Help ! Trojan...

Fermé
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014 - 28 janv. 2008 à 16:20
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 - 6 mars 2008 à 15:20
Bonjour à tous,

Je viens quémander de l'aide auprès des personnes compétentes de ce forum car mon ordi est infesté de "trojan" !!! Config = Windows XP SP2 et Internet Explorer 7.00

J'ai suivi les conseils ultérieurs de certains posts similaires.

J'ai téléchargé AVG Anti-Spyware et voici le rapport :

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{944864a5-3916-46e2-96a9-a2e84f3f1208} -> Adware.Accoona : Nettoyé.
HKU\S-1-5-21-2447403860-3315593978-534950594-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyé.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1adbcce8-cf84-441e-9b38-afc7a19c06a4} -> Adware.ActivShopper : Nettoyé.
HKU\S-1-5-21-2447403860-3315593978-534950594-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1ADBCCE8-CF84-441E-9B38-AFC7A19C06A4} -> Adware.ActivShopper : Nettoyé.
HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Nettoyé.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c5af2622-8c75-4dfb-9693-23ab7686a456} -> Adware.Generic : Nettoyé.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\runner1 -> Adware.Generic : Nettoyé.
HKU\S-1-5-21-2447403860-3315593978-534950594-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5AF2622-8C75-4DFB-9693-23AB7686A456} -> Adware.Generic : Nettoyé.
C:\Program Files\p2pnetworks -> Adware.MediaPipe : Nettoyé.
C:\Program Files\p2pnetworks\amp2pl.exe -> Adware.MediaPipe : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0030940.exe -> Backdoor.Agent.alm : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0031123.exe -> Backdoor.Agent.alm : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0029981.exe -> Dialer.Agent.ao : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0029985.exe -> Downloader.Adload.pr : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0031135.exe -> Downloader.Agent.erf : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0029976.sys -> Rootkit.Agent.pr : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@cmpmedica.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@fnac.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@himedia.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@mistergooddeal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@notrefamille.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@e-2dj6whkysic5clp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@e-2dj6wjkougc5wkp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@overture[2].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@ads.planetactive[2].txt -> TrackingCookie.Planetactive : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@sexlist[1].txt -> TrackingCookie.Sexlist : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@counter1.sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@counter3.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@counter6.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Youandme\Cookies\youandme@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
C:\Program Files\Temporary\kernInst.exe -> Trojan.Agent.dwb : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0029983.exe -> Trojan.Dialer.eg : Nettoyé.
C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0029978.sys -> Worm.Agent.l : Nettoyé.


J'ai supprimé ce qu'il a trouvé.

J'ai ensuite téléchargé HijackThis et voici le rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:15:54, on 28/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\DOCUME~1\Youandme\LOCALS~1\Temp\services.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\wrkl5.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\bhij.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\Vente Flash\vente_flash.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\Wanadoo\Watch.exe
c:\d.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fichiers communs\Symantec Shared\NMain.exe
C:\Program Files\Norton Internet Security\comHost.exe
C:\Program Files\Outlook Express\msimn.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/?ref=go target='_blank' rel='nofollow'>http://go.microsoft.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\msntb.dll
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O2 - BHO: Microsoft copyright - {FFFFFFFF-F538-4f86-ABAF-E9D94D5C007C} - socksys.dll (file missing)
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Flash Player2] C:\DOCUME~1\Youandme\LOCALS~1\Temp\services.exe
O4 - HKLM\..\Run: [Windows Service] C:\Documents and Settings\Youandme\Mes documents\valemichel\nikugm.exe
O4 - HKLM\..\Run: [Winupdates] wrkl5.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [sysrest32.exe] C:\WINDOWS\system32\sysrest32.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [WintelUpdate] C:\bhij.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

104 réponses

Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
30 janv. 2008 à 23:58
Ouf, te revoilà Jo ! Thanks...

Voilà déjà le rapport HJT après avoir fait la manip demandée :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:53:55, on 30/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SECURI~1\NSCSRVCE.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [sysrest32.exe] C:\WINDOWS\system32\sysrest32.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
31 janv. 2008 à 00:09
ouais, le TT !!!
la vitesse pas trop mon trip, mais j'essayerais bien sur un Supermot' en circuit...
J'ai eu un zxr 750, ce con me faisait de ces frayeurs... je l'ai refourgué, mais avec l'age ( j'suis encore un sportif ) mais les cascades ne me disent plus trop rien, je me suis posé lol !
La voile en habitable avec des potes, le VTT pour la forme, en bécane, ouais, je le sens bien, un supermot' dès que le beau temps reviendra ;o))
Bon, je regarde ça, je te mettrai la suite pour demain.

Bonne soirée

Jo.
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
31 janv. 2008 à 01:11
Télécharge SDFix sur ton bureau
Lance le pour l'installer sur le bureau. Un dossier va se créer .

Redémarre en mode sans échec.
Sur le bureau, il devrait y avoir un répertoire SDFix, ouvre le et lance le fichier RunThis.bat (le bat peut ne pas apparaître)
- Tape Y et valide avec Entrée.
- Appuie sur une touche pour redémarrer le pc.
- Le démarrage sera peut être plus long.
- Après redémarrage, appuie sur une touche pour afficher le rapport. Enregistre le sur le bureau.
Si il ne s'affiche pas, celui ci se trouve aussi dans le répertoire SDFix, nom du rapport : report.txt.
-----------------------------------------------------------------------------------------------------------------
Ferme tous les programmes en cours d'exécution.
Renomme Hijackthis.exe en Spy.exe
Lance Spy.exe.
Clique sur Do a system scan and save a logfile.
Le scan se fait très rapidement, puis un rapport apparaît dans le bloc-note.
Depuis ce bloc-note, copie l’intégralité du rapport et poste le ici dans ta prochaine réponse, avec celui de Sdfix .

@ deux mains ;o))
to be continued.......
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
2 févr. 2008 à 11:35
Salut,

Désolé pour le retard mais je me suis endormi comme une pov'lopette hier soir !!!

J'ai suivi tes instructions et voici donc le rapport Sdfix :

SDFix: Version 1.135

Run by Youandme on 02/02/2008 at 11:12

Microsoft Windows XP [version 5.1.2600]

Running From: C:\SDFix

Safe Mode:
Checking Services:

Name:
astq

Path:
\??\C:\WINDOWS\system32\drivers\astq.tga

astq - Deleted



Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...


Normal Mode:
Checking Files:

Trojan Files Found:

C:\-20743~1 - Deleted
C:\WINDOWS\hotporn.exe - Deleted
C:\WINDOWS\ie_32.exe - Deleted
C:\WINDOWS\system32\adult.txt - Deleted
C:\WINDOWS\system32\finance.txt - Deleted
C:\WINDOWS\system32\lt.res - Deleted
C:\WINDOWS\system32\other.txt - Deleted
C:\WINDOWS\system32\pharma.txt - Deleted
C:\WINDOWS\system32\sft.res - Deleted
C:\WINDOWS\system32\drivers\astq.tga - Deleted



Folder C:\Program Files\Helper - Removed


Removing Temp Files...

ADS Check:



Final Check:

disk not found C:\

please note that you need administrator rights to perform deep scan

Remaining Services:
------------------



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:*:Disabled:ActiveSync Connection Manager"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\DOCUME~1\\Youandme\\LOCALS~1\\Temp\\services.exe"="C:\\DOCUME~1\\Youandme\\LOCALS~1\\Temp\\services.exe:*:Enabled:Flash Player2"
"C:\\Documents and Settings\\Youandme\\Mes documents\\valemichel\\nikugm.exe"="C:\\Documents and Settings\\Youandme\\Mes documents\\valemichel\\nikugm.exe:*:Enabled:Windows Service"
"c:\\windows\\system32\\wrkl5.exe"="c:\\windows\\system32\\wrkl5.exe:*:Enabled:wrkl5"
"C:\\d.exe"="C:\\d.exe:*:Enabled:enable"
"C:\\WINDOWS\\system32\\sysrest32.exe"="C:\\WINDOWS\\system32\\sysrest32.exe:*:Enabled:enable"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

Remaining Files:
---------------
C:\WINDOWS\hotporn.exe Found
C:\WINDOWS\ie_32.exe Found

File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes:

Thu 1 Nov 2007 5,903,928 A..H. --- "C:\Program Files\Picasa2\setup.exe"
Wed 16 May 2007 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Mon 21 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0031108.sys"
Mon 21 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP278\A0031130.sys"
Mon 21 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP280\A0031211.sys"
Mon 21 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP283\A0031289.sys"
Mon 21 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP283\A0031302.sys"
Thu 24 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP284\A0031327.sys"
Fri 25 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP284\A0031352.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP284\A0031367.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP284\A0032365.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP284\A0032672.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP285\A0032772.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP285\A0032847.sys"
Tue 29 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP286\A0033847.sys"
Wed 30 Jan 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP286\A0033862.sys"
Fri 1 Feb 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP287\A0033881.sys"
Sat 2 Feb 2008 96 A..H. --- "C:\System Volume Information\_restore{626D9BD5-11D8-49A1-B657-D272D1F6275E}\RP287\A0033957.sys"
Mon 12 Feb 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp"
Fri 24 Oct 2003 19,456 A..H. --- "C:\Documents and Settings\Youandme\Mes documents\Michel\~WRL2934.tmp"
Sat 2 Feb 2008 96 A..H. --- "C:\Program Files\Common Files\X10\Common\x10prod.sys"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\0a67b6c406b1d7e0f5c1e6f6d44a3f6e\BITC.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\18b19374451d28a8fbaf1939cf31ff45\BITF.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\22fb973e059470cc1b5d76c4ae605351\BIT13.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\26924cbc8132a10b438ce6e2b49d4652\BITB.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\2769b111678c52099a3b3123b12f2325\BIT10.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\30285791903730fbf957a83562db4ff4\BITD.tmp"
Fri 25 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\585dc2612ebcefc90e7dee4c276ee95e\BITD.tmp"
Thu 20 Sep 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\770ab2029a713ab32135544cfa9c6da0\BIT1A.tmp"
Thu 20 Sep 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\8716c608174f1f63561ea4abedb6bf9b\BIT19.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\9e870549834e2bceb796e44a1e3ac6f5\BIT12.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\cb8921d0c7830b2f33c00fa4c8a10d17\BITE.tmp"
Thu 13 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\d77b9b5b8fed23dd91f50d167cce60d3\BIT11.tmp"

Finished!



Et maintenant voici le rapport HJT (renommé Spy.exe) :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:32:43, on 02/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SECURI~1\NSCSRVCE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [sysrest32.exe] C:\WINDOWS\system32\sysrest32.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
2 févr. 2008 à 20:55
peut tu me faire ceci STP ?

1) Ouvrir l'explorateur windows
Démarrer > programmes > Accessoires > Explorateur windows

Clique sur outils > options des dossiers > affichage.
Sélectionne :
° afficher les fichiers et dossiers cachés,
° décocher "masquer les extensions des fichiers dont le type est connu",
° décocher masquer les fichiers protégés du système d'exploitation (recommandé)".
° " Appliquer " et " Ok"

2) Peux-tu tester ces deux fichiers ICI stp ?
Clique sur ce lien : http://www.virustotal.com/en/indexf.html
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\system32\sysrest32.exe

Clique sur parcourir et indique le chemin des fichiers désignés.
Clique sur Send. Au bout de quelques minutes, un rapport est généré. Poste-leS dans ta prochaine réponse.

Tuto : http://pageperso.aol.fr/loraline60/virus_total.htm

@ plus !


to be continued.......
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
2 févr. 2008 à 22:08
Voici le rapport pour rxjddnvj.exe (en espèrant avoir fait ce que tu voulais) :

Fichier rxjddnvj.exe reçu le 2008.02.02 21:30:09 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE


Résultat: 14/32 (43.75%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: 4.
L'heure estimée de démarrage est entre 47 et 68 secondes.
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:


Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.2.3.10 2008.02.02 -
AntiVir 7.6.0.61 2008.02.01 TR/Crypt.FKM.Gen
Authentium 4.93.8 2008.02.01 -
Avast 4.7.1098.0 2008.02.02 Win32:VB-FXN
AVG 7.5.0.516 2008.02.02 SHeur.AOEE
BitDefender 7.2 2008.02.02 Trojan.VB.NMF
CAT-QuickHeal 9.00 2008.02.01 Hoax.Renos.arv (Not a Virus)
ClamAV 0.92 2008.02.02 -
DrWeb 4.44.0.09170 2008.02.02 -
eSafe 7.0.15.0 2008.01.28 suspicious Trojan/Worm
eTrust-Vet 31.3.5504 2008.02.01 -
Ewido 4.0 2008.02.02 -
FileAdvisor 1 2008.02.02 -
Fortinet 3.14.0.0 2008.02.02 -
F-Prot 4.4.2.54 2008.02.01 -
F-Secure 6.70.13260.0 2008.02.01 not-virus:Hoax.Win32.Renos.arv
Ikarus T3.1.1.20 2008.02.02 Virus.Win32.VB.FXN
Kaspersky 7.0.0.125 2008.02.02 not-virus:Hoax.Win32.Renos.arv
McAfee 5221 2008.02.01 -
Microsoft 1.3204 2008.02.02 -
NOD32v2 2845 2008.02.02 -
Norman 5.80.02 2008.02.01 -
Panda 9.0.0.4 2008.02.02 Adware/TopSpyware
Prevx1 V2 2008.02.02 -
Rising 20.29.22.00 2008.01.30 Trojan.Win32.Undef.ccf
Sophos 4.26.0 2008.02.02 Sus/Behav-1021
Sunbelt 2.2.907.0 2008.02.02 -
Symantec 10 2008.02.02 -
TheHacker 6.2.9.205 2008.02.01 Aplicacion/Renos.arv
VBA32 3.12.6.0 2008.02.02 -
VirusBuster 4.3.26:9 2008.02.01 -
Webwasher-Gateway 6.6.2 2008.02.02 Trojan.Crypt.FKM.Gen
Information additionnelle
File size: 89608 bytes
MD5: 9d05176c3c9515c1b0c5558751d480e7
SHA1: fcec582c1aa54f5549190bf0de19733f1b368af5
PEiD: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
packers: UPX
packers: UPX
packers: UPX
packers: PE_Patch.UPX, UPX


ATTENTION: VirusTotal iest un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.

Et pour sysrest32.exe ça me met "fichier introuvable"...

Je recoche les cases pécédemment sélectionnées dans l'explorateur Windows j'imagine ?

@+
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
2 févr. 2008 à 23:04
Relance HijackThis, choisis "do a scan only"
coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".

O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O4 - HKLM\..\Run: [sysrest32.exe] C:\WINDOWS\system32\sysrest32.exe


Fixer les lignes " http://pageperso.aol.fr/balltrap34/demohijack.htm
Générer un rapport" http://pageperso.aol.fr/balltrap34/demohijack.htm
-------------------------------------------------------------------------------

une fois ceci de fait, refais moi un nouveau log Hijack' !
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
3 févr. 2008 à 02:44
C'est bon, j'ai fait tout ça et voici le rapport HJT après :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:42:43, on 03/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SECURI~1\NSCSRVCE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
3 févr. 2008 à 21:25
Salut !

Relance HijackThis, choisis "do a scan only"
coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)


Fixer les lignes " http://pageperso.aol.fr/balltrap34/demohijack.htm
Générer un rapport" http://pageperso.aol.fr/balltrap34/demohijack.htm

ensuite, Fait un scan antivirus en ligne sous Internet Explorer
Bitdefender Scan on line

Copie/colle le résultat ici.

En bas, à gauche de la fenêtre, clique sur BitDefender SCAN ONLINE
Dans la nouvelle fenêtre, clique sur I agree
La fenêtre change encore, clique sur Click here to scan
Les signatures se chargent, etc...

Comment faire : Aide toi de ce Tuto (merci Morgane) http://pageperso.aol.fr/loraline60/bitdefender_scan.htm

Poste en réponse le rapport de scan qui se trouve ici C:\windows\bdoscan8\scanres.txt (html)



0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 03:11
Salut,

J'ai fait tout ce que tu m'as demandé...

Voici le rapport BitDefender :



BitDefender Online Scanner



Rapport d'analyse généré à: Mon, Feb 04, 2008 - 02:31:28





Voie d'analyse: C:\;D:\;E:\;F:\;







Statistiques

Temps
01:16:53

Fichiers
472171

Directoires
7726

Secteurs de boot
3

Archives
14122

Paquets programmes
29506




Résultats

Virus identifiés
24

Fichiers infectés
252

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
324




Info sur les moteurs

Définition virus
895250

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
14

Archive des plugins
38

Unpack des plugins
7

E-mail plugins
6

Système plugins
1




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
*;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Infecté par: Trojan.Kobcka.BE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Infecté pa
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 03:11
Salut,

J'ai fait tout ce que tu m'as demandé...

Voici le rapport BitDefender :



BitDefender Online Scanner



Rapport d'analyse généré à: Mon, Feb 04, 2008 - 02:31:28





Voie d'analyse: C:\;D:\;E:\;F:\;







Statistiques

Temps
01:16:53

Fichiers
472171

Directoires
7726

Secteurs de boot
3

Archives
14122

Paquets programmes
29506




Résultats

Virus identifiés
24

Fichiers infectés
252

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
324




Info sur les moteurs

Définition virus
895250

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
14

Archive des plugins
38

Unpack des plugins
7

E-mail plugins
6

Système plugins
1




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
*;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Infecté par: Trojan.Kobcka.BE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Infecté par: Trojan.Pandex.L

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Infecté par: Trojan.Downloader.Adload.NCS

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Infecté par: Trojan.Downloader.Agent.YZD

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Infe
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 03:11
Salut,

J'ai fait tout ce que tu m'as demandé...

Voici le rapport BitDefender :



BitDefender Online Scanner



Rapport d'analyse généré à: Mon, Feb 04, 2008 - 02:31:28





Voie d'analyse: C:\;D:\;E:\;F:\;







Statistiques

Temps
01:16:53

Fichiers
472171

Directoires
7726

Secteurs de boot
3

Archives
14122

Paquets programmes
29506




Résultats

Virus identifiés
24

Fichiers infectés
252

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
324




Info sur les moteurs

Définition virus
895250

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
14

Archive des plugins
38

Unpack des plugins
7

E-mail plugins
6

Système plugins
1




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
*;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Infecté par: Trojan.Kobcka.BE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Infecté par: Trojan.Pandex.L

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Infecté par: Trojan.Downloader.Adload.NCS

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Infecté par: Trojan.Downloader.Agent.YZD

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Infecté par: Trojan.Downloader.Searcher.A

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Infecté par: Trojan.Downloader.Searcher.A

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Infecté par: Trojan.Obfus.Gen

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492C7F23.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492C7F23.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\49F30048.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\49F30048.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Infecté par: Trojan.Kobcka.CG

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Infecté par: Trojan.Downloader.Agent.BHU

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Infecté par: Trojan.Proxy.Small.GE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Infecté par: Trojan.Generic.78149

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7F3031B3.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7F3031B3.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7F3031B3.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ableci.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ableci.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ableci.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/awrabk.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/awrabk.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/awrabk.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ayebbk.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ayebbk.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ayebbk.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/azqgzt.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/azqgzt.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/azqgzt.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bhij.exe
Infecté par: Trojan.Proxy.Small.GE

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bhij.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bhij.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bodetu.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bodetu.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bodetu.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqcyyt.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqcyyt.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqcyyt.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqwmgf.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqwmgf.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/bqwmgf.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cbocns.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cbocns.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cbocns.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cvbkwtb.exe
Infecté par: Dropped:Trojan.Kobcka.CG

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cvbkwtb.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/cvbkwtb.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/d.exe
Infecté par: Trojan.Delf.Inject.A

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/d.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/d.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/doxmln.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/doxmln.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/doxmln.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/dyjibq.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/dyjibq.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/dyjibq.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/emzflf.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/emzflf.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/emzflf.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fgjpiq.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fgjpiq.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fgjpiq.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fzqeci.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fzqeci.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/fzqeci.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gcyklm.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gcyklm.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gcyklm.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gkxmtu.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gkxmtu.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/gkxmtu.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/hubhwz.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/hubhwz.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/hubhwz.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/insgdz.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/insgdz.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/insgdz.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jqxjts.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jqxjts.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jqxjts.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jswsje.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jswsje.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/jswsje.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kdqqxw.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kdqqxw.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kdqqxw.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/krymdb.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/krymdb.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/krymdb.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kwjirz.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kwjirz.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/kwjirz.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lcsywu.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lcsywu.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lcsywu.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lkbvpf.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lkbvpf.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/lkbvpf.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mbkuke.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mbkuke.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mbkuke.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mkpfwc.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mkpfwc.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/mkpfwc.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ojapda.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ojapda.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ojapda.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ookhsn.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ookhsn.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/ookhsn.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oppoyg.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oppoyg.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oppoyg.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oxxflk.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oxxflk.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/oxxflk.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/qqrnmg.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/qqrnmg.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/qqrnmg.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rmbzoo.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rmbzoo.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rmbzoo.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rpylyb.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rpylyb.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rpylyb.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rwfltf.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rwfltf.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/rwfltf.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/services.exe
Infecté par: Trojan.Downloader.JJLV

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/services.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/services.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tcqtby.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tcqtby.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tcqtby.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tikjst.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tikjst.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/tikjst.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/twzugp.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/twzugp.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/twzugp.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uidyjd.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uidyjd.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uidyjd.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/upaq.exe
Infecté par: Trojan.Peed.Gen

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/upaq.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/upaq.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uzakzc.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uzakzc.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/uzakzc.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/wpdowt.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/wpdowt.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/wpdowt.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/xtjajm.exe
Infecté par: Trojan.Retapu.D

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/xtjajm.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/xtjajm.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/zbuzbx.exe
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/zbuzbx.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip=>backup/zbuzbx.exe
Supprimé

C:\Documents and Settings\Youandme\Bureau\MSNFix\MSNFix\29012008_21410110.zip
Mis à jour

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx=>(message 0)=>[Subject: Twice Blest][Date: Mon, 5 Feb 2007 18:03:20 +0100]=>(MIME part)=>postcard.exe
Infecté par: Win32.Worm.Nurech.A

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx=>(message 0)=>[Subject: Twice Blest][Date: Mon, 5 Feb 2007 18:03:20 +0100]=>(MIME part)=>postcard.exe
Echec de la désinfection

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx=>(message 0)=>[Subject: Twice Blest][Date: Mon, 5 Feb 2007 18:03:20 +0100]=>(MIME part)=>postcard.exe
Supprimé

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx=>(message 0)=>[Subject: Twice Blest][Date: Mon, 5 Feb 2007 18:03:20 +0100]=>(MIME part)
Mis à jour

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx=>(message 0)
Mis à jour

C:\Documents and Settings\Youandme\Local Settings\Application Data\Identities\{4D3C32A1-B750-4EF9-914D-89F3192346D1}\Microsoft\Outlook Express\Fabien Roche.dbx
Echec de la mise à jour

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/IExplorerEmbeddedFrame$1.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/IExplorerEmbeddedFrame$2.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/IExplorerEmbeddedFrame$3.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/IExplorerEmbeddedFrame$4.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/IExplorerEmbeddedFrame.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/WNetscapeEmbeddedFrame$1.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/WNetscapeEmbeddedFrame$2.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/frame/WNetscapeEmbeddedFrame.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerAppletStatusListener$1.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerAppletStatusListener.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerPluginContext.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerPluginObject$1.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerPluginObject$Initer.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/IExplorerPluginObject.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/LifeCycleManager.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/WNetscapePluginContext.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/WNetscapePluginObject$1.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/WNetscapePluginObject$2.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/WNetscapePluginObject$Initer.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/viewer/WNetscapePluginObject.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\plugin.jar=>sun/plugin/WJcovUtil.class
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\psfont.properties.ja
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\psfontj2d.properties
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\resources.jar
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\resources.jar=>META-INF/MANIFEST.MF
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\resources.jar=>META-INF/mailcap.default
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\resources.jar=>META-INF/mimetypes.default
Nettoyé

C:\Program Files\Java\jre1.6.0_03\lib\resources.jar=>META-INF/services/j
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 12:30
Salut,

Ne tiens pas compte du précédent rapportqui contenant TOUS les fichiers analysés et qui était du coup trop balèze à envoyer...


Le bon, c'est celui-ci :

BitDefender Online Scanner



Rapport d'analyse généré à: Mon, Feb 04, 2008 - 12:15:10





Voie d'analyse: C:\;D:\;E:\;F:\;







Statistiques

Temps
01:16:23

Fichiers
472707

Directoires
7732

Secteurs de boot
3

Archives
14119

Paquets programmes
29580




Résultats

Virus identifiés
19

Fichiers infectés
138

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
273




Info sur les moteurs

Définition virus
895267

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
14

Archive des plugins
38

Unpack des plugins
7

E-mail plugins
6

Système plugins
1




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
*;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021C685B=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021C685B=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\021C685B=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02C82BF0=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02C82BF0=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\02C82BF0=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\032E21F8=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\032E21F8=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\032E21F8=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04753B46.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C55DC7=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C55DC7=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06C55DC7=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\06DA7A02.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094405F9=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094405F9=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094405F9=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094B59F1=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094B59F1=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\094B59F1=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\098C21A9=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\098C21A9=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\098C21A9=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09AA1B89=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09AA1B89=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E40F48=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E40F48=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E40F48=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E83945=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E83945=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09E83945=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EB6341=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EB6341=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EB6341=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EE0D3E=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EE0D3E=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EE0D3E=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A053325=>(Quarantine-2)
Infecté par: Dropped:Trojan.Kobcka.CG

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A053325=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A053325=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A085D21=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A085D21=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A085D21=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A0B071D=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A0B071D=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A0B071D=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A125B16=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A125B16=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A125B16=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A150513=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A150513=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A150513=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A192F0F=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A192F0F=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A192F0F=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A1C590B=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A1C590B=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A1C590B=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A2F54F6=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A2F54F6=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0A2F54F6=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAA1AC6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AAD44C3.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0AC16DB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0BB91FE7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0DBC7DBE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EBE5DF6=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EBE5DF6=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EBE5DF6=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F312D58=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F312D58=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F312D58=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\14FE1E3E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\15057237.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\150601BF=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\150601BF=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\150601BF=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1574252A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\165129B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19E923ED=>(Quarantine-2)
Infecté par: Dropped:Trojan.Kobcka.CG

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19E923ED=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\19E923ED=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AE356BD=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AE356BD=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AE356BD=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1BE226B5=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1BE226B5=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1BE226B5=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C6B176F=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C6B176F=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C6B176F=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Infecté par: Trojan.Kobcka.BE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1F8616FD.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1FDF6694=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1FDF6694=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1FDF6694=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20DE368C=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20DE368C=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\20DE368C=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\21E165AF.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22DC567C=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22DC567C=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\22DC567C=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\232C577D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23644569=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23644569=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\23644569=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24614046=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24614046=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24614046=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Infecté par: Trojan.Pandex.L

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2479398A.sys=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\24820574.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25795FEC=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25795FEC=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\25795FEC=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\269D2416=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\269D2416=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\269D2416=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2711380A=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2711380A=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2711380A=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Infecté par: Trojan.Downloader.Adload.NCS

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\28F020A0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2A6677B2=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2A6677B2=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2A6677B2=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D08166F=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D08166F=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D08166F=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7221AE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Infecté par: Trojan.Downloader.Agent.YZD

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2D7B03A1.tmp=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2F106D1E=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2F106D1E=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\2F106D1E=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32C518A7=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32C518A7=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32C518A7=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\336E6018=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\336E6018=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\336E6018=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\36303F1A=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\36303F1A=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\36303F1A=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3742248A.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\37527678.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39290CBA.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\392C36B6.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39310B00=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39310B00=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39310B00=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3AB16CD0.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D004DF1=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D004DF1=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D004DF1=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D501116=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D501116=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3D501116=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3EEE0D38=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3EEE0D38=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3EEE0D38=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4046189D.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404A4299.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\404D6C96.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40501692.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4054408E.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40576A8B.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405A1487.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\405D3E84.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40616880.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4064127C.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\40673C79.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D51AE6.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41D844E3.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\42C1622B.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Infecté par: Trojan.Downloader.Searcher.A

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\43493597.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Infecté par: Trojan.Downloader.Searcher.A

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\434C5F94.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Infecté par: Trojan.Obfus.Gen

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\435C3182.txt=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\44F80FB2.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\45597F91=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\45597F91=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\45597F91=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\482A13E8=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\482A13E8=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\482A13E8=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\489009EF=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\489009EF=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\489009EF=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\48F67FF7=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\48F67FF7=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\48F67FF7=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492C7F23.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\492C7F23.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\49F30048.exe=>(Quarantine-2)
Infecté par: Generic.Mydoom.7C3714C0

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\49F30048.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Infecté par: Trojan.Adclicker.GY

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4A3651B3.dll=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4B7766D3.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Infecté par: Trojan.Kobcka.CG

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\4E2C5DA7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50894BB1.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\529738CF.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\52B10709=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\52B10709=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\52B10709=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\542045EE=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\542045EE=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\542045EE=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\54863BF6=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\54863BF6=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\54863BF6=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\58DF28EA=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\58DF28EA=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\58DF28EA=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\59B70ACB.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5AAA1163.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5B633EB9=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5B633EB9=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5B633EB9=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5C1907B0.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Infecté par: Trojan.Downloader.Agent.BHU

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5EFF5BF9.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5F125681=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5F125681=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5F125681=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5FB101ED=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5FB101ED=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5FB101ED=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\635C3E78=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\635C3E78=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\635C3E78=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64D954C9=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64D954C9=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64D954C9=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Infecté par: Trojan.Proxy.Small.GE

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\64ED43F7.msn=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\656D549C=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\656D549C=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\656D549C=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\659B206C=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\659B206C=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\659B206C=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\66015470=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\66015470=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\66015470=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\67A943AE.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C576CFB.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Infecté par: Trojan.Generic.78149

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6EA942BC.$$A=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6F8F5F7B=>(Quarantine-2)
Infecté par: Backdoor.Sdbot.DFEO

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6F8F5F7B=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6F8F5F7B=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73544453=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73544453=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73544453=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\73A075B5.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780B6C1B.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\780F1617.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7818140C.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\781F6805.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79CB642E.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79D13827.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DB361D.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79DD6DB7.exe=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AE728F6.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Infecté par: Trojan.Proxy.Xorpix.BT

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AEA52F2.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF126EB.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Infecté par: Trojan.Crypt.AB

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Echec de la désinfection

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AF77AE4.htm=>(Quarantine-2)
Supprimé

C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7AFC1660=>(Quarantine-2)
Infecté par: Trojan.DNSChanger.BX

C:\Documents and Se
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 12:36
Par contre, est-ce que BitDefender ne m'a pas supprimé un fichier important car au démarrage, j'ai un message qui me dit "ne trouve pas tel fichier..." et après ça poursuit normalement... quoique un peu long à démarrer...

Au cas où tu en aurais besoin, voici un nouveau rapport HJT :</souligne>


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:34:47, on 04/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SECURI~1\NSCSRVCE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
4 févr. 2008 à 18:34
Relance HijackThis, choisis "do a scan only"
coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O16 - DPF: {E1AF091A-9F23-4059-89D7-C05EE073285D} (Canal+ Active MSWAY) - https://www.canalplus.com/canalplay/

Fixer les lignes " http://pageperso.aol.fr/balltrap34/demohijack.htm
Générer un rapport" http://pageperso.aol.fr/balltrap34/demohijack.htm
--------------------------------------------------------------------------------------------------------------
France Telecom Routing Table Service (FTRTSVC) ==> Quelle est la fonction de ce service : France Telecom Routing Table Service ?
C'est un service de FranceTelecom, bien inutile, qui malheureusement est à l'origine de plantage sur certaines machines ... (aucun probleme à l'enlever, tout fonctionnera parfaitement)
Wanadoo a tendance à ajouter des trucs qui ne servent à rien!
Comme : O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe

Lance HJT ==> Clic sur [Open the Misc Tools section] > puis [Open Uninstall Manager…] ==> sélectionne France Telecom Routing Table Service (FTRTSVC) > clic sur [Delete this entry].
Puis tu relances HJT ==> Clic sur [Open the Misc Tools section] > puis [Open process manager] > puis sur [Kill process] ; ensuite tu cliques sur [Back] et tu coches la même ligne dans la liste.
(merci Al')

une fois ceci executé, reposte un nouveau rapport HJT !

En principe, tu n'es plus infecté, tout ce trouve dans la quarantaine Norton.

suivant le nouveau HJT, on verra la suite !

@+


0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
4 févr. 2008 à 23:35
Salut M. Le Samaritain !!!

J'ai "fixé" les lignes indiquées mais par contre pas moyen de faire la manip concernant FTRTSVC car elle n'apparaît pas dans la liste lorsque j'ouvre Open Uninstall Manager dans HJT... bizarre non ?

Ce serait cool si je n'étais plus infecté mais je reçois encore des messages d'alertes de "Windows Security Center" m'indiquant "Trojan Dowloaders" et mon fond d''écran est toujours un immense message d'alerte bien laid...

Et concernant d'éventuels trucs supprimés par Bit Defender qu'il n'aurait pas fallu détruire, tu en penses quoi ? Car au démarrage de l'ordi, il y a eu un message bizarre, genre "dossier truc muche introuvable"...
Et j'ai aussi des ouvertures de pages intempestives sur des sites de protection ou de scan de virus...


Voici le rapport HJT :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:28:24, on 04/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\rxjddnvj.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\PROGRA~1\FICHIE~1\SYMANT~1\SECURI~1\NSCSRVCE.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDOWS\system32\rxjddnvj.exe,
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: (no name) - {1adbcce8-cf84-441e-9b38-afc7a19c06a4} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {944864a5-3916-46e2-96a9-a2e84f3f1208} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {bb936323-19fa-4521-ba29-eca6a121bc78} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {c5af2622-8c75-4dfb-9693-23ab7686a456} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NVRotateSysTray] rundll32.exe C:\WINDOWS\system32\nvsysrot.dll,Enable
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
4 févr. 2008 à 23:59
ARfffffffff.... il est coriace celui là....
je regarde en détail, je te dis quoi dans un instant..
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
5 févr. 2008 à 12:22
J'ai souvent un message d'alerte sur "trojan.dowloader.xs"... si ça peut t'aider...

@+
0
jorginho67 Messages postés 14709 Date d'inscription mardi 11 septembre 2007 Statut Contributeur sécurité Dernière intervention 11 février 2011 1 169
5 févr. 2008 à 13:08
Je viens de me rendre compte d'un truc Mouarffffff...
est ce que tu as vidé la quarantaine de Norton ?
regarde ici http://service1.symantec.com/SUPPORT/INTER/ent-securityintl.nsf/fr_docid/20020306123732935

tiens moi au courant...
0
Dagoons Messages postés 61 Date d'inscription lundi 28 janvier 2008 Statut Membre Dernière intervention 23 août 2014
5 févr. 2008 à 14:57
Ouais j'y ai pensé qu'hier soir et j'ai tout supprimé définitivement... fallait le faire ?

Dagoons
0