Carpediem vars
sacha
-
sacha -
sacha -
Bonjour,
J'ai le spybot qui m'a détecté le CARPEDIEM VERS je n'arrive pas à l'éliminer aider moi svp
Voici le rapport de HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:45:18, on 25/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\Plugins\RazaWebHook.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEHlprObj Class - {F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} - LineAudio.dll (file missing)
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [InstantTray] "C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe"
O4 - HKCU\..\Run: [IW_Drop_Icon] "C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe" /DropDisc
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 -reboot 1
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [InstantTray] "C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe" (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [IW_Drop_Icon] "C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe" /DropDisc (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 -reboot 1 (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (User '?')
O4 - Global Startup: AOL Companion.lnk = ?
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://kx.bar.need2find.com/KX/menusearch.html?p=KX
O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files\Shareaza\Plugins\RazaWebHook.dll/3000
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=www.packardbell.fr/center
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
J'ai le spybot qui m'a détecté le CARPEDIEM VERS je n'arrive pas à l'éliminer aider moi svp
Voici le rapport de HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:45:18, on 25/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\system32\DfrgNtfs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\Plugins\RazaWebHook.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEHlprObj Class - {F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} - LineAudio.dll (file missing)
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [InstantTray] "C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe"
O4 - HKCU\..\Run: [IW_Drop_Icon] "C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe" /DropDisc
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 -reboot 1
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [InstantTray] "C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe" (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [IW_Drop_Icon] "C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe" /DropDisc (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 -reboot 1 (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-1708537768-1177238915-1417001333-1004\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (User '?')
O4 - Global Startup: AOL Companion.lnk = ?
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://kx.bar.need2find.com/KX/menusearch.html?p=KX
O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files\Shareaza\Plugins\RazaWebHook.dll/3000
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=www.packardbell.fr/center
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
7 réponses
salut.
telecharge avg
http://www.commentcamarche.net/telecharger/telecharger 218 avg anti spyware.
a+
telecharge avg
http://www.commentcamarche.net/telecharger/telecharger 218 avg anti spyware.
a+
Voila l'analyse du AVG
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:38:08 25/07/2008
+ Résultat de l'analyse:
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143095.dll -> Adware.404Search : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035994.dll -> Adware.Altnet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063692.dll -> Adware.Altnet : Aucune action entreprise.
HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Adware.Altnet : Aucune action entreprise.
HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Adware.Altnet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0047330.exe -> Adware.Casino : Aucune action entreprise.
HKLM\SOFTWARE\Classes\CLSID\{F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} -> Adware.Generic : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objecta\{f7d40011-29bb-43eb-9c97-875ce89e9e36} -> Adware.Generic : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} -> Adware.Generic : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F62A47A7-4CA3-9D00-95A3-6724D43A9E8C} -> Adware.Generic : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F7D40011-29BB-43EB-9C97-875CE89E9E36} -> Adware.Generic : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145357.exe -> Adware.MalwareWipe : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035973.cpl -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035974.exe -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0036006.DLL -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063677.cpl -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063678.exe -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0064636.DLL -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143084.ini -> Adware.Qworke : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0064634.dll -> Adware.RXBar : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Aucune action entreprise.
C:\Documents and Settings\cri cri\Mes documents\Install.exe -> Adware.Spysheriff : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143028.exe -> Adware.SpywareQuake : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145358.exe -> Adware.SpywareQuake : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146301.exe -> Downloader.Zlob.aai : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143009.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143023.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143063.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143301.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0144302.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145321.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146300.exe -> Downloader.Zlob.zj : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146302.exe -> Downloader.Zlob.zk : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@m.webtrends[2].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
Fin du rapport
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 17:38:08 25/07/2008
+ Résultat de l'analyse:
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143095.dll -> Adware.404Search : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035994.dll -> Adware.Altnet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063692.dll -> Adware.Altnet : Aucune action entreprise.
HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Adware.Altnet : Aucune action entreprise.
HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Adware.Altnet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0047330.exe -> Adware.Casino : Aucune action entreprise.
HKLM\SOFTWARE\Classes\CLSID\{F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} -> Adware.Generic : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objecta\{f7d40011-29bb-43eb-9c97-875ce89e9e36} -> Adware.Generic : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F62A47A7-4CA3-9D00-95A3-6724d43a9E8C} -> Adware.Generic : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F62A47A7-4CA3-9D00-95A3-6724D43A9E8C} -> Adware.Generic : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F7D40011-29BB-43EB-9C97-875CE89E9E36} -> Adware.Generic : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145357.exe -> Adware.MalwareWipe : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035973.cpl -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0035974.exe -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0036006.DLL -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063677.cpl -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0063678.exe -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0064636.DLL -> Adware.P2PNet : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143084.ini -> Adware.Qworke : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0064634.dll -> Adware.RXBar : Aucune action entreprise.
HKU\S-1-5-21-1708537768-1177238915-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Aucune action entreprise.
C:\Documents and Settings\cri cri\Mes documents\Install.exe -> Adware.Spysheriff : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143028.exe -> Adware.SpywareQuake : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145358.exe -> Adware.SpywareQuake : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146301.exe -> Downloader.Zlob.aai : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143009.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143023.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143063.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0143301.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0144302.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0145321.tlb -> Downloader.Zlob.ahx : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146300.exe -> Downloader.Zlob.zj : Aucune action entreprise.
C:\System Volume Information\_restore{9D595A1D-4DB0-4385-93CD-4C1513211CEB}\RP33\A0146302.exe -> Downloader.Zlob.zk : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\cri cri\Cookies\cri_cri@m.webtrends[2].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
Fin du rapport
j'ai suprimer les données malveillante qu'il a trouvé AVG je suis en train de faire une autre analyse cette fois ci rapide du systeme
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
salut
telecharge hijacthis et post le log.
http://www.commentcamarche.net/telecharger/telechargement 159 hijackthis.
Télécharger Malwarebyte's Anti-Malware.Executes le en mode sans echec.Post le rapport qu'il va generer et supprime tout ce qu'il trouve.
http://www.commentcamarche.net/telecharger/telecharger 34055379 malwarebyte s anti malware
telecharge hijacthis et post le log.
http://www.commentcamarche.net/telecharger/telechargement 159 hijackthis.
Télécharger Malwarebyte's Anti-Malware.Executes le en mode sans echec.Post le rapport qu'il va generer et supprime tout ce qu'il trouve.
http://www.commentcamarche.net/telecharger/telecharger 34055379 malwarebyte s anti malware
