ---= AdobeUM
15/07/2006 17:29:40 ... APPLEC~1 --= Apple Computer
01/12/2006 19:11:11 ... Autodesk --= Autodesk
27/11/2006 10:04:47 ... DRIVEC~1 --= DriveCleaner 2006 Free
29/07/2006 10:00:04 ... F-Secure --= F-Secure
04/08/2006 11:33:20 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:31:57 ... IDENTI~1 --= Identities
26/07/2006 10:05:18 ... ispnews ---= ispnews
28/06/2005 15:04:04 ... JASCSO~1 --= Jasc Software Inc
19/06/2005 16:50:11 ... MACROM~1 --= Macromedia
19/06/2005 16:31:37 ... MICROS~1 --= Microsoft
27/11/2005 06:39:41 ... Mozilla ---= Mozilla
16/11/2006 20:54:44 ... MSN6 ------= MSN6
19/06/2005 17:08:01 ... OPENOF~1.79 ------= OpenOffice.org1.9.79
25/08/2006 08:46:02 ... OPENOF~1.ORG ------= OpenOffice.org2
08/11/2007 16:32:57 ... ORDIGR~1 --= Ordigramme
24/08/2006 12:39:00 ... Real ------= Real
29/07/2006 18:03:38 ... REGIST~1 --= Registry Cleaner
25/03/2007 19:15:49 ... SCREEN~1 --= Screenshot Sender
28/06/2005 04:25:47 ... Skype -----= Skype
09/09/2006 17:50:07 ... SmartCom --= SmartCom
06/09/2005 15:18:58 ... Sun -------= Sun
24/08/2007 09:21:11 ... Talkback --= Talkback
07/10/2007 09:18:10 ... Teleca ----= Teleca
04/09/2005 11:39:10 ... Template --= Template
22/06/2005 04:19:02 ... WATCHT~1 --= Watchtower

+- C:\Documents and Settings\Nicole\Local Settings\Application Data

29/06/2005 11:54:56 ... Adobe -----= Adobe
18/02/2006 17:12:05 ... APPLEC~1 --= Apple Computer
15/10/2005 16:52:33 ... Google ----= Google
06/07/2005 14:47:51 ... Help ------= Help
19/06/2005 16:50:51 ... IDENTI~1 --= Identities
13/09/2005 16:56:45 ... IM --------= IM
19/06/2005 16:31:39 ... MICROS~1 --= Microsoft
24/08/2007 09:20:57 ... Mozilla ---= Mozilla
04/01/2006 13:33:43 ... OD2 -------= OD2
14/10/2007 16:22:53 ... WinAVI ----= WinAVI
25/07/2005 17:50:22 ... WMTOOL~1 --= WMTools Downloaded Files

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/06/2005 17:28:52 ... Adaptec ---= Adaptec
28/06/2005 07:23:53 ... Adobe -----= Adobe
03/08/2006 15:40:21 ... ALWILS~1 --= Alwil Software
28/05/2007 12:07:46 ... ANTIVI~1 --= AntivirusFirewall
03/07/2007 13:34:02 ... ArcSoft ---= ArcSoft
01/12/2006 18:25:27 ... AUTOCA~1 --= AutoCAD LT 2002 Fra
08/12/2005 14:35:22 ... BACKBU~1 --= backburner 2
13/10/2007 14:31:10 ... BFG -------= BFG
18/07/2006 15:57:42 ... Canon -----= Canon
06/01/2008 11:06:45 ... CleanUp! --= CleanUp!
11/06/2005 07:00:28 ... Creative --= Creative
03/06/2005 17:12:27 ... CYBERL~1 --= CyberLink
07/09/2007 07:24:12 ... Dactylo ---= Dactylo
06/06/2005 04:39:27 ... Dell ------= Dell
18/08/2005 17:31:23 ... directx ---= directx
06/10/2007 13:09:19 ... DISC2P~1 --= Disc2Phone
05/06/2005 11:41:00 ... DivX ------= DivX
19/08/2005 07:02:11 ... DIVXCO~1 --= DivXCodec
17/11/2007 13:00:59 ... ECHANB~1 --= eChanblard
29/09/2007 20:08:12 ... eMule -----= eMule
03/06/2005 14:41:11 ... FICHIE~1 --= Fichiers communs
30/03/2007 18:38:48 ... FREEAU~1 --= Free Audio Pack
31/12/2007 11:54:10 ... Google ----= Google
27/08/2005 08:38:42 ... HABITA~1 --= Habitat 3D Maison
03/06/2005 12:30:56 ... INSTAL~1 --= InstallShield Installation Information
03/06/2005 11:50:43 ... INTERN~1 --= Internet Explorer
07/06/2005 05:49:27 ... JASCSO~1 --= Jasc Software Inc
07/06/2005 06:41:28 ... Java ------= Java
19/01/2008 12:59:50 ... Lopxp -----= Lopxp
03/06/2005 11:49:49 ... MESSEN~1 --= Messenger
26/07/2006 18:16:44 ... MESSEN~3 --= Messenger Plus! Live
03/06/2005 11:53:49 ... MICROS~1 --= microsoft frontpage
29/01/2006 12:51:45 ... MICROS~1.0 --= Microsoft IntelliPoint 5.0
30/06/2005 10:26:37 ... MICROS~2 --= Microsoft Office
30/06/2005 10:27:43 ... MICROS~3 --= Microsoft Visual Studio
30/06/2005 10:28:01 ... MICROS~4 --= Microsoft Works
03/06/2005 11:51:24 ... MOVIEM~1 --= Movie Maker
19/03/2007 18:23:14 ... MOZILL~1 --= Mozilla Firefox
28/05/2007 12:59:02 ... MSBuild ---= MSBuild
03/06/2005 11:49:41 ... MSNGAM~1 --= MSN Gaming Zone
03/06/2005 13:22:36 ... MSNMES~1 --= MSN Messenger
18/11/2006 12:42:48 ... MSXML4~1.0 --= MSXML 4.0
28/05/2007 13:02:53 ... MSXML6~1.0 --= MSXML 6.0
03/06/2005 11:50:58 ... NETMEE~1 --= NetMeeting
03/07/2007 13:35:13 ... Nikon -----= Nikon
25/08/2006 08:40:32 ... OPENOF~1.0 -----= OpenOffice.org 2.0
03/06/2005 11:50:53 ... OUTLOO~1 --= Outlook Express
07/09/2007 19:22:59 ... PDFEDI~1 --= PDF Editeur 2
07/01/2006 12:40:59 ... QUICKT~1 --= QuickTime
23/08/2006 12:28:33 ... Real ------= Real
28/05/2007 12:50:28 ... REFERE~1 --= Reference Assemblies
14/03/2006 17:49:04 ... RM-XPL~1 --= RM-X Player V4
22/05/2007 19:10:30 ... SAGEM -----= SAGEM
16/05/2007 18:01:31 ... SECURI~1 --= Securitoo
03/06/2005 17:10:08 ... Skype -----= Skype
07/09/2007 18:50:43 ... SODEAS~1 --= SodeaSoft
06/10/2007 12:59:17 ... SONYER~1 --= Sony Ericsson
20/03/2006 05:45:50 ... SONYSE~1 --= Sony Setup
12/07/2005 13:17:19 ... TERRAG~1 --= TerraGame
10/09/2005 07:48:43 ... TIEDUC~1 --= TI Education
19/01/2008 10:24:01 ... TRENDM~1 --= Trend Micro
04/07/2005 14:39:20 ... Trymedia --= Trymedia
14/07/2006 15:22:22 ... TWEAK-~1 --= Tweak-XP Pro 4
19/08/2007 18:21:30 ... UNINST~1 --= Uninstall Information
22/06/2005 04:15:24 ... WATCHT~1 --= Watchtower
10/06/2007 17:45:19 ... WI1F86~1 --= Windows Live
05/02/2007 19:21:41 ... WIE5D0~1 --= Windows Live Safety Center
12/10/2005 17:22:42 ... WINDOW~4 --= Windows Media Bonus Pack for Windows XP
01/02/2006 14:18:01 ... WI4DF6~1 --= Windows Media Connect 2
03/06/2005 11:51:02 ... WINDOW~3 --= Windows Media Player
03/06/2005 11:49:33 ... WINDOW~1 --= Windows NT
03/06/2005 11:49:53 ... WINDOW~2 --= WindowsUpdate
03/06/2005 17:02:33 ... WinRAR ----= WinRAR
03/06/2005 11:53:49 ... xerox -----= xerox
30/12/2007 10:14:29 ... XOFTSP~1 --= XoftSpySE
14/07/2006 15:01:13 ... XviD ------= XviD


___________________________________________________________________________

=> Clés registre


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :


___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

- Fin du rapport -
0
Réponse 11 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
19 janv. 2008 à 13:58
très bien, fais ce qui est indiqué ici stp :

http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

++
0
Réponse 12 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
19 janv. 2008 à 21:31
rapport AVG :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:21:13 19/01/2008

+ Résultat de l'analyse:



HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2EEB4FA-B6D6-41B9-9CFA-ABA87F862BCB} -> Adware.Generic : Ignoré.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2EEB4FA-B6D6-41B9-9CFA-ABA87F862BCB} -> Adware.Generic : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360218.exe -> Downloader.Agent.hha : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360247.exe -> Downloader.Agent.hha : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360217.exe -> Downloader.Agent.hhc : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360246.exe -> Downloader.Agent.hhc : Ignoré.
:mozilla.150:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.151:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.30:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.31:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.198:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.199:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.200:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.201:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.191:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.21:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.22:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.23:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.25:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.63:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.64:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.65:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.66:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.91:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.37:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Atdmt : Ignoré.
:mozilla.71:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.172:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Clickbank : Ignoré.
:mozilla.58:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.10:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.98:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.155:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.156:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@fastclick[2].txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.117:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.135:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.55:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.134:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.88:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.49:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.50:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.51:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.52:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.53:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.54:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.56:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.17:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.20:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.21:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.22:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.28:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.29:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.17:C:\Documents and Settings\Christian\Application Data\Mozilla\Firefox\Profiles\3tyrhjfk.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.92:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.94:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.228:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.75:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.76:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.164:C:\Documents and Settings\Nicole\Application Data\Mozilla\Firefox\Profiles\ghdt2dea.default\cookies.txt -> TrackingCookie.Webtrends : Ignoré.
C:\Documents and Settings\Nicole\Cookies\nicole@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360657.exe -> Trojan.Inject.qu : Ignoré.
C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360667.exe -> Trojan.Inject.qu : Ignoré.


Fin du rapport
0
Réponse 13 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
19 janv. 2008 à 21:44
est-ce que tu as supprimé tout ce qu'avg a trouvé ???

++
0
Réponse 14 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
20 janv. 2008 à 11:14
Yes j'ai suprimer tous les virus... AVG a confirmer! Je sais pas pourquoi le rapport les notes comme ignorés...
0
Réponse 15 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
20 janv. 2008 à 13:46
voici le rapport bitdefender :
BitDefender Online Scanner



Scan report generated at: Sun, Jan 20, 2008 - 13:27:03
Scan path: A:\;C:\;D:\;E:\;F:\;
Statistics
Time
02:05:16
Files
298279
Folders
8843
Boot Sectors
5
Archives
6383
Packed Files
11704
Results
Identified Viruses
1
Infected Files
25
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
25
Engines Info
Virus Definitions
892232
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
14
Archive plugins
38
Unpack plugins
7
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP665\A0358041.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358158.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358160.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP666\A0358161.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360092.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360094.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360095.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360105.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP673\A0360126.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360128.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360140.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360151.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360153.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360155.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360156.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360175.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360196.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360214.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360215.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP674\A0360216.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360244.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP675\A0360245.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP679\A0360499.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360523.exe
Deleted

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Infected with: Trojan.Obfus.6.Gen

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Disinfection failed

C:\System Volume Information\_restore{817CDFFA-0E5F-4676-85D2-A2DF7824E88C}\RP680\A0360673.exe
Deleted
0
Réponse 16 / 17
cogotch Messages postés 11 Date d'inscription dimanche 13 janvier 2008 Statut Membre Dernière intervention 19 janvier 2009
20 janv. 2008 à 13:49
enfin le rapport hijackthis :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:47:55, on 20/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\ShareDLL\CtNotify.exe
C:\Program Files\Creative\ShareDLL\MediaDet.Exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk580YYRE
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab
O16 - DPF: {1F831FA7-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD LT 2002 Fra\InstFred.ocx
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KXHCM10 Control) - http://sakura777.miemasu.net/kxhcm10.ocx
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://metaboli.club-internet.fr/components/Metaboli.ocx
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://zone.msn.com/bingame/luxr/default/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (OD2 Music Manager) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Roxio Inc. - C:\WINDOWS\system32\ImapiRox.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
0
Réponse 17 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
20 janv. 2008 à 17:17
Salut

ok, où en sont tes soucis ??

++
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Encore les CiD
doudoudim -
doudoudim -

18 réponses