Besoin d'aide pour interpréter les rapports
mag_3101
Messages postés
2
Statut
Membre
-
mag_3101 Messages postés 2 Statut Membre -
mag_3101 Messages postés 2 Statut Membre -
Bonjour,
J'ai suivi tous vos conseils afin de me débarrasser des virus et spams mais j'aurais besoin de votre aide pour lire les différents rapports.
Par avance, merci.
Rapport HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:18:39, on 25/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\Rundll32.exe
C:\PROGRA~1\SECURE~1\secp.exe
C:\DOCUME~1\Magali\LOCALS~1\Temp\clclean.0001
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CreativeLicensing.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
R3 - URLSearchHook: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: (no name) - {5CA3D70E-1895-11CF-8E15-001234567890} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\SECURE~1\secp.exe
O4 - HKLM\..\Run: [BufferZone] "C:\Program Files\BufferZone\CLIENTGUI.EXE" /STARTUP
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?cdddfdfb3e0a42b5b4416076f723ce4e
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?cdddfdfb3e0a42b5b4416076f723ce4e
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://ssl-tb.sitadelle.com/...
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mag-3101.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: BufferZone Service (BufferZoneSvc) - Unknown owner - C:\Program Files\BufferZone\CLNTSVC.EXE
O23 - Service: BufferZone DCOM Helper (BZDcomLaunch) - Unknown owner - C:\Program Files\BufferZone\BZDCOMLAUNCH.EXE
O23 - Service: BufferZone RPC Helper (BZRpcSs) - Unknown owner - C:\Program Files\BufferZone\BZRPCSS.EXE
O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CreativeLicensing.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
--
End of file - 10968 bytes
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 20:21:15 25/05/2008
+ Résultat de l'analyse:
C:\Program Files\eChanblard\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\Program Files\eChanblard\config\last.zip/EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP760\A0066632.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\Documents and Settings\Magali\Mes documents\Téléchargements\instala-emule.exe -> Not-A-Virus.PUP.Takedawnload.a : Ignoré.
:mozilla.49:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.16:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.17:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.18:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.19:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.8:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.20:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.35:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.37:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.38:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.50:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.51:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.11:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.12:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.13:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.14:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.15:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Magali\Cookies\magali@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.26:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.27:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.28:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.29:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.30:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.39:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.40:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
BitDefender Online Scanner
Statistics
Time
01:32:44
Files
363409
Folders
6946
Boot Sectors
4
Archives
36415
Packed Files
20192
Results
Identified Viruses
8
Infected Files
12
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
12
Engines Info
Virus Definitions
1235962
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
42
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Infected with: Generic.Peed.Eml.8627B911
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Disinfection failed
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Deleted
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx
Updated
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Infected with: Generic.Peed.Eml.8627B911
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Disinfection failed
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Deleted
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\cmesys.exe
Detected with: Application.VTesttool.A
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\cmesys.exe
Deleted
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\system32.exe
Detected with: Application.VTesttool.C
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\system32.exe
Deleted
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)=>(Instyler Module 10)
Infected with: Trojan.Swizzor.WB
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)=>(Instyler Module 10)
Deleted
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)
Update failed
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067042.exe
Detected with: Application.VTesttool.A
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067042.exe
Deleted
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067043.exe
Detected with: Application.VTesttool.C
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067043.exe
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0005
Detected with: Adware.Navipromo.GO
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0005
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Detected with: Spyware.618
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)=>lzma_solid_nsis0002
Detected with: Adware.Navipromo.GO
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)=>lzma_solid_nsis0002
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)
Update failed
C:\WINDOWS\system32\libweb.dll
Infected with: Backdoor.Irc.Sdbot.HK
C:\WINDOWS\system32\libweb.dll
Disinfection failed
C:\WINDOWS\system32\libweb.dll
Deleted
C:\WINDOWS\system32\msnsupport.exe
Infected with: Trojan.Agent.ABLU
C:\WINDOWS\system32\msnsupport.exe
Disinfection failed
C:\WINDOWS\system32\msnsupport.exe
Deleted
J'ai suivi tous vos conseils afin de me débarrasser des virus et spams mais j'aurais besoin de votre aide pour lire les différents rapports.
Par avance, merci.
Rapport HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:18:39, on 25/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\Rundll32.exe
C:\PROGRA~1\SECURE~1\secp.exe
C:\DOCUME~1\Magali\LOCALS~1\Temp\clclean.0001
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CreativeLicensing.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
R3 - URLSearchHook: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: (no name) - {5CA3D70E-1895-11CF-8E15-001234567890} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsec1.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon
O4 - HKLM\..\Run: [mobiswing] C:\PROGRA~1\SECURE~1\secp.exe
O4 - HKLM\..\Run: [BufferZone] "C:\Program Files\BufferZone\CLIENTGUI.EXE" /STARTUP
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?cdddfdfb3e0a42b5b4416076f723ce4e
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?cdddfdfb3e0a42b5b4416076f723ce4e
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - https://www.snapfish.fr/2/home
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - http://ssl-tb.sitadelle.com/...
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://mag-3101.spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - D:\Player\__CDS2.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: BufferZone Service (BufferZoneSvc) - Unknown owner - C:\Program Files\BufferZone\CLNTSVC.EXE
O23 - Service: BufferZone DCOM Helper (BZDcomLaunch) - Unknown owner - C:\Program Files\BufferZone\BZDCOMLAUNCH.EXE
O23 - Service: BufferZone RPC Helper (BZRpcSs) - Unknown owner - C:\Program Files\BufferZone\BZRPCSS.EXE
O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CreativeLicensing.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
--
End of file - 10968 bytes
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 20:21:15 25/05/2008
+ Résultat de l'analyse:
C:\Program Files\eChanblard\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\Program Files\eChanblard\config\last.zip/EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP760\A0066632.exe -> Not-A-Virus.Hacktool.EvID : Ignoré.
C:\Documents and Settings\Magali\Mes documents\Téléchargements\instala-emule.exe -> Not-A-Virus.PUP.Takedawnload.a : Ignoré.
:mozilla.49:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.16:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.17:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.18:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.19:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.8:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.20:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.35:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.37:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.38:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.50:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.51:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.11:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.12:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.13:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.14:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.15:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Magali\Cookies\magali@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.26:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.27:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.28:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.29:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.30:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.39:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.40:C:\Documents and Settings\Magali\Application Data\Mozilla\Firefox\Profiles\g4eosjc4.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
BitDefender Online Scanner
Statistics
Time
01:32:44
Files
363409
Folders
6946
Boot Sectors
4
Archives
36415
Packed Files
20192
Results
Identified Viruses
8
Infected Files
12
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
12
Engines Info
Virus Definitions
1235962
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
42
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Infected with: Generic.Peed.Eml.8627B911
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Disinfection failed
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 6): User Info
Deleted
C:\Documents and Settings\Magali\Local Settings\Application Data\Identities\{FCCF00F5-EC12-48D6-89ED-1A878679BD37}\Microsoft\Outlook Express\Boîte de réception.dbx
Updated
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Infected with: Generic.Peed.Eml.8627B911
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Disinfection failed
C:\Documents and Settings\Magali\Local Settings\Application Data\Microsoft\Windows Live Mail\Courrier de 560\Inbox\71D10B4C-000000A1.eml
Deleted
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\cmesys.exe
Detected with: Application.VTesttool.A
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\cmesys.exe
Deleted
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\system32.exe
Detected with: Application.VTesttool.C
C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\Quarantaine\system32.exe
Deleted
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)=>(Instyler Module 10)
Infected with: Trojan.Swizzor.WB
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)=>(Instyler Module 10)
Deleted
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe=>(Instyler o)
Update failed
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067042.exe
Detected with: Application.VTesttool.A
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067042.exe
Deleted
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067043.exe
Detected with: Application.VTesttool.C
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP766\A0067043.exe
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0005
Detected with: Adware.Navipromo.GO
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0005
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Detected with: Spyware.618
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)=>lzma_solid_nsis0002
Detected with: Adware.Navipromo.GO
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)=>lzma_solid_nsis0002
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0013=>(NSIS g)
Update failed
C:\WINDOWS\system32\libweb.dll
Infected with: Backdoor.Irc.Sdbot.HK
C:\WINDOWS\system32\libweb.dll
Disinfection failed
C:\WINDOWS\system32\libweb.dll
Deleted
C:\WINDOWS\system32\msnsupport.exe
Infected with: Trojan.Agent.ABLU
C:\WINDOWS\system32\msnsupport.exe
Disinfection failed
C:\WINDOWS\system32\msnsupport.exe
Deleted
Configuration: Windows XP Firefox 2.0.0.14
A voir également:
- Besoin d'aide pour interpréter les rapports
- Site pour rapport de stage - Guide
- Roxane cherche des informations pour écrire un rapport sur la jeunesse. avec un moteur de recherche généraliste, elle souhaite limiter les résultats de sa recherche aux pages de l’organisation internationale de la francophonie. quelle requête doit-elle taper dans le champ de recherche ? - Forum Réseau
- Roxane cherche des informations pour écrire un rapport sur la jeunesse ✓ - Forum Cinéma / Télé
- Suprimer les rapports d'erreurs - Forum Windows
- Interpreter les paquets de wireshark - Forum Réseau
1 réponse
Salut alors désinstalle tous tes logiciel de sécurité. Et installe AntiVir,Malwarebytes Anti-Malware,Ccleaner et active le pare-feu Vista.
AntiVir: https://www.01net.com/outils/telecharger/windows/Securite/antivirus-antitrojan/fiches/tele13198.html
Tutoriel AntiVir: https://www.malekal.com/avira-free-security-antivirus-gratuit/
Malwarebytes Anti-Malware: http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Tutoriel Malwarebytes Anti-Malware: https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
Ccleaner: https://www.01net.com/outils/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/tele32599.html
Tutoriel Ccleaner: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php (Tu l'installe sans la bare d'outil Yahoo)
PS: TU LES INSTALLES SEULEMENT ET TU NE FAIS PAS D'ANALYSE. TU FAIS UNE MISE A JOUR A ANTIVIR ET MALWAREBYTES ANTI-MALWARE.
AntiVir: https://www.01net.com/outils/telecharger/windows/Securite/antivirus-antitrojan/fiches/tele13198.html
Tutoriel AntiVir: https://www.malekal.com/avira-free-security-antivirus-gratuit/
Malwarebytes Anti-Malware: http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Tutoriel Malwarebytes Anti-Malware: https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
Ccleaner: https://www.01net.com/outils/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/tele32599.html
Tutoriel Ccleaner: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php (Tu l'installe sans la bare d'outil Yahoo)
PS: TU LES INSTALLES SEULEMENT ET TU NE FAIS PAS D'ANALYSE. TU FAIS UNE MISE A JOUR A ANTIVIR ET MALWAREBYTES ANTI-MALWARE.
J'ai suivi tes conseils et desinstaller mes logiciels de sécurité et installer antivir et Malwarebytes Anti-Malware. Par contre je ne sais pas comment installer le pare feu Vista.
Depuis que j'ai fait ces manipulations je ne peux plus utiliser Mozilla car les sessions se ferment sans raison et mon PC est toujours aussi lent.