Virus win32:InMorph

Résolu
clipton Messages postés 21 Statut Membre -  
fiat500 Messages postés 2681 Statut Membre -
Bonjour,
infecté par un virus win32:InMorph[crypt] j'ai fait une analyse avec navilog il m'a trouvé des fichiers infectés mais vu
ma faible connaissance en informatique je ne sais pas ce qu'il faut faire .si quelqu'un peux m'aider ça serait sympa
je peux joindre le rapport de navilog.
Configuration: Windows XP
Firefox 2.0.0.14

22 réponses

  • 1
  • 2
Résumé de la discussion

Une infection par le virus Win32:InMorph[crypt] est signalée sur un système Windows XP, après une analyse Navilog ayant détecté des fichiers infectés et nécessitant des mesures de purification. Plusieurs conseils visent à exécuter l’option 2 de Navilog, puis à procéder au nettoyage automatique et manuel des emplacements infectés, à la sauvegarde du registre et à l’élimination des fichiers et certificats détectés. Des rapports évoquent aussi l’usage de SmitFraudFix et d’AVG, avec des résultats montrant des éléments potentiellement dangereux tels que des cookies et des fichiers signalés par les outils, sans consensus clair.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. fiat500 Messages postés 2681 Statut Membre 82
     
    bonjour et bienvenu

    refais ça avec navilog:

    Fais un clic droit sur ce lien : (IL-MAFIOSO)
    http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
    Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
    Ensuite double clique sur navilog1.exe pour lancer l'installation.
    Une fois l'installation terminée, le fix s'exécutera automatiquement.
    (Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

    Laisse-toi guider. Au menu principal, choisis 1 et valides.
    (ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

    Patiente jusqu'au message :
    *** Analyse Termine le ..... ***
    Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
    Copie-colle l'intégralité dans une réponse. Referme le blocnote.
    Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
    0
    1. clipton Messages postés 21 Statut Membre
       
      Bonjour et merci d'avoir répondu voici mon rapport navilog:
      Microsoft Windows XP [version 5.1.2600]
      Internet Explorer : 7.0.5730.13
      Système de fichiers : FAT32

      Recherche executé en mode normal

      *** Recherche Programmes installés ***


      *** Recherche dossiers dans "C:\WINDOWS" ***


      *** Recherche dossiers dans "C:\Program Files" ***


      *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


      *** Recherche dossiers dans "c:\docume~1\alluse~1\menudÉ~1\progra~1" ***


      *** Recherche dossiers dans "C:\Documents and Settings\elle\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\lui\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***


      *** Recherche dossiers dans "C:\Documents and Settings\elle\locals~1\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\lui\locals~1\applic~1" ***


      *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***


      *** Recherche dossiers dans "C:\Documents and Settings\elle\menud+~1\progra~1" ***

      *** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
      pour + d'infos : http://www.gmer.net

      Aucun Fichier trouvé


      *** Recherche avec GenericNaviSearch ***
      !!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
      !!! A vérifier impérativement avant toute suppression manuelle !!!

      * Recherche dans "C:\WINDOWS\system32" *

      * Recherche dans "C:\Documents and Settings\elle\locals~1\applic~1" *

      * Recherche dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *

      * Recherche dans "C:\DOCUME~1\lui\locals~1\applic~1" *

      * Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *



      *** Recherche fichiers ***



      *** Recherche clés spécifiques dans le Registre ***

      HKEY_CURRENT_USER\Software\Lanconfig trouvé !

      *** Module de Recherche complémentaire ***
      (Recherche fichiers spécifiques)

      1)Recherche nouveaux fichiers Instant Access :


      2)Recherche Heuristique :

      * Dans "C:\WINDOWS\system32" :


      * Dans "C:\Documents and Settings\elle\locals~1\applic~1" :

      khebebyebe_nav.dat trouvé !
      khebebyebe_navps.dat trouvé !

      * Dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" :


      * Dans "C:\DOCUME~1\lui\locals~1\applic~1" :


      * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" :


      3)Recherche Certificats :

      Certificat Egroup trouvé !
      Certificat Electronic-Group trouvé !
      Certificat OOO-Favorit trouvé !
      Certificat Sunny-Day-Design-Ltd absent !

      4)Recherche fichiers connus :
      0
  2. fiat500 Messages postés 2681 Statut Membre 82
     
    lance l'option 2 dans navilog
    0
    1. clipton Messages postés 21 Statut Membre
       
      j'ai lancé l'option 2 et voici ce qu'il me dit:

      Microsoft Windows XP [version 5.1.2600]
      Internet Explorer : 7.0.5730.13
      Système de fichiers : FAT32

      Mode suppression automatique
      avec prise en charge résultats Catchme et GNS


      Nettoyage exécuté au redémarrage de l'ordinateur



      *** fsbl1.txt non trouvé ***
      (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


      *** Suppression avec sauvegardes résultats GenericNaviSearch ***

      * Suppression dans "C:\WINDOWS\System32" *


      * Suppression dans "C:\Documents and Settings\elle\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\lui\locals~1\applic~1" *


      * Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *



      *** Suppression dossiers dans "C:\WINDOWS" ***


      *** Suppression dossiers dans "C:\Program Files" ***


      *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


      *** Suppression dossiers dans "c:\docume~1\alluse~1\menudÉ~1\progra~1" ***


      *** Suppression dossiers dans "C:\Documents and Settings\elle\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\lui\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***


      *** Suppression dossiers dans "C:\Documents and Settings\elle\locals~1\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\lui\locals~1\applic~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***


      *** Suppression dossiers dans "C:\Documents and Settings\elle\menud+~1\progra~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\menud+~1\progra~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\lui\menud+~1\progra~1" ***


      *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menud+~1\progra~1" ***



      *** Suppression fichiers ***


      *** Suppression fichiers temporaires ***

      Nettoyage contenu C:\WINDOWS\Temp effectué !
      Nettoyage contenu C:\Documents and Settings\elle\locals~1\Temp effectué !

      *** Traitement Recherche complémentaire ***
      (Recherche fichiers spécifiques)

      1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

      2)Recherche, création sauvegardes et suppression Heuristique :


      * Dans "C:\WINDOWS\system32" *


      * Dans "C:\Documents and Settings\elle\locals~1\applic~1" *

      khebebyebe_nav.dat trouvé !
      Copie khebebyebe_nav.dat réalisée avec succès !
      khebebyebe_nav.dat supprimé !

      khebebyebe_navps.dat trouvé !
      Copie khebebyebe_navps.dat réalisée avec succès !
      khebebyebe_navps.dat supprimé !

      khebebyebe.dat trouvé !
      Copie khebebyebe.dat réalisée avec succès !
      khebebyebe.dat supprimé !


      * Dans "C:\DOCUME~1\PROPRI~1\locals~1\applic~1" *


      * Dans "C:\DOCUME~1\lui\locals~1\applic~1" *


      * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *


      *** Sauvegarde du Registre vers dossier Safebackup ***

      sauvegarde du Registre réalisée avec succès !

      *** Nettoyage Registre ***

      Nettoyage Registre Ok


      *** Certificats ***

      Certificat Egroup supprimé !
      Certificat Electronic-Group supprimé !
      Certificat OOO-Favorit supprimé !
      Certificat Sunny-Day-Design-Ltdt absent !

      *** Nettoyage terminé le 01/06/2008 à 17:28:34,40 ***
      0
  3. fiat500 Messages postés 2681 Statut Membre 82
     
    ok

    telecharge hijackthis

    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html

    tuto hijackthis:

    https://forums.cnetfrance.fr

    fais un scan et colle moi le log ici
    0
    1. clipton Messages postés 21 Statut Membre
       
      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 17:38:33, on 01/06/2008
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16640)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\a-squared Free\a2service.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      C:\WINDOWS\System32\nvsvc32.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\WINDOWS\notepad.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\WINDOWS\SOUNDMAN.EXE
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\FixCamera.exe
      C:\WINDOWS\PixArt\PAC207\Monitor.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Skype\Phone\Skype.exe
      C:\Program Files\Skype\Plugin Manager\skypePM.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
      C:\Documents and Settings\elle\Bureau\HiJackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
      O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
      O4 - HKCU\..\Policies\Explorer\Run: [NTSpool] NTSpool.exe
      O4 - HKCU\..\Policies\Explorer\Run: [Windows Security Tool] WinSecure.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
      O4 - Startup: VP-EYE.lnk = C:\VP-EYE\control\vpeyev4.exe
      O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
      O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?32fe17ff5b4349ea86a6342899928f94
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?32fe17ff5b4349ea86a6342899928f94
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com
      O15 - Trusted Zone: *.sony-europe.com
      O15 - Trusted Zone: *.sonystyle-europe.com
      O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
      O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
      O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
      0
  4. fiat500 Messages postés 2681 Statut Membre 82
     
    0
    1. clipton Messages postés 21 Statut Membre
       
      j'ai lancé doctor web il n'a détecté aucun Aucun virus
      0
    2. clipton Messages postés 21 Statut Membre
       
      je dois m'absenter merci pour ces précieux conseils j'éspère pouvoir continuer la discussion a + et merci
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. fiat500 Messages postés 2681 Statut Membre 82
     
    fais un scan complet!
    0
    1. clipton Messages postés 21 Statut Membre
       
      ok!
      0
  7. clipton Messages postés 21 Statut Membre
     
    voici le rapport dr web:
    TFTP1904;C:\WINDOWS\system32;Win32.HLLW.MyBot;Supprimé.;
    Process.exe;C:\Program Files\Navilog1;Tool.Prockill;Irréparable.Quarantaine.;
    A0000173.exe;C:\System Volume Information\_restore{4A159573-69F9-4FE3-ACF6-4933198F7280}\RP4;Tool.Prockill;Irréparable.Quarantaine.;
    A0000201.exe;C:\System Volume Information\_restore{4A159573-69F9-4FE3-ACF6-4933198F7280}\RP4;Tool.Prockill;Irréparable.Quarantaine.;
    A0000202.exe;C:\System Volume Information\_restore{4A159573-69F9-4FE3-ACF6-4933198F7280}\RP4;BackDoor.BotNet;Supprimé.;
    A0000203.exe;C:\System Volume Information\_restore{4A159573-69F9-4FE3-ACF6-4933198F7280}\RP4;BackDoor.BotNet;Supprimé.;
    Process.exe;C:\MSNFix\MSNFix\incl;Tool.Prockill;Irréparable.Quarantaine.;
    10845562.FIL;C:\$VAULT$.AVG;BackDoor.IRC.Sdbot.1941;Supprimé.;
    10845859.FIL;C:\$VAULT$.AVG;BackDoor.IRC.Sdbot.945;Supprimé.;
    10845937.FIL;C:\$VAULT$.AVG;BackDoor.IRC.Sdbot.1941;Supprimé.;
    0
  8. fiat500 Messages postés 2681 Statut Membre 82
     
    ok

    reposte moi un log hijackthis
    0
    1. clipton Messages postés 21 Statut Membre
       
      salut fiat 500 voici le log HIjackthis aprés avoir fait un scan complet avec dr web:

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 19:13:33, on 02/06/2008
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16640)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\a-squared Free\a2service.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      C:\WINDOWS\System32\nvsvc32.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\WINDOWS\SOUNDMAN.EXE
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\FixCamera.exe
      C:\WINDOWS\PixArt\PAC207\Monitor.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Skype\Phone\Skype.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Skype\Plugin Manager\skypePM.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
      C:\Documents and Settings\elle\Bureau\HiJackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
      O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
      O4 - HKCU\..\Policies\Explorer\Run: [NTSpool] NTSpool.exe
      O4 - HKCU\..\Policies\Explorer\Run: [Windows Security Tool] WinSecure.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
      O4 - Startup: VP-EYE.lnk = C:\VP-EYE\control\vpeyev4.exe
      O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
      O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?32fe17ff5b4349ea86a6342899928f94
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?32fe17ff5b4349ea86a6342899928f94
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com
      O15 - Trusted Zone: *.sony-europe.com
      O15 - Trusted Zone: *.sonystyle-europe.com
      O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
      O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
      O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
      0
  9. fiat500 Messages postés 2681 Statut Membre 82
     
    tu as fais l'etape 2 quand meme?
    0
    1. clipton Messages postés 21 Statut Membre
       
      oui?
      0
  10. fiat500 Messages postés 2681 Statut Membre 82
     
    reposte un hijackthis stp
    0
    1. clipton Messages postés 21 Statut Membre
       
      bonjour fiat 500 voici le rapport HIjack:

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 19:25:50, on 04/06/2008
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16640)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\a-squared Free\a2service.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      C:\WINDOWS\System32\nvsvc32.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\WINDOWS\SOUNDMAN.EXE
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\FixCamera.exe
      C:\WINDOWS\PixArt\PAC207\Monitor.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Skype\Phone\Skype.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Skype\Plugin Manager\skypePM.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\MSN Messenger\livecall.exe
      C:\Documents and Settings\elle\Bureau\HiJackThis.exe

      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
      O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
      O4 - HKCU\..\Policies\Explorer\Run: [NTSpool] NTSpool.exe
      O4 - HKCU\..\Policies\Explorer\Run: [Windows Security Tool] WinSecure.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
      O4 - Startup: VP-EYE.lnk = C:\VP-EYE\control\vpeyev4.exe
      O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
      O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?32fe17ff5b4349ea86a6342899928f94
      O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?32fe17ff5b4349ea86a6342899928f94
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com
      O15 - Trusted Zone: *.sony-europe.com
      O15 - Trusted Zone: *.sonystyle-europe.com
      O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
      O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
      O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
      0
  11. fiat500 Messages postés 2681 Statut Membre 82
     
    desinstalle avast
    puis telecharge avg free:

    http://download.avgfree.com/filedir/inst/avg_free_stf_all_8_100a1315.exe

    puis mes le a jour puis lance un scan et supprime tous se qu'il trouve

    tuto:

    http://www.malekal.com/tutorial_AVG8.php
    http://www.malekal.com/tutorial_AVG8.php#mozTocId824945

    reglage pour avg:

    ouvre avg
    double clic sur resident shield
    puis coche la casse detect cookies
    puis clic sur save changes
    puis clic sur tools advanced settings... puis clic sur le petit plus a coter de resident shield puis clic sur advenced setting puis clic sur scan all files et ok
    0
  12. clipton Messages postés 21 Statut Membre
     
    j'ai paramétré avg comme tu me l'as indiqué, je vais relancer un scan puis je te posterai le rapport.
    A +.
    0
  13. fiat500 Messages postés 2681 Statut Membre 82
     
    ok
    0
    1. clipton Messages postés 21 Statut Membre
       
      voici le rapport avg:

      "Scan ""Scan whole computer"" was finished."
      "Infections found:";"0"
      "Infected objects removed or healed";"0"
      "Not removed or healed.";"0"
      "Spyware found:";"0"
      "Spyware removed:";"0"
      "Not removed:";"0"
      "Warnings count:";"81"
      "Information count:";"0"
      "Scan started:";"samedi 7 juin 2008, 16:36:58"
      "Total object scanned:";"752838"
      "Time needed:";"3 hour(s) 2 minute(s) 41 second(s) "
      "Errors encountered:";"0"

      "Warnings"
      "File";"Infection";"Result"
      "HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0EDC6C20-A31C-11DB-8AB9-0800200C9A66}";"Found Adware.RogueSuspect";"Potentially dangerous object"
      "HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3AAC4C68-AFC8-11DB-80EF-8AF955D89593}";"Found Adware.RogueSuspect";"Potentially dangerous object"
      "HKU\S-1-5-21-1497286466-3723271197-3242847100-1003\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a}";"Found Adware.Generic";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@bluestreak[2].txt:\bluestreak.com.bf396750";"Found Tracking cookie.Bluestreak";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@bluestreak[2].txt";"Found Tracking cookie.Bluestreak";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.c9034af6";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.606c3d3b";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.4b416ef8";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.255d6f2f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.6a1cf9e8";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt:\serving-sys.com.400f83f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@serving-sys[2].txt";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@weborama[1].txt:\weborama.fr.30104bcb";"Found Tracking cookie.Weborama";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@weborama[1].txt";"Found Tracking cookie.Weborama";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@atdmt[2].txt:\atdmt.com.b3e33b5f";"Found Tracking cookie.Atdmt";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@atdmt[2].txt";"Found Tracking cookie.Atdmt";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@advertising[1].txt:\advertising.com.203aa218";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@advertising[1].txt:\advertising.com.f62113d5";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@advertising[1].txt:\advertising.com.b624fa46";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@advertising[1].txt";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@mediaplex[1].txt:\mediaplex.com.f652b123";"Found Tracking cookie.Mediaplex";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@mediaplex[1].txt";"Found Tracking cookie.Mediaplex";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@bs.serving-sys[2].txt:\bs.serving-sys.com.5bf1f00f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@bs.serving-sys[2].txt";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@doubleclick[1].txt:\doubleclick.net.bf396750";"Found Tracking cookie.Doubleclick";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@doubleclick[1].txt";"Found Tracking cookie.Doubleclick";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@smartadserver[1].txt:\smartadserver.com.c5827141";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@smartadserver[1].txt:\smartadserver.com.321a5cf8";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@smartadserver[1].txt:\smartadserver.com.5550c4ed";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@smartadserver[1].txt:\smartadserver.com.3e749ab9";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Cookies\elle@smartadserver[1].txt";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\statcounter.com.eb969ad1";"Found Tracking cookie.Statcounter";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\statcounter.com.86715be6";"Found Tracking cookie.Statcounter";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\statcounter.com.7b9083c6";"Found Tracking cookie.Statcounter";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\statcounter.com.5d249c51";"Found Tracking cookie.Statcounter";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adengage.com.411a57fb";"Found Tracking cookie.Adengage";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adengage.com.2864435e";"Found Tracking cookie.Adengage";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\sextracker.com.80b29a8b";"Found Tracking cookie.Sextracker";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adbrite.com.71beeff9";"Found Tracking cookie.Adbrite";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adbrite.com.d5e309c2";"Found Tracking cookie.Adbrite";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adbrite.com.e3b6fcdd";"Found Tracking cookie.Adbrite";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\yadro.ru.c77afad5";"Found Tracking cookie.Yadro";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\spylog.com.a99d3bed";"Found Tracking cookie.Spylog";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\yadro.ru.a4842f54";"Found Tracking cookie.Yadro";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\ad.yieldmanager.com.539b0606";"Found Tracking cookie.Yieldmanager";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\ad.yieldmanager.com.557bf2b0";"Found Tracking cookie.Yieldmanager";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\ad.yieldmanager.com.b68f2b7b";"Found Tracking cookie.Yieldmanager";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\ad.yieldmanager.com.e762f029";"Found Tracking cookie.Yieldmanager";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\smartadserver.com.321a5cf8";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\smartadserver.com.3e749ab9";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\smartadserver.com.c5827141";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\smartadserver.com.5550c4ed";"Found Tracking cookie.Smartadserver";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\doubleclick.net.bf396750";"Found Tracking cookie.Doubleclick";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\estat.com.efda7a5a";"Found Tracking cookie.Estat";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\weborama.fr.30104bcb";"Found Tracking cookie.Weborama";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\advertising.com.f62113d5";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\advertising.com.1820df7a";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\advertising.com.b624fa46";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\advertising.com.203aa218";"Found Tracking cookie.Advertising";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\atdmt.com.b3e33b5f";"Found Tracking cookie.Atdmt";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adtech.de.a9245469";"Found Tracking cookie.Adtech";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\bluestreak.com.bf396750";"Found Tracking cookie.Bluestreak";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\adviva.net.39ec90c";"Found Tracking cookie.Adviva";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\overture.com.8e32a996";"Found Tracking cookie.Overture";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\tradedoubler.com.ba12c0e9";"Found Tracking cookie.Tradedoubler";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\msnportal.112.2o7.net.7225be6f";"Found Tracking cookie.2o7";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\revsci.net.e9dbeb91";"Found Tracking cookie.Revsci";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\revsci.net.44927ec";"Found Tracking cookie.Revsci";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\revsci.net.2df99d79";"Found Tracking cookie.Revsci";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\hitbox.com.bbf2a6e8";"Found Tracking cookie.Hitbox";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\hitbox.com.2b95f8a3";"Found Tracking cookie.Hitbox";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.4b416ef8";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\bs.serving-sys.com.5bf1f00f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.c9034af6";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.400f83f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.606c3d3b";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.255d6f2f";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt:\serving-sys.com.6a1cf9e8";"Found Tracking cookie.Serving-sys";"Potentially dangerous object"
      "C:\Documents and Settings\elle\Application Data\Mozilla\Firefox\Profiles\ol24ki47.default\cookies.txt";"Found Tracking cookie.Statcounter";"Potentially dangerous object"
      "C:\Documents and Settings\lui\Application Data\Mozilla\Firefox\Profiles\gq1gmlgu.default\cookies.txt:\msnportal.112.2o7.net.7225be6f";"Found Tracking cookie.2o7";"Potentially dangerous object"
      "C:\Documents and Settings\lui\Application Data\Mozilla\Firefox\Profiles\gq1gmlgu.default\cookies.txt";"Found Tracking cookie.2o7";"Potentially dangerous object"
      0
  14. fiat500 Messages postés 2681 Statut Membre 82
     
    supprime tous se qu'il a trouver
    0
    1. clipton Messages postés 21 Statut Membre
       
      Voila j'ai tout supprimé ce qu'avg a trouver. faut-il que je supprime les utilitaires que j'ai telecharger.
      connait-tu un bonne configuration pour mieux proteger son ordi.( pare feu,antvirus,...) ?
      0
  15. fiat500 Messages postés 2681 Statut Membre 82
     
    fais ca pour tous les utilitaire dedesinfection:

    pour supprimer les outils/fix utilisés :

    Télécharge ToolsCleaner sur ton bureau.
    -->
    http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe
    http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe

    # Clique sur Recherche et laisse le scan agir ...
    # Clique sur Suppression pour finaliser.
    # Tu peux, si tu le souhaites, te servir des Options facultatives.
    # Clique sur Quitter pour obtenir le rapport.
    # Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

    garde avg free tres bonne protection mes telecharge ca en plus:

    http://forum.malekal.com/ftopic2546.php
    0
    1. clipton Messages postés 21 Statut Membre
       
      Bonjour Fiat500
      avg me trouve des virus et l'ordinateur rame faut-il que je reprenne dés le début la procédure faite precedement peut etre ai-je sauté des étapes?
      je vais tout de même telecharger le dernier liens que tu me recommandes.
      Merci et a + .

      Désolé pour les temps de réponse un peu trop étalé dans le temps, mais ce dernier qui justement me fait defaut.
      0
  16. fiat500 Messages postés 2681 Statut Membre 82
     
    si avg te trouve des virus clic sur heal

    fais un scan en ligne avec Internet Explorer stp:

    BitDefender en ligne: http://www.bitdefender.fr/scan_fr/scan8/ie.html
    Tutoriel BitDefender en ligne: http://cybersecurite.xooit.com/t201-Scan-en-ligne-BitDefender.htm
    0
    1. clipton
       
      Voici le rapport bitdefender:



      BitDefender Online Scanner







      Scan report generated at: Sat, Jun 14, 2008 - 19:25:04









      Scan path: A:\;C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;K:\;















      Statistics

      Time


      03:12:17

      Files


      239128

      Folders


      5368

      Boot Sectors


      3

      Archives


      7605

      Packed Files


      19122







      Results

      Identified Viruses


      4

      Infected Files


      12

      Suspect Files


      0

      Warnings


      0

      Disinfected


      0

      Deleted Files


      24







      Engines Info

      Virus Definitions


      1260839

      Engine build


      AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

      Scan plugins


      16

      Archive plugins


      42

      Unpack plugins


      7

      E-mail plugins


      6

      System plugins


      5







      Scan Settings

      First Action


      Disinfect

      Second Action


      Delete

      Heuristics


      Yes

      Enable Warnings


      Yes

      Scanned Extensions


      *;

      Exclude Extensions




      Scan Emails


      Yes

      Scan Archives


      Yes

      Scan Packed


      Yes

      Scan Files


      Yes

      Scan Boot


      Yes








      Scanned File


      Status

      C:\FOUND.000\FILE0027.CHK.mwt=>(Quarantine-1)


      Infected with: MemScan:Backdoor.Agent.YRG

      C:\FOUND.000\FILE0027.CHK.mwt=>(Quarantine-1)


      Disinfection failed

      C:\FOUND.000\FILE0027.CHK.mwt=>(Quarantine-1)


      Deleted

      C:\FOUND.000\FILE0028.CHK.mwt=>(Quarantine-1)


      Infected with: MemScan:Backdoor.Agent.YRG

      C:\FOUND.000\FILE0028.CHK.mwt=>(Quarantine-1)


      Disinfection failed

      C:\FOUND.000\FILE0028.CHK.mwt=>(Quarantine-1)


      Deleted

      C:\FOUND.000\FILE0029.CHK.mwt=>(Quarantine-1)


      Infected with: Backdoor.Rbot.ECB

      C:\FOUND.000\FILE0029.CHK.mwt=>(Quarantine-1)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\FILE0002.CHK.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.3BCA26D0

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\FILE0002.CHK.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\FILE0002.CHK.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000003.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.91788D30

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000003.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000003.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000004.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.91788D30

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000004.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000004.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000005.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.91788D30

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000005.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000005.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000006.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.3BCA26D0

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000006.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000006.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000007.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.3BCA26D0

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000007.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000007.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000008.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.3BCA26D0

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000008.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000008.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000009.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.3BCA26D0

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000009.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\A0000009.exe.bac_a02944=>(Quarantine-4)


      Deleted

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\wuaurpl.exe.bac_a02944=>(Quarantine-4)


      Infected with: DeepScan:Generic.Malware.G!KIFLMPWX!!YBVdPkprnoeg.91788D30

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\wuaurpl.exe.bac_a02944=>(Quarantine-4)


      Disinfection failed

      C:\Documents and Settings\elle\.housecall6.6\Quarantine\wuaurpl.exe.bac_a02944=>(Quarantine-4)


      Deleted
      0
  17. fiat500 Messages postés 2681 Statut Membre 82
     
    normalement c'est bon
    0
  18. clipton Messages postés 21 Statut Membre
     
    j'ai refait un scan avec avg voici ce qu'il trouve:

    "Scan ""Scan specific files or folders"" was finished."
    "Infections found:";"0"
    "Infected objects removed or healed";"0"
    "Not removed or healed.";"0"
    "Spyware found:";"0"
    "Spyware removed:";"0"
    "Not removed:";"0"
    "Warnings count:";"6"
    "Information count:";"0"
    "Scan started:";"samedi 14 juin 2008, 22:22:47"
    "Total object scanned:";"573926"
    "Time needed:";"2 hour(s) 16 minute(s) 38 second(s) "
    "Errors encountered:";"0"

    "Warnings"
    "File";"Infection";"Result"
    "C:\Documents and Settings\elle\Cookies\elle@bluestreak[1].txt:\bluestreak.com.bf396750";"Found Tracking cookie.Bluestreak";"Potentially dangerous object"
    "C:\Documents and Settings\elle\Cookies\elle@bluestreak[1].txt";"Found Tracking cookie.Bluestreak";"Potentially dangerous object"
    "C:\Documents and Settings\elle\Cookies\elle@weborama[1].txt:\weborama.fr.30104bcb";"Found Tracking cookie.Weborama";"Potentially dangerous object"
    "C:\Documents and Settings\elle\Cookies\elle@weborama[1].txt";"Found Tracking cookie.Weborama";"Potentially dangerous object"
    "C:\Documents and Settings\elle\Cookies\elle@doubleclick[1].txt:\doubleclick.net.1d39bd48";"Found Tracking cookie.Doubleclick";"Potentially dangerous object"
    "C:\Documents and Settings\elle\Cookies\elle@doubleclick[1].txt";"Found Tracking cookie.Doubleclick";"Potentially dangerous object"
    0
  19. fiat500 Messages postés 2681 Statut Membre 82
     
    c'est juste des cookies

    va dans warning sélectionne tous puis clic sur remove all selection
    0
    1. clipton Messages postés 21 Statut Membre
       
      ok merci pour ton aide .
      je peux inscrire probleme résolu?
      0
  20. fiat500 Messages postés 2681 Statut Membre 82
     
    oui
    0
  • 1
  • 2