Rapports de la méthode de désinfection

Fermé
zum - 7 juil. 2008 à 20:25
 zum - 10 juil. 2008 à 13:21
Bonjour,

je viens de faire la méthode de désinfection, car quand je scanne mon ordi avec ad-awre je vois plein de fichier win32.trojan, alors j'ai fais avec ccleaner.

Voici le rapport de avg spywares.

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 16:42:20 07/07/2008

+ Résultat de l'analyse:



HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Adware.WebRebates : Ignoré.
:mozilla.422:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.623:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.71:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.72:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.73:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.74:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.75:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.564:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
:mozilla.565:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
:mozilla.100:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.101:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.102:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.103:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.104:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.105:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.98:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.99:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.59:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.13:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.14:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.15:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.16:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.17:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.613:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Adviva : Ignoré.
:mozilla.151:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Atdmt : Ignoré.
:mozilla.66:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.27:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.642:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Esomniture : Ignoré.
:mozilla.53:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.54:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.403:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.404:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.111:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.249:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.340:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.371:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.487:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.488:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.674:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Information : Ignoré.
:mozilla.201:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.202:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.203:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.243:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Planetactive : Ignoré.
:mozilla.533:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.534:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.535:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.536:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.537:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.538:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.539:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.540:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.673:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Revenue : Ignoré.
:mozilla.288:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.289:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.290:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.291:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.292:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.293:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.294:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.244:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.245:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.633:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.635:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.5:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\f49pndgd.zz\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.62:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.63:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.64:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.65:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.6:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\f49pndgd.zz\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.7:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\f49pndgd.zz\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.585:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.18:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.19:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.20:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.21:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.22:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.559:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.218:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.219:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.220:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.221:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.267:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.268:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.269:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.270:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.28:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.29:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.30:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.31:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.32:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.385:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.386:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.387:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.388:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.428:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.429:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.430:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.431:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.113:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignoré.
:mozilla.558:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Yadro : Ignoré.
:mozilla.300:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.301:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.302:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.303:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.


Fin du rapport


Il faut que je supprime je pense ?

après avec l'antivirus en ligne, aucun virus de détecté.

Voici le rapport de hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:44:28, on 07/07/2008
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\hidserv.exe
C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINNT\system32\igfxtray.exe
C:\WINNT\system32\hkcmd.exe
C:\WINNT\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINNT\system32\wuauclt.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINNT\system32\ZoneLabs\vsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\system32\hkcmd.exe
O4 - HKLM\..\Run: [IFSplash] ImmSplsh.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Startup: Mozilla Firefox.lnk = C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINNT\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINNT\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINNT\bdoscandel.exe
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/advanced/2.0.2.23/cfweb_activex.camfrogweb.com-advanced-2.0.2.23_instmodule.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {FF0C042C-98E9-4C36-B2EC-E21FDFDCEF75} - http://ww38.download.redswoosh.net/Installer/rssoft.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINNT\system32\ZoneLabs\vsmon.exe

6 réponses

geoffrey5 Messages postés 13732 Date d'inscription dimanche 20 mai 2007 Statut Contributeur sécurité Dernière intervention 21 mai 2010 10
8 juil. 2008 à 03:12
Salut !!

oui va supprimer tout ce que avg a trouvé ensuite :

relance hijackthis en cliquant sur scan only et coches ces lignes :

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/
O4 - HKLM\..\Run: [IFSplash] ImmSplsh.exe
O16 - DPF: {FF0C042C-98E9-4C36-B2EC-E21FDFDCEF75} - http://ww38.download.redswoosh.net/Installer/rssoft.cab

puis tu cliques sur fix checked.

vas faire ta mise à jour de java : https://www.java.com/fr/download/manual.jsp

et je ne vois pas d antivirus dans ton rapport...télécharge antivir à cette adresse :

https://www.01net.com/telecharger/windows/Securite/antivirus-antitrojan/fiches/13198.html

et voici un tuto pour bien le configurer : https://www.malekal.com/avira-free-security-antivirus-gratuit/

ensuite :

Télécharger sur le bureau malware bytes : http://ww.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware?thread


= double-clic sur mbam-setup pour lancer l'installation
= Installer simplement sans rien modifier
= Quand le programme lancé ==> faire une mise à jour ensuite cocher Exécuter un examen complet
= Clic Rechercher
= Eventuellement décocher les disque à ne pas analyser
= Clic Lancer l'examen
= En fin de scan , si infection trouvée
==> Clic Afficher résultat
= Fermer vos applications en cours
= Vérifier si tout est coché et clic Supprimer la sélection

un rapport s'ouvre le copier et le coller dans la réponse

Puis redémarrer le pc !!
0
Voilà le rapport de malware bytes.

Malwarebytes' Anti-Malware 1.20
Version de la base de données: 932
Windows 5.0.2195 Service Pack 4

00:12:32 09/07/2008
mbam-log-7-9-2008 (00-12-31).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 54463
Temps écoulé: 52 minute(s), 36 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


++
0
geoffrey5 Messages postés 13732 Date d'inscription dimanche 20 mai 2007 Statut Contributeur sécurité Dernière intervention 21 mai 2010 10
9 juil. 2008 à 00:02
ok...si tu as bien fais ce que je t ai dis au premier message, essais ce programme :

trojan remover : https://www.01net.com/telecharger/windows/Securite/antivirus-antitrojan/fiches/12884.html
0
Voila le rapports.

***** NORMAL SCAN FOR ACTIVE MALWARE *****
Trojan Remover Ver 6.7.0.2534. For information, email support@simplysup1.com
[Unregistered version]
Scan started at: 13:38:31 09 juil. 2008
Using Database v7058
Operating System: Windows 2000 SP4 [Windows 2000 Professional Service Pack 4 (Build 2195)]
File System: NTFS
Data directory: C:\Documents and Settings\Administrateur\Application Data\Simply Super Software\Trojan Remover\
Database directory: C:\Program Files\Trojan Remover\
Logfile directory: C:\Documents and Settings\Administrateur\Mes documents\Simply Super Software\Trojan Remover Logfiles\
Program directory: C:\Program Files\Trojan Remover\
Running with Administrator privileges


**************************************************
The following Anti-Malware program(s) are loaded:
Avira AntiVir

**************************************************


**************************************************
13:38:32: Scanning ----------WIN.INI-----------
WIN.INI found in C:\WINNT

**************************************************
13:38:32: Scanning --------SYSTEM.INI---------
SYSTEM.INI found in C:\WINNT

**************************************************
13:38:32: ----- SCANNING FOR ROOTKIT SERVICES -----
No hidden Services were detected.

**************************************************
13:38:41: Scanning -----WINDOWS REGISTRY-----
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
This key's "Shell" value calls the following program(s):
File: Explorer.exe
C:\WINNT\Explorer.exe
244496 bytes
Created: 10/06/2006
Modified: 19/06/2003
Company: Microsoft Corporation
----------
This key's "Userinit" value calls the following program(s):
File: C:\WINNT\system32\userinit.exe
C:\WINNT\system32\userinit.exe
17680 bytes
Created: 16/12/1999
Modified: 19/06/2003
Company: Microsoft Corporation
----------
This key's "System" value appears to be blank
----------
This key's "UIHost" value appears to be blank
----------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
--------------------
Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Value Name: load
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value Name: Synchronization Manager
Value Data: mobsync.exe /logon
C:\WINNT\system32\mobsync.exe
111888 bytes
Created: 10/06/2006
Modified: 19/06/2003
Company: Microsoft Corporation
--------------------
Value Name: LoadQM
Value Data: loadqm.exe
C:\WINNT\loadqm.exe
7536 bytes
Created: 21/10/2005
Modified: 03/05/2000
Company: Microsoft Corporation
--------------------
Value Name: SunJavaUpdateSched
Value Data: "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
144784 bytes
Created: 08/07/2008
Modified: 25/03/2008
Company: Sun Microsystems, Inc.
--------------------
Value Name: ZoneAlarm Client
Value Data: "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
919280 bytes
Created: 27/09/2007
Modified: 09/03/2007
Company: Zone Labs, LLC
--------------------
Value Name: IgfxTray
Value Data: C:\WINNT\system32\igfxtray.exe
C:\WINNT\system32\igfxtray.exe
143360 bytes
Created: 27/02/2008
Modified: 17/07/2002
Company: Intel Corporation
--------------------
Value Name: HotKeysCmds
Value Data: C:\WINNT\system32\hkcmd.exe
C:\WINNT\system32\hkcmd.exe
90112 bytes
Created: 27/02/2008
Modified: 17/07/2002
Company: Intel Corporation
--------------------
Value Name: LVCOMSX
Value Data: C:\WINNT\system32\LVCOMSX.EXE
C:\WINNT\system32\LVCOMSX.EXE
221184 bytes
Created: 14/12/2004
Modified: 14/12/2004
Company: Labtec Inc.
--------------------
Value Name: LogitechVideoRepair
Value Data: C:\Program Files\Logitech\Video\ISStart.exe
C:\Program Files\Logitech\Video\ISStart.exe
458752 bytes
Created: 09/01/2008
Modified: 14/12/2004
Company: Labtec Inc.
--------------------
Value Name: LogitechVideoTray
Value Data: C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Logitech\Video\LogiTray.exe
217088 bytes
Created: 09/01/2008
Modified: 14/12/2004
Company: Labtec Inc.
--------------------
Value Name: avgnt
Value Data: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
262401 bytes
Created: 08/07/2008
Modified: 12/02/2008
Company: Avira GmbH
--------------------
Value Name: TrojanScanner
Value Data: C:\Program Files\Trojan Remover\Trjscan.exe
C:\Program Files\Trojan Remover\Trjscan.exe
878672 bytes
Created: 09/07/2008
Modified: 03/06/2008
Company: Simply Super Software
--------------------
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
--------------------
Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Run
This Registry Key appears to be empty
--------------------
Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty

**************************************************
13:38:48: Scanning -----SHELLEXECUTEHOOKS-----
ValueName: {AEB6717E-7E19-11d0-97EE-00C04FD91972}
File: shell32.dll - this file is expected and has been left in place
----------
ValueName: {57B86673-276A-48B2-BAE7-C6DBB3020EB8}
Value: AVG Anti-Spyware 7.5
File: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll
79408 bytes
Created: 30/05/2007
Modified: 30/05/2007
Company: GRISOFT s.r.o.
----------

**************************************************
13:38:48: Scanning -----HIDDEN REGISTRY ENTRIES-----
Taskdir check completed
----------
No Hidden File-loading Registry Entries found
----------

**************************************************
13:38:49: Scanning -----ACTIVE SCREENSAVER-----
ScreenSaver: (Aucun)
(Aucun) [file not found to scan]
--------------------

**************************************************
13:38:49: Scanning ----- REGISTRY ACTIVE SETUP KEYS -----
Key: {89B4C1CD-B018-4511-B0A1-5476DBF70820}
Path: C:\WINNT\system32\Rundll32.exe C:\WINNT\system32\mscories.dll,Install
C:\WINNT\system32\mscories.dll
106496 bytes
Created: 20/02/2003
Modified: 20/02/2003
Company: Microsoft Corporation
----------

**************************************************
13:38:51: Scanning ----- SERVICEDLL REGISTRY KEYS -----

**************************************************
13:38:52: Scanning ----- SERVICES REGISTRY KEYS -----
Key: a2free
ImagePath: "C:\Program Files\a-squared Free\a2service.exe"
C:\Program Files\a-squared Free\a2service.exe
366712 bytes
Created: 21/03/2008
Modified: 07/01/2008
Company: Emsi Software GmbH
----------
Key: Adobe LM Service
ImagePath: "C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe"
C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
68096 bytes
Created: 14/10/2005
Modified: 14/10/2005
Company:
----------
Key: AntiVirScheduler
ImagePath: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
68865 bytes
Created: 08/07/2008
Modified: 07/03/2008
Company: Avira GmbH
----------
Key: AntiVirService
ImagePath: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
147201 bytes
Created: 08/07/2008
Modified: 26/03/2008
Company: Avira GmbH
----------
Key: aspnet_state
ImagePath: %SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
32768 bytes
Created: 20/02/2003
Modified: 20/02/2003
Company: Microsoft Corporation
----------
Key: AVG Anti-Spyware Driver
ImagePath: \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
11000 bytes
Created: 30/05/2007
Modified: 30/05/2007
Company:
----------
Key: AVG Anti-Spyware Guard
ImagePath: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
312880 bytes
Created: 30/05/2007
Modified: 30/05/2007
Company: GRISOFT s.r.o.
----------
Key: AvgAsCln
ImagePath: System32\DRIVERS\AvgAsCln.sys
C:\WINNT\System32\DRIVERS\AvgAsCln.sys
10872 bytes
Created: 07/07/2008
Modified: 30/05/2007
Company: GRISOFT, s.r.o.
----------
Key: avgio
ImagePath: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys
11840 bytes
Created: 08/07/2008
Modified: 27/02/2007
Company: Avira GmbH
----------
Key: avgntflt
ImagePath: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
57920 bytes
Created: 08/07/2008
Modified: 18/02/2008
Company: Avira GmbH
----------
Key: avipbb
ImagePath: system32\DRIVERS\avipbb.sys
C:\WINNT\system32\DRIVERS\avipbb.sys
79424 bytes
Created: 08/07/2008
Modified: 04/03/2008
Company: Avira GmbH
----------
Key: HidServ
ImagePath: %SystemRoot%\system32\hidserv.exe
C:\WINNT\system32\hidserv.exe
19728 bytes
Created: 10/06/2006
Modified: 19/06/2003
Company: Microsoft Corporation
----------
Key: i81x
ImagePath: System32\DRIVERS\i81xnt5.sys
C:\WINNT\System32\DRIVERS\i81xnt5.sys
161020 bytes
Created: 27/02/2008
Modified: 23/07/2002
Company: Intel(R) Corporation
----------
Key: ichaud
ImagePath: system32\drivers\ichaud.sys
C:\WINNT\system32\drivers\ichaud.sys
32592 bytes
Created: 10/10/2005
Modified: 22/10/1999
Company: Microsoft Corporation
----------
Key: imhidusb
ImagePath: system32\DRIVERS\imhidusb.sys
C:\WINNT\system32\DRIVERS\imhidusb.sys
-R- 26804 bytes
Created: 22/10/2006
Modified: 11/05/2000
Company: Immersion Corporation
----------
Key: LVUSBSta
ImagePath: system32\DRIVERS\LVUSBSta.sys
C:\WINNT\system32\DRIVERS\LVUSBSta.sys
-R- 22016 bytes
Created: 09/01/2008
Modified: 11/10/2004
Company: Labtec Inc.
----------
Key: MDC8021X
ImagePath: system32\DRIVERS\mdc8021x.sys
C:\WINNT\system32\DRIVERS\mdc8021x.sys
15781 bytes
Created: 20/04/2008
Modified: 02/09/2004
Company: Meetinghouse Data Communications
----------
Key: ose
ImagePath: "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE"
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
89136 bytes
Created: 28/07/2003
Modified: 28/07/2003
Company: Microsoft Corporation
----------
Key: PCANDIS5
ImagePath: \??\C:\WINNT\system32\PCANDIS5.SYS
C:\WINNT\system32\PCANDIS5.SYS
16292 bytes
Created: 10/10/2005
Modified: 02/09/2004
Company: Printing Communications Assoc., Inc. (PCAUSA)
----------
Key: pcouffin
ImagePath: System32\Drivers\pcouffin.sys
C:\WINNT\System32\Drivers\pcouffin.sys
47360 bytes
Created: 11/12/2007
Modified: 11/12/2007
Company: VSO Software
----------
Key: PID_0928
ImagePath: system32\DRIVERS\LV561AV.SYS
C:\WINNT\system32\DRIVERS\LV561AV.SYS
-R- 211712 bytes
Created: 09/01/2008
Modified: 11/10/2004
Company: Labtec Inc.
----------
Key: PnkBstrA
ImagePath: C:\WINNT\system32\PnkBstrA.exe
C:\WINNT\system32\PnkBstrA.exe
66872 bytes
Created: 17/11/2007
Modified: 17/11/2007
Company:
----------
Key: PnkBstrB
ImagePath: C:\WINNT\system32\PnkBstrB.exe
C:\WINNT\system32\PnkBstrB.exe
107832 bytes
Created: 17/11/2007
Modified: 06/07/2008
Company:
----------
Key: PnkBstrK
ImagePath: \??\C:\WINNT\system32\drivers\PnkBstrK.sys
C:\WINNT\system32\drivers\PnkBstrK.sys
22328 bytes
Created: 17/11/2007
Modified: 06/07/2008
Company:
----------
Key: rtl8029
ImagePath: System32\DRIVERS\RTL8029.SYS
C:\WINNT\System32\DRIVERS\RTL8029.SYS
18704 bytes
Created: 11/12/2007
Modified: 25/09/1999
Company: REALTEK Semiconductor Corp.
----------
Key: SecDrv
ImagePath: \??\C:\WINNT\system32\drivers\SECDRV.SYS
C:\WINNT\system32\drivers\SECDRV.SYS
28624 bytes
Created: 22/10/2006
Modified: 22/10/2006
Company:
----------
Key: srescan
ImagePath: system32\ZoneLabs\srescan.sys
C:\WINNT\system32\ZoneLabs\srescan.sys
51176 bytes
Created: 27/09/2007
Modified: 01/03/2008
Company: Zone Labs, LLC
----------
Key: ssmdrv
ImagePath: system32\DRIVERS\ssmdrv.sys
C:\WINNT\system32\DRIVERS\ssmdrv.sys
28352 bytes
Created: 08/07/2008
Modified: 01/03/2007
Company: Avira GmbH
----------
Key: StiSvc
ImagePath: %systemroot%\system32\stisvc.exe
C:\WINNT\system32\stisvc.exe
62224 bytes
Created: 10/06/2006
Modified: 19/06/2003
Company: Microsoft Corporation
----------
Key: vsdatant
ImagePath: System32\vsdatant.sys
C:\WINNT\System32\vsdatant.sys
394192 bytes
Created: 22/01/2006
Modified: 09/03/2007
Company: Zone Labs, LLC
----------
Key: vsmon
ImagePath: C:\WINNT\system32\ZoneLabs\vsmon.exe -service - this file is globally excluded
----------
Key: WlanUIG
ImagePath: system32\DRIVERS\WlanUIG.sys
C:\WINNT\system32\DRIVERS\WlanUIG.sys
379456 bytes
Created: 20/04/2008
Modified: 02/09/2004
Company: Conexant Systems, Inc.
----------
Key: WMDM PMSP Service
ImagePath: C:\WINNT\system32\mspmspsv.exe
C:\WINNT\system32\mspmspsv.exe
53248 bytes
Created: 01/07/2008
Modified: 01/10/2001
Company: Microsoft Corporation
----------

**************************************************
13:39:24: Scanning -----VXD ENTRIES-----
Checking the following VxD entries:
C:\WINNT\system32\JAVASUP.VXD
7315 bytes
Created: 21/07/2007
Modified: 28/02/2003
Company:
VxD Key = JAVASUP
----------
----------

**************************************************
13:39:25: Scanning ----- WINLOGON\NOTIFY DLLS -----

**************************************************
13:39:26: Scanning ----- CONTEXTMENUHANDLERS -----
Key: Shell Extension for Malware scanning
CLSID: {45AC2688-0253-4ED8-97DE-B5370FA7D48A}
Path: C:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll
C:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll
69889 bytes
Created: 08/07/2008
Modified: 23/01/2008
Company: Avira GmbH
----------

**************************************************
13:39:27: Scanning ----- FOLDER\COLUMNHANDLERS -----

**************************************************
13:39:27: Scanning ----- BROWSER HELPER OBJECTS -----
Key: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
BHO: C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
37808 bytes
Created: 29/08/2006
Modified: 16/04/2001
Company:
----------
Key: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
BHO: C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
509328 bytes
Created: 08/07/2008
Modified: 25/03/2008
Company: Sun Microsystems, Inc.
----------

**************************************************
13:39:29: Scanning ----- SHELLSERVICEOBJECTS -----

**************************************************
13:39:29: Scanning ----- SHAREDTASKSCHEDULER ENTRIES -----

**************************************************
13:39:29: Scanning ----- IMAGEFILE DEBUGGERS -----
No "Debugger" entries found.

**************************************************
13:39:29: Scanning ----- APPINIT_DLLS -----
The AppInit_DLLs value is blank

**************************************************
13:39:30: Scanning ----- SECURITY PROVIDER DLLS -----

**************************************************
13:39:30: Scanning ------ USER STARTUP GROUPS ------
Checking Startup Group for All Users
[C:\WINNT\Profiles\All Users\Start Menu\Programs\StartUp]
No Startup files for All Users were located to check

**************************************************
13:39:30: Scanning ------ COMMON STARTUP GROUP ------
[C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]
The Common Startup Group attempts to load the following file(s) at boot time:
C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
113664 bytes
Created: 14/10/2005
Modified: 04/11/1999
Company: Adobe Systems, Inc.
Adobe Gamma Loader.lnk - links to C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
--------------------
C:\WINNT\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
222720 bytes
Created: 03/02/2000
Modified: 03/02/2000
Company: SEIKO EPSON CORPORATION
EPSON Status Monitor 3 Environment Check.lnk - links to C:\WINNT\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
--------------------
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
679936 bytes
Created: 20/04/2008
Modified: 15/09/2004
Company:
Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk - links to C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
--------------------

**************************************************
No User Startup Groups were located to check

**************************************************
13:39:32: Scanning ----- SCHEDULED TASKS -----
No Scheduled Tasks found to scan

**************************************************
13:39:33: ----- ADDITIONAL CHECKS -----
PE386 rootkit checks completed
----------
Winlogon registry rootkit checks completed
----------
Heuristic checks for hidden files/drivers completed
----------
Layered Service Provider entries checks completed
----------
Windows Explorer Policies checks completed
----------
Desktop Wallpaper: C:\WINNT\Granit vert.bmp
C:\WINNT\Granit vert.bmp
26582 bytes
Created: 10/10/2005
Modified: 16/12/1999
Company:
----------
Web Desktop Wallpaper: %USERPROFILE%\Bureau\Autocross\130-3069_IMG.JPG
C:\Documents and Settings\Administrateur\Bureau\Autocross\130-3069_IMG.JPG
298444 bytes
Created: 08/04/2008
Modified: 05/04/2008
Company:
----------
Additional file checks completed

**************************************************
13:39:36: Scanning ----- RUNNING PROCESSES -----

C:\WINNT\System32\smss.exe
--------------------
C:\WINNT\system32\csrss.exe
--------------------
C:\WINNT\system32\winlogon.exe
--------------------
C:\WINNT\system32\services.exe
--------------------
C:\WINNT\system32\lsass.exe
--------------------
C:\WINNT\system32\svchost.exe
--------------------
C:\WINNT\system32\spoolsv.exe
--------------------
C:\Program Files\a-squared Free\a2service.exe
--------------------
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
--------------------
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
--------------------
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
--------------------
C:\WINNT\System32\svchost.exe
--------------------
C:\WINNT\system32\hidserv.exe
--------------------
C:\WINNT\system32\PnkBstrA.exe
--------------------
C:\WINNT\system32\PnkBstrB.exe
--------------------
C:\WINNT\system32\regsvc.exe
--------------------
C:\WINNT\system32\MSTask.exe
--------------------
C:\WINNT\system32\stisvc.exe
--------------------
C:\WINNT\System32\WBEM\WinMgmt.exe
--------------------
C:\WINNT\system32\mspmspsv.exe
--------------------
C:\WINNT\system32\svchost.exe
--------------------
C:\WINNT\Explorer.EXE
--------------------
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
--------------------
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
--------------------
C:\WINNT\system32\igfxtray.exe
--------------------
C:\WINNT\system32\hkcmd.exe
--------------------
C:\WINNT\system32\LVCOMSX.EXE
--------------------
C:\Program Files\Logitech\Video\LogiTray.exe
--------------------
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
--------------------
C:\WINNT\system32\wuauclt.exe
--------------------
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
--------------------
C:\Program Files\Logitech\Video\FxSvr2.exe
--------------------
C:\WINNT\system32\ZoneLabs\vsmon.exe
--------------------
C:\Program Files\Mozilla Firefox\firefox.exe
--------------------
C:\Program Files\MSN Messenger\msnmsgr.exe
--------------------
C:\Documents and Settings\Administrateur\Application Data\Simply Super Software\Trojan Remover\lmjD.exe
FileSize: 2486848
[This is a Trojan Remover component]
--------------------
--------------------

**************************************************
13:39:59: Checking AUTOEXEC.BAT file
AUTOEXEC.BAT found in C:\
No malicious entries were found in the AUTOEXEC.BAT file

**************************************************
13:39:59: Checking AUTOEXEC.NT file
AUTOEXEC.NT found in C:\WINNT\system32
No malicious entries were found in the AUTOEXEC.NT file

**************************************************
13:39:59: Checking HOSTS file
No malicious entries were found in the HOSTS file

**************************************************
------ INTERNET EXPLORER HOME/START/SEARCH SETTINGS ------
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Start Page":
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Local Page":
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Page_URL":
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Search_URL":
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\"CustomizeSearch":
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\"SearchAssistant":
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Start Page":
https://www.orange.fr/portail
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Local Page":
C:\WINNT\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

**************************************************
=== NO CHANGES HAVE BEEN MADE TO YOUR SYSTEM FILES ===
Scan completed at: 13:39:59 09 juil. 2008
************************************************************


++
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
geoffrey5 Messages postés 13732 Date d'inscription dimanche 20 mai 2007 Statut Contributeur sécurité Dernière intervention 21 mai 2010 10
9 juil. 2008 à 15:58
Salut !!

télécharge a-squared free 3.5 à cette adresse : https://www.emsisoft.com/fr/

fais la mise à jour et analyses.

Vas aussi faire des analyses en ligne à cette adresse :

http://www.zebulon.fr/outils/antivirus/antivirus-en-ligne.php

Les deux premiers savent désinfecter.
0
Voila le rapport.

Version - a-squared Free 3.5
Dernière mise à jour : 09/07/2008 20:10:45

Paramètres des balayages :

Éléments : Mémoire, Traces, Cookies, C:\
Balaye dans les archives : Marche
Analyse heuristique : Marche
Balaye dans les ADS : Marche

Début du balayage : 09/07/2008 20:14:35

C:\Documents and Settings\Administrateur\Cookies\administrateur@atdmt[2].txt Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@bs.serving-sys[2].txt Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Cookies\administrateur@serving-sys[1].txt Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:33 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:68 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:69 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:70 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:71 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:92 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:176 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:216 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:233 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:316 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:317 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:318 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:321 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:365 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:366 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:367 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:368 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:405 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:412 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:435 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:464 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:465 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:486 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:547 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:605 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:610 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:611 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:615 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:616 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:660 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:675 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:677 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:701 Objets détectés : Trace.TrackingCookie
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bwjvbp43.default\cookies.txt:716 Objets détectés : Trace.TrackingCookie

Analysé

Fichiers : 83244
Traces : 260434
Cookies : 752
Processus : 32

Objets trouvés

Fichiers : 0
Traces : 0
Cookies : 37
Processus : 0
Clés de Registre : 0

Fin du balayage : 09/07/2008 22:06:16
Temps du balayage : 1:51:41
0