Probleme avec des message d'Alerte qui envahie mon ecran
Dernière réponse : dans Sécurité
slt
Quand jsui connecté a internet, des messages me sont envoyé, comme
"System Alert : Spyware detected"
Des fenetre s'affiche, ou il montre qui scane mon ordi et ki me demande si jve acheté ce logiciel...
Exemple de se qui s'affiche :
1er
2eme
3eme
4eme
Voila donc jai deja regardé dans ajouter/supprimé ya aucun truk installé qui pourrai etre sa..
Jai Fé un nettoyage avec "Ccleaner" sa na rien changé.
jai fé les logiciel :
Ad-aware 6.0 et Spybot - Search & Destroy
sa na rien changé non plus.
On pe remarqué sur le "1er exemple", un rond bleu avec un point d'interrogation tous en bas a droite de mon écran ainsi que un triangle jaune avec un point d'exclamation, il n'était pas la avant et jai limpression ke c eux quii provoquent tous sa !
es ke vous pouvez m'aider a les supprimé et éviter kil revienne ?
merci
Quand jsui connecté a internet, des messages me sont envoyé, comme
"System Alert : Spyware detected"
Des fenetre s'affiche, ou il montre qui scane mon ordi et ki me demande si jve acheté ce logiciel...
Exemple de se qui s'affiche :
1er
2eme
3eme
4eme
Voila donc jai deja regardé dans ajouter/supprimé ya aucun truk installé qui pourrai etre sa..
Jai Fé un nettoyage avec "Ccleaner" sa na rien changé.
jai fé les logiciel :
Ad-aware 6.0 et Spybot - Search & Destroy
sa na rien changé non plus.
On pe remarqué sur le "1er exemple", un rond bleu avec un point d'interrogation tous en bas a droite de mon écran ainsi que un triangle jaune avec un point d'exclamation, il n'était pas la avant et jai limpression ke c eux quii provoquent tous sa !
es ke vous pouvez m'aider a les supprimé et éviter kil revienne ?
merci
Autres pages sur : probleme message alerte envahie ecran
Lassé par la pub ? Créez un compte
Tu n'es pas dans la bonne section mais bon:
Commence par télécharger HijackThis et met le de coté: http://www.infos-du-net.com/telecharger/HijackThis.html
ainsi que Smitfraud Fix: http://siri.urz.free.fr/Fix/SmitfraudFix.zip
1/ SMitfraudFix
Dézippe-le sur le Bureau.
Ouvre le dossier SmitfraudFix et lance SmitfraudFix.cmd
Choisis l'option 1 (Recherche)
Si tu vois des lignes avec PRESENT! Continue
2/ Redémarre en mode sans échec (Pour cela : démarrer le PC en tapotant sur la touche F8 du clavier jusqu'à ce que le menu des options avancées de Windows apparaisse puis avec les touches fléchées du clavier, sélectionner Mode sans échec puis appuyer sur la touche Entrée...)
Relance SmitfraudFix et choisis cette fois l’option 2 et réponds oui à chaque question
Sauvegarde le rapport.
3/ Poste un rapport Hihackthis
Commence par télécharger HijackThis et met le de coté: http://www.infos-du-net.com/telecharger/HijackThis.html
ainsi que Smitfraud Fix: http://siri.urz.free.fr/Fix/SmitfraudFix.zip
1/ SMitfraudFix
Dézippe-le sur le Bureau.
Ouvre le dossier SmitfraudFix et lance SmitfraudFix.cmd
Choisis l'option 1 (Recherche)
Si tu vois des lignes avec PRESENT! Continue
2/ Redémarre en mode sans échec (Pour cela : démarrer le PC en tapotant sur la touche F8 du clavier jusqu'à ce que le menu des options avancées de Windows apparaisse puis avec les touches fléchées du clavier, sélectionner Mode sans échec puis appuyer sur la touche Entrée...)
Relance SmitfraudFix et choisis cette fois l’option 2 et réponds oui à chaque question
Sauvegarde le rapport.
3/ Poste un rapport Hihackthis
On a pas encore fini ;-) .
I) Vérification de l'ordinateur par des antivirus et anti malwares :
1) Télécharge Ewido mets le à jour et fais un scan en mode sans échec (tapote la touche F8 au démarage de ton ordinateur). Redémarre normalement et post le log.Va voir ce topic explicatif pour t'aider à l'utiliser et à poster le log.
II) Faire un log HijackThis :
** Télécharge HijackThis et clique sur "Do a system scan only". A la fin du scan fait "save log" et enregistre le sur ton bureau,post le ensuite en fesant un copier-coller
I) Vérification de l'ordinateur par des antivirus et anti malwares :
1) Télécharge Ewido mets le à jour et fais un scan en mode sans échec (tapote la touche F8 au démarage de ton ordinateur). Redémarre normalement et post le log.Va voir ce topic explicatif pour t'aider à l'utiliser et à poster le log.
II) Faire un log HijackThis :
** Télécharge HijackThis et clique sur "Do a system scan only". A la fin du scan fait "save log" et enregistre le sur ton bureau,post le ensuite en fesant un copier-coller
Oui tu le colle en ligne comme dis dans le tuto explicatif.
lilso a écrit :
pck tout le monde vera après peut etre ke ya des chose a pa montré sur ce copié collé ke jai fait du rapport ?
Gné ?? :-? :-? Rien compris. Bref c'est pas grave il n'y a rien de confidentiel sur ce rapport.
Post leeee !!!!
Citation :
lilso a écrit :
pck tout le monde vera après peut etre ke ya des chose a pa montré sur ce copié collé ke jai fait du rapport ?
Gné ?? :-? :-? Rien compris. Bref c'est pas grave il n'y a rien de confidentiel sur ce rapport.
Post leeee !!!!
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 00:44:19 20/06/2006
+ Scan result:
HKU\S-1-5-21-1715567821-2000478354-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Cleaned with backup (quarantined).
HKU\S-1-5-21-1715567821-2000478354-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_38-1.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall7_22-1.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall7_22.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSE.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\system32\iifghef.dll -> Adware.Virtumonde : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl10B.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl18C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1AF.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C0.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C4.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1F1.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1F2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1FA.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl202.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl22.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl27.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl28.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl2C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl40.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl42.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl4B5.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl53.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl58.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl6.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl62.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl69.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl84.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlB4.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlC2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Del1E8.tmp -> Downloader.Agent.xz : Cleaned with backup (quarantined).
C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\WINDOWS\system32\a50dbbc8.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QRML1BOW\!update-3895[1].0000 -> Downloader.PurityScan.co : Cleaned with backup (quarantined).
C:\Program Files\Fichiers communs\Y1123OA.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Program Files\аѕsembly\javaw.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Program Files\ImTOO\MP4 Video Converter 3\run.exe -> Downloader.Zlob.tm : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win109.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win27.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win83.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
:mozilla.116:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.118:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.119:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.120:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.121:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.70:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.71:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.72:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.73:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.41:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.42:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.85:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.86:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.37:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.82:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.154:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.303:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.304:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.305:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.28:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.49:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.12:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.13:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.14:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.15:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.16:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.152:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.153:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.287:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.297:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.298:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ehg-ads.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.307:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.295:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.296:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.74:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.75:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.76:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.77:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.78:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.79:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.80:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.81:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@revenue[2].txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.107:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.197:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.198:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.199:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.200:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.201:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.202:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.203:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.204:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.205:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.206:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.235:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.24:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.25:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.20:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.21:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.124:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.98:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.286:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.87:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.88:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.89:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@zedo[2].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Veronique\Local Settings\Temporary Internet Files\Content.IE5\F0UA1IHW\srvsid[1].exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).
C:\WINDOWS\system32\wintfj32.dll -> Trojan.Agent.vg : Cleaned with backup (quarantined).
[208] C:\WINDOWS\system32\wintfj32.dll -> Trojan.Agent.vg : Error during cleaning.
::Report end
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 00:44:19 20/06/2006
+ Scan result:
HKU\S-1-5-21-1715567821-2000478354-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Cleaned with backup (quarantined).
HKU\S-1-5-21-1715567821-2000478354-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_38-1.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall7_22-1.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall7_22.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSE.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\system32\iifghef.dll -> Adware.Virtumonde : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl10B.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl18C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1AF.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C0.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1C4.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1F1.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1F2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl1FA.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl202.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl22.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl27.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl28.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl2C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl40.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl42.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl4B5.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl53.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl58.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl6.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl62.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl69.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl84.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlB4.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlC2.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\Del1E8.tmp -> Downloader.Agent.xz : Cleaned with backup (quarantined).
C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\WINDOWS\system32\a50dbbc8.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QRML1BOW\!update-3895[1].0000 -> Downloader.PurityScan.co : Cleaned with backup (quarantined).
C:\Program Files\Fichiers communs\Y1123OA.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Program Files\аѕsembly\javaw.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Program Files\ImTOO\MP4 Video Converter 3\run.exe -> Downloader.Zlob.tm : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win109.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win27.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win83.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
:mozilla.116:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.118:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.119:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.120:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.121:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.70:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.71:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.72:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.73:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.41:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.42:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.85:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.86:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.37:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.82:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.154:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.303:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.304:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.305:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.28:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.49:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.12:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.13:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.14:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.15:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.16:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.152:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.153:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.287:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.297:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.298:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ehg-ads.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.307:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.295:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.296:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.74:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.75:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.76:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.77:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.78:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.79:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.80:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.81:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@revenue[2].txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.107:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.197:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.198:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.199:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.200:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.201:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.202:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.203:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.204:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.205:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.206:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.235:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.24:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.25:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.20:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.21:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.124:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.98:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.286:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.87:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.88:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.89:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@zedo[2].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Veronique\Local Settings\Temporary Internet Files\Content.IE5\F0UA1IHW\srvsid[1].exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).
C:\WINDOWS\system32\wintfj32.dll -> Trojan.Agent.vg : Cleaned with backup (quarantined).
[208] C:\WINDOWS\system32\wintfj32.dll -> Trojan.Agent.vg : Error during cleaning.
::Report end
voila :
Logfile of HijackThis v1.99.1
Scan saved at 00:42:20, on 20/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Documents and Settings\Veronique\Bureau\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O1 - Hosts: 200.73.174.154 STORAGE.HOSTANCE.NET
O1 - Hosts: 200.73.174.154 STORAGE-TASP.COM
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [a50dbbc8.exe] C:\WINDOWS\system32\a50dbbc8.exe
O4 - HKLM\..\Run: [E-nrgyPlus] C:\Program Files\E-nrgyPlus\E-nrgyPlus.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kpx] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [CompTick] C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\Link Bike.exe
O4 - HKCU\..\Run: [a50dbbc8.exe] C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
O4 - HKCU\..\Run: [Dods] "C:\PROGRA~1\SEMBLY~1\javaw.exe" -vt yazb
O4 - HKCU\..\Run: [Fxoafl] C:\Documents and Settings\Veronique\Mes documents\??stem32\j?vaw.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {6A2E758A-028B-46BB-A11D-0608AB5A4ED3} (DaumBGMCtrl Class) - http://listen.daum.net/52st/bgmplayer/Daum52stBGMPlayer...
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll C:\WINDOWS\system32\wuauclt.dll
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.EXE (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
Logfile of HijackThis v1.99.1
Scan saved at 00:42:20, on 20/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Documents and Settings\Veronique\Bureau\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O1 - Hosts: 200.73.174.154 STORAGE.HOSTANCE.NET
O1 - Hosts: 200.73.174.154 STORAGE-TASP.COM
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [a50dbbc8.exe] C:\WINDOWS\system32\a50dbbc8.exe
O4 - HKLM\..\Run: [E-nrgyPlus] C:\Program Files\E-nrgyPlus\E-nrgyPlus.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kpx] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [CompTick] C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\Link Bike.exe
O4 - HKCU\..\Run: [a50dbbc8.exe] C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
O4 - HKCU\..\Run: [Dods] "C:\PROGRA~1\SEMBLY~1\javaw.exe" -vt yazb
O4 - HKCU\..\Run: [Fxoafl] C:\Documents and Settings\Veronique\Mes documents\??stem32\j?vaw.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {6A2E758A-028B-46BB-A11D-0608AB5A4ED3} (DaumBGMCtrl Class) - http://listen.daum.net/52st/bgmplayer/Daum52stBGMPlayer...
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll C:\WINDOWS\system32\wuauclt.dll
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.EXE (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
Bonjour,
Télécharge Smitfraudfix
Dézippe-le sur le Bureau.
Ouvre le dossier SmitfraudFix et lance SmitfraudFix.cmd
Choisis l'Option 1 (Recherche)
Poste le premier rapport ici.
Télécharge Smitfraudfix
Dézippe-le sur le Bureau.
Ouvre le dossier SmitfraudFix et lance SmitfraudFix.cmd
Choisis l'Option 1 (Recherche)
Poste le premier rapport ici.
SmitFraudFix v2.62
Rapport fait à 21:01:10,25, 20/06/2006
Executé à partir de C:\Documents and Settings\Veronique\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Veronique\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\VERONI~1\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
Rapport fait à 21:01:10,25, 20/06/2006
Executé à partir de C:\Documents and Settings\Veronique\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Veronique\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\VERONI~1\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
La procédure est longue et en partie en mode sans échec,
imprime ou mets dans un fichier texte les instructions.
Télécharge:
Ccleaner
Installe le dans un répertoire dédié.
Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
Redémarre en mode sans échec
- Lance Hijackthis ->Do a system scan only
->Coche les lignes puis clique sur Fix checked:
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O1 - Hosts: 200.73.174.154 STORAGE.HOSTANCE.NET
O1 - Hosts: 200.73.174.154 STORAGE-TASP.COM
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [a50dbbc8.exe] C:\WINDOWS\system32\a50dbbc8.exe
O4 - HKLM\..\Run: [E-nrgyPlus] C:\Program Files\E-nrgyPlus\E-nrgyPlus.exe
O4 - HKCU\..\Run: [CompTick] C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\Link Bike.exe
O4 - HKCU\..\Run: [a50dbbc8.exe] C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
O4 - HKCU\..\Run: [Dods] "C:\PROGRA~1\SEMBLY~1\javaw.exe" -vt yazb
O4 - HKCU\..\Run: [Fxoafl] C:\Documents and Settings\Veronique\Mes documents\??stem32\j?vaw.exe
- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation
- Suppime ces fichiers/dossiers si existe:
C:\Documents and Settings\All Users\Application Data\Send dash download 32\
C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\ ~1 = abreviation
C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
C:\WINDOWS\system32\a50dbbc8.exe
C:\Program Files\E-nrgyPlus\
C:\PROGRA~1\SEMBLY~1\
C:\Documents and Settings\Veronique\Mes documents\??stem32\ ? = caractere aleatoire
- Lance un nettoyage Ccleaner
Bouton "Analyse" puis "Lancer le Néttoyage"
Redémarre normalement.
- Fais un scan en ligne Kaspersky
Aide pour les scans en ligne
Sauvegarde puis colle le rapport en fin d'analyse.
J'hesite sur quelques lignes, en attendant la suite.
imprime ou mets dans un fichier texte les instructions.
Télécharge:
Ccleaner
Installe le dans un répertoire dédié.
Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
Redémarre en mode sans échec
- Lance Hijackthis ->Do a system scan only
->Coche les lignes puis clique sur Fix checked:
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O1 - Hosts: 200.73.174.154 STORAGE.HOSTANCE.NET
O1 - Hosts: 200.73.174.154 STORAGE-TASP.COM
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [a50dbbc8.exe] C:\WINDOWS\system32\a50dbbc8.exe
O4 - HKLM\..\Run: [E-nrgyPlus] C:\Program Files\E-nrgyPlus\E-nrgyPlus.exe
O4 - HKCU\..\Run: [CompTick] C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\Link Bike.exe
O4 - HKCU\..\Run: [a50dbbc8.exe] C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
O4 - HKCU\..\Run: [Dods] "C:\PROGRA~1\SEMBLY~1\javaw.exe" -vt yazb
O4 - HKCU\..\Run: [Fxoafl] C:\Documents and Settings\Veronique\Mes documents\??stem32\j?vaw.exe
- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation
- Suppime ces fichiers/dossiers si existe:
C:\Documents and Settings\All Users\Application Data\Send dash download 32\
C:\DOCUME~1\VERONI~1\APPLIC~1\MAILCO~1\ ~1 = abreviation
C:\Documents and Settings\Veronique\Local Settings\Application Data\a50dbbc8.exe
C:\WINDOWS\system32\a50dbbc8.exe
C:\Program Files\E-nrgyPlus\
C:\PROGRA~1\SEMBLY~1\
C:\Documents and Settings\Veronique\Mes documents\??stem32\ ? = caractere aleatoire
- Lance un nettoyage Ccleaner
Bouton "Analyse" puis "Lancer le Néttoyage"
Redémarre normalement.
- Fais un scan en ligne Kaspersky
Aide pour les scans en ligne
Sauvegarde puis colle le rapport en fin d'analyse.
J'hesite sur quelques lignes, en attendant la suite.
J'ai trouvé ca sur la premiere ligne, un malware qui courerait depuis il y a 3 jours :
http://fileinfo.prevx.com/spyware/qqa3ad23648585-FAST18081741/FASTRX.DLL.html
http://fileinfo.prevx.com/spyware/qqa3ad23648585-FAST18081741/FASTRX.DLL.html
c bon voila :
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\Veronique\Application Data\Online Open\Seek Bits.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security\QUARANTINE\1F.tmp Infecté: Trojan-Downloader.Win32.PurityScan.co ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038672.exe/run.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038672.exe ZIP: infecté - 1 ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038674.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038880.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0039877.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0039889.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040187.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040212.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040218.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040221.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040258.exe Infecté: Backdoor.Win32.Webdor.af ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0041212.exe Infecté: Backdoor.Win32.Webdor.an ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0041221.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042218.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042219.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042242.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042243.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042254.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0043255.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044254.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044271.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044277.dll Infecté: not-virus:Hoax.Win32.Renos.dt ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044292.exe Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044295.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044310.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044323.exe Infecté: Trojan-Downloader.Win32.Zlob.tx ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044332.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044344.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044352.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044353.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044366.dll Infecté: Trojan.Win32.Agent.vg ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044367.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044368.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044369.exe Infecté: Trojan-Downloader.Win32.PurityScan.cq ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044370.exe Infecté: Trojan-Downloader.Win32.PurityScan.cq ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044371.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
Analyse terminée.
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\Veronique\Application Data\Online Open\Seek Bits.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security\QUARANTINE\1F.tmp Infecté: Trojan-Downloader.Win32.PurityScan.co ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038672.exe/run.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038672.exe ZIP: infecté - 1 ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038674.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0038880.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0039877.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0039889.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040187.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040212.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040218.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040221.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP50\A0040258.exe Infecté: Backdoor.Win32.Webdor.af ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0041212.exe Infecté: Backdoor.Win32.Webdor.an ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0041221.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042218.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042219.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042242.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042243.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0042254.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0043255.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044254.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044271.tlb Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044277.dll Infecté: not-virus:Hoax.Win32.Renos.dt ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044292.exe Infecté: Trojan-Downloader.Win32.Zlob.ub ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044295.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044310.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044323.exe Infecté: Trojan-Downloader.Win32.Zlob.tx ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044332.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044344.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044352.exe Infecté: Trojan.Win32.Dialer.is ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044353.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044366.dll Infecté: Trojan.Win32.Agent.vg ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044367.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044368.exe Infecté: Trojan-Downloader.Win32.Obfuscated.a ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044369.exe Infecté: Trojan-Downloader.Win32.PurityScan.cq ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044370.exe Infecté: Trojan-Downloader.Win32.PurityScan.cq ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP51\A0044371.exe Infecté: Trojan-Downloader.Win32.Zlob.tm ignoré
Analyse terminée.
Sa donne sa :
Voir ici
jai un dossier nommé : system 32 dans mes document, et jsé pa tro koi faire... pck il na rien a faire la .
Et sinon ya t-il encore des chose a effectué ?
Voir ici
jai un dossier nommé : system 32 dans mes document, et jsé pa tro koi faire... pck il na rien a faire la .
Et sinon ya t-il encore des chose a effectué ?
oui
C:\Documents and Settings\Veronique\Application Data\Online Open\__delete_on_reboot__S_e_e_k_ _B_i_t_s_._e_x_e_ Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security\QUARANTINE\1F.tmp Infecté: Trojan-Downloader.Win32.PurityScan.co ignoré
C:\Program Files\Visicom Media\FTP Expert 3\uninst-ftp.exe Infecté: Trojan-Downloader.Win32.Zlob.uk ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP56\A0046845.exe
C:\Documents and Settings\Veronique\Application Data\Online Open\__delete_on_reboot__S_e_e_k_ _B_i_t_s_._e_x_e_ Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security\QUARANTINE\1F.tmp Infecté: Trojan-Downloader.Win32.PurityScan.co ignoré
C:\Program Files\Visicom Media\FTP Expert 3\uninst-ftp.exe Infecté: Trojan-Downloader.Win32.Zlob.uk ignoré
C:\System Volume Information\_restore{712214F7-9B6D-408A-9943-592B98EE7F08}\RP56\A0046845.exe
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 13:26:45 25/06/2006
+ Scan result:
C:\Documents and Settings\Veronique\Mes documents\ѕуstem32\jаvaw.exe -> Adware.ClickSpring : No action taken.
C:\Documents and Settings\Veronique\Local Settings\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\Cache\3B76AA82d01 -> Not-A-Virus.Downloader.Win32.WinFixer.d : No action taken.
:mozilla.162:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@tcompany.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.70:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.71:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.64:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.65:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.66:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.33:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.20:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.189:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.190:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.191:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.163:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Cqcounter : No action taken.
:mozilla.57:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.54:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
:mozilla.144:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.145:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.146:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.161:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Masterstats : No action taken.
:mozilla.14:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.247:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.248:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.201:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Paycounter : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.37:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.38:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.39:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.40:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.41:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.42:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.43:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.100:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.96:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.97:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.98:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.99:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.115:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.116:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.117:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.118:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.232:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexlist : No action taken.
:mozilla.22:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.24:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.128:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.129:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.130:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.186:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.187:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.217:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
:mozilla.107:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.108:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.112:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.113:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.114:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
---------------------------------------------------------
+ Created at: 13:26:45 25/06/2006
+ Scan result:
C:\Documents and Settings\Veronique\Mes documents\ѕуstem32\jаvaw.exe -> Adware.ClickSpring : No action taken.
C:\Documents and Settings\Veronique\Local Settings\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\Cache\3B76AA82d01 -> Not-A-Virus.Downloader.Win32.WinFixer.d : No action taken.
:mozilla.162:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@tcompany.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.70:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.71:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.64:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.65:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.66:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.33:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.20:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.189:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.190:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.191:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : No action taken.
:mozilla.163:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Cqcounter : No action taken.
:mozilla.57:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.54:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
:mozilla.144:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.145:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.146:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.161:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Masterstats : No action taken.
:mozilla.14:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.247:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.248:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.201:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Paycounter : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.37:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.38:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.39:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.40:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.41:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.42:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.43:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.100:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.96:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.97:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.98:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.99:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.115:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.116:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.117:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.118:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.232:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Sexlist : No action taken.
:mozilla.22:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.24:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.128:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.129:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.130:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.186:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.187:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.217:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
:mozilla.107:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.108:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.112:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.113:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.114:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
Citation :
ricileprogramatteur a écrit :
fais supprimer sinon ca sert a rien
A ouai il faut tout leur dire en détail. Fais ceci :
a) Fais un "complete system scan".
b) A la fin du scan, vérifie qu'il y est bien marqué "delete à côté de chaque malware et clique seulement sur : "Apply all actions"
c) Ensuite, clique sur "Save Report " puis "Save report as" et sauve le rapport dans tes documents.
d)Post le rapport.
bonjour
1= qu'as tu fais du "system32" qui était dans document
car il fallait le supprimer et pas le remettre dans Windows ..
2 = il faut poster les rapports ewido afin de voir si tout à été supprimé ( ce qui n'était pas le cas dans le 1er rapport : il restait ça: C:\WINDOWS\system32\wintfj32.dll
refait Ewido , poste le rapport après nettoyage + un hijack
1= qu'as tu fais du "system32" qui était dans document
car il fallait le supprimer et pas le remettre dans Windows ..
2 = il faut poster les rapports ewido afin de voir si tout à été supprimé ( ce qui n'était pas le cas dans le 1er rapport : il restait ça: C:\WINDOWS\system32\wintfj32.dll
refait Ewido , poste le rapport après nettoyage + un hijack
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 20:14:28 29/06/2006
+ Scan result:
:mozilla.33:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.84:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.85:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.86:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.25:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.105:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.61:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.62:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.63:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.81:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.77:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
:mozilla.104:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.106:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.26:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.11:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.6:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.82:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[2].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.100:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.101:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.102:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
::Report end
---------------------------------------------------------
+ Created at: 20:14:28 29/06/2006
+ Scan result:
:mozilla.33:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.36:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.84:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.85:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.86:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.25:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.105:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.61:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.62:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.63:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.81:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.77:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
:mozilla.104:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.106:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.26:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.23:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.11:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.6:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.82:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Veronique\Cookies\veronique@weborama[2].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.100:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.101:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.102:C:\Documents and Settings\Veronique\Application Data\Mozilla\Firefox\Profiles\syrnkxla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
::Report end
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrsrv.exe
C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Veronique\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kpx] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {6A2E758A-028B-46BB-A11D-0608AB5A4ED3} (DaumBGMCtrl Class) - http://listen.daum.net/52st/bgmplayer/Daum52stBGMPlayer...
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll C:\WINDOWS\system32\wuauclt.dll
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.EXE (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrsrv.exe
C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Veronique\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [download 32 soap tick] C:\Documents and Settings\All Users\Application Data\Send dash download 32\ViewCopy.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kpx] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {6A2E758A-028B-46BB-A11D-0608AB5A4ED3} (DaumBGMCtrl Class) - http://listen.daum.net/52st/bgmplayer/Daum52stBGMPlayer...
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll C:\WINDOWS\system32\wuauclt.dll
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.EXE (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumProbleme ecran bleu avec un message spyware
- ForumProbleme pc s'eteint ecran bleu message
- ForumGros probleme ecran noir, avec message .
- ForumProbleme message windows securite alerte
- ForumProbleme message system alert
- ForumGros probleme message windows security alert
- ForumMessage d'alerte en javascript sans alert
- ForumLe rose a envahi mon ecran
- ForumMessage d'erreur de nero envahissant
- ForumMessage alerte reseau local
- Voir plus
