High-Tech Santé Médecine Droit-Finances

Réalisation

vidéo numérique

Rechercher : dans
Par :

[Virus]? Envoi automatique de mail

Dernière réponse le 24 fév 2007 à 01:03:52 Mathieu, le 22 aoû 2006 à 13:21:05 
 Signaler ce message aux modérateurs

Tout d'abord bonjour,

Je rencontre un problème d'envoi de mail depuis quelques jours.

Dès que j'ouvre ma connection de nombreuses fenêtres norton s'ouvrent
en bas à droite de mon écran me disant que mon mail n'a pas pu être envoyé...pourtant je n'envoi aucun mail et de plus les adresses de destination des mails me sont inconnues.

Sur ces fenêtres, norton me redirige vers cette page qui n'est pas d'une grande utilité:
http://service1.symantec.com/support/inter/sharedtechintl.nsf/fr_docid/2003111116...

J'ai essayé de nombreux antispywares et fait vérifier mon système pas norton. Je ne sais pas quoi faire d'autre.

Merci d'avance de votre aide.

Meilleures réponses pour « [Virus]? Envoi automatique de mail » dans :
Envoi de mail automatique via OUTLOOK Voir
Automatiser par un batch l'envoi d'un Mail... Voir
[Outlook/ThunderBird/Incredimail] Envoi/Réception de mail Voir Vous avez des problèmes d'envoi ou de réception de mail dans votre client de messagerie ? Cet article va vous aider à diagnostiquer le problème. 1. Introduction à la messagerie 2. Problèmes d'envoi de mail 3. Problèmes de réception de...
La signature automatique VoirLa signature automatique Si vous communiquez régulièrement par e-mail, il est utile de rappeler en fin de message quelques informations pratiques. Or pour ne pas avoir à taper systématiquement vos coordonnées personnelles à chaque fois que vous...
Message bloqué dans la boite d'envoi de Outlook VoirProblème J'ai un problème avec Outlook. Mon épouse a essayé d'envoyer un message de 25 megas. Mais bien sûr celui n'arrive pas à partir. Mais je n'arrive plus à le supprimer de la boite d'envoi car Outlook me dit qu'il est en train de l'envoyer et...
Posez votre question Répondre

1

Mathieu, le 22 aoû 2006 à 14:52:03

J'ai oublié de préciser que mon autoprotect de norton ce désactive à chaque redémarage de l'ordinateur.
Je pense être un emmetteur de spam... mais je ne sais pas comment régler ce problème

   
Répondre à Mathieu

2

Mathieu, le 22 aoû 2006 à 16:14:10

Voici deux rapport conscécutifs obtenus avec ewido:
+ Created at: 14:10:17 22/08/2006

+ Scan result:



C:\Documents and Settings\mathieu\Local Settings\Temp\5ex3.modul32s.exe -> Downloader.Horst.a : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\67exhdd.1.exe -> Downloader.Horst.a : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\68exhdd.1.exe -> Downloader.Horst.a : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\86exssd32i.exe -> Downloader.Horst.a : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\92exhdd.1.exe -> Downloader.Horst.a : Cleaned with backup (quarantined).
C:\Documents and Settings\papa\Local Settings\Temporary Internet Files\Content.IE5\49EVWP27\ErrorSafeScannerInstall_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Ignored.
C:\Documents and Settings\mathieu\Local Settings\Temp\20exmodul32s.1.exe -> Proxy.Horst.ep : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\2exmodul32s.1.exe -> Proxy.Horst.ep : Cleaned with backup (quarantined).
C:\Documents and Settings\mathieu\Local Settings\Temp\44exmodul32s.1.exe -> Proxy.Horst.ep : Cleaned with backup (quarantined).
:mozilla.10:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.11:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.8:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.9:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Administrateur\Cookies\administrateur@microsofteup.112.2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Administrateur\Cookies\administrateur@redcats.122.2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\papa\Cookies\papa@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@msnuk.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Administrateur\Cookies\administrateur@gde.adocean[2].txt -> TrackingCookie.Adocean : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@gde.adocean[2].txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.31:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.32:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.58:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.76:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@atdmt[1].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.12:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Administrateur\Cookies\administrateur@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.113:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@com[2].txt -> TrackingCookie.Com : Cleaned.
:mozilla.24:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\papa\Cookies\papa@e-2dj6wjk4kkdjmcp.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@e-2dj6wfkokmczobq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@e-2dj6wgkikmdzabp.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@e-2dj6wjnywiajafq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.68:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\papa\Cookies\papa@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.95:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.98:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.99:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@cityclub.gamingpromo[2].txt -> TrackingCookie.Gamingpromo : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@gamingpromo[1].txt -> TrackingCookie.Gamingpromo : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Cleaned.
:mozilla.43:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\papa\Cookies\papa@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.112:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.125:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.127:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.20:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.21:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.22:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.48:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.49:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.50:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.51:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.138:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@weborama[2].txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\Administrateur\Cookies\administrateur@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Administrateur\Local Settings\Temp\Cookies\administrateur@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\papa\Cookies\papa@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\toto\Cookies\toto@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.


+ Created at: 16:14:25 22/08/2006

+ Scan result:



C:\Documents and Settings\papa\Local Settings\Temporary Internet Files\Content.IE5\49EVWP27\ErrorSafeScannerInstall_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
:mozilla.14:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.15:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.16:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.55:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.56:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.34:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.38:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.39:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.40:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.41:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.42:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.44:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.45:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.46:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
C:\Documents and Settings\mathieu\Cookies\mathieu@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.28:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.29:C:\Documents and Settings\mathieu\Application Data\Mozilla\Firefox\Profiles\2gyy1juh.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.

J'espère qu'une personne beaucoup plus calée que moi pourra m'aider. Ce site m'a été recommandé pour cela. Merci

   
Répondre à Mathieu

3

Mathieu, le 22 aoû 2006 à 19:02:57

J'aVoici mon log Hijack

   
Répondre à Mathieu

4

Mathieu, le 22 aoû 2006 à 19:07:05

Désolé. Donc voiçi mon log Hijack:

Logfile of HijackThis v1.99.1
Scan saved at 19:06:04, on 22/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Securitoo\Controle Parental\bin\optproxy.exe
C:\WINDOWS\system32\sstray.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Wanadoo\EspaceWanadoo.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox 2 Beta 1\firefox.exe
C:\Program Files\Hijack this\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - Default URLSearchHook is missing
O1 - Hosts: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
O1 - Hosts: <HTML><HEAD>
O1 - Hosts: <TITLE>404 Not Found</TITLE>
O1 - Hosts: </HEAD><BODY>
O1 - Hosts: <H1>Not Found</H1>
O1 - Hosts: The requested URL /stat.dat was not found on this server.<P>
O1 - Hosts: </BODY></HTML>
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [nForce Tray Options] "sstray.exe" /r
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] "C:\PROGRA~1\MESSAG~1\StartMessager.exe" Messager Wanadoo
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] "C:\Program Files\Logitech\Video\ISStart.exe"
O4 - HKLM\..\Run: [LogitechVideoTray] "C:\Program Files\Logitech\Video\LogiTray.exe"
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" /source=HKLM
O4 - HKLM\..\Run: [EasyStudio_L] "C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe" -tray
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Mirabilis ICQ] C:\PROGRA~1\ICQ\ICQNet.exe
O4 - HKLM\..\Run: [PopUp Destroy] C:\Program Files\PopUp Destroy\Popup-Destroy.exe
O4 - HKLM\..\Run: [OBJMP3CAKEONLINE] "C:\Documents and Settings\All Users\Application Data\Program Start Obj Mp3\Isobird.exe"
O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [Registry Cleaner] "C:\Program Files\Registry Cleaner Trial\regclean.exe" -startminimize
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Spyware\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8382CB15-F020-48F2-A4FA-861C1E5EC42A}: NameServer = 80.10.246.1 80.10.246.132
O18 - Protocol: bw+0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - WgaLogon.dll (file missing)
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Securitoo Control Parental (OPTENET_FILTER) - Securitoo - C:\Program Files\Securitoo\Controle Parental\bin\optproxy.exe
O23 - Service: pdfFactory Pro Dispatcher v2 - Unknown owner - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" /service (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Windows Log - Unknown owner - C:\WINDOWS\system32\nvsvcd.exe

J'ai parcouru le forum et j'ai pu remarqué que le log Hijack était très souvent demandé.
Je n'y connai rien du tout. Quelqu'un pourrait il m'aider?

   
Répondre à Mathieu

5

boulepate62, le 22 aoû 2006 à 19:16:33

Salut,

tu peux tout supprimer ce que t'a trouvé Ewido


Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R3 - Default URLSearchHook is missing
O1 - Hosts: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
O1 - Hosts: <HTML><HEAD>
O1 - Hosts: <TITLE>404 Not Found</TITLE>
O1 - Hosts: </HEAD><BODY>
O1 - Hosts: <H1>Not Found</H1>
O1 - Hosts: The requested URL /stat.dat was not found on this server.<P>
O1 - Hosts: </BODY></HTML>
O4 - HKLM\..\Run: [nForce Tray Options] "sstray.exe" /r
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [OBJMP3CAKEONLINE] "C:\Documents and Settings\All Users\Application Data\Program Start Obj Mp3\Isobird.exe"
O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: bw+0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {0CE6BACE-2D65-4DA1-8144-DA262657F310} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - WgaLogon.dll (file missing)
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Windows Log - Unknown owner - C:\WINDOWS\system32\nvsvcd.exe


Clic sur demarrer, executer, tape: services.msc cherche dans la liste la ligne ci-dessous et regle la sur "desactivé"

Windows Log


Clic sur demarrer, rechercher, cherche et supprime ce fichier:

smss.exe <ATTENTION: ne supprime pas celui présent dans /system32/ mais bien celui qui est dans /system/

**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche f8, à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement


Puis ça:

Pour afficher tous les dossiers et fichiers cachés;

Clic sur "démarrer", "panneau de configuration", "outils" ,"option des dossiers", "affichage"
"
Coche:
¤ afficher les fichiers et dossiers cachés
Clic sur "appliquer" puis "ok"

Clic sur demarrer, poste de travail, C: documents & settings, all users, application data et supprime ce dossier:

Program Start Obj Mp3


Fais ce nettoyage: (à faire réguliérement)

¤Telecharges et installes ceci:
CCleaner:
Ccleaner

dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes

¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"


Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp avec un nouveau rapport hijackthis

http://www.bitdefender.com/scan8/ie.html


A++ *C'est en forgeant que l'on devient forgeron*
Besoin d'aide informatique->entraide.aceboard.fr

   
Répondre à boulepate62

6

Mathieu, le 22 aoû 2006 à 22:39:59

Un grand merci pour cette aide. Le problème semble être réglé.

Voiçi le log hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 22:40:25, on 22/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Securitoo\Controle Parental\bin\optproxy.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Wanadoo\EspaceWanadoo.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\Program Files\Wanadoo\Watch.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijack this\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] "C:\PROGRA~1\MESSAG~1\StartMessager.exe" Messager Wanadoo
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] "C:\Program Files\Logitech\Video\ISStart.exe"
O4 - HKLM\..\Run: [LogitechVideoTray] "C:\Program Files\Logitech\Video\LogiTray.exe"
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v2] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" /source=HKLM
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Mirabilis ICQ] C:\PROGRA~1\ICQ\ICQNet.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [LDM] \Program\
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8382CB15-F020-48F2-A4FA-861C1E5EC42A}: NameServer = 80.10.246.1 80.10.246.132
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Securitoo Control Parental (OPTENET_FILTER) - Securitoo - C:\Program Files\Securitoo\Controle Parental\bin\optproxy.exe
O23 - Service: pdfFactory Pro Dispatcher v2 - Unknown owner - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" /service (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

et voici le scan de bitdefender:

C:\Program Files\Norton AntiVirus\Quarantine\25CD381B=>(Quarantine-2)
Infected with: GenPack:Trojan.Downloader.Swizzor.GC

C:\Program Files\Norton AntiVirus\Quarantine\25CD381B=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\25CD381B=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\35D56CFC=>(Quarantine-2)
Infected with: GenPack:Trojan.Swizzor.LZ

C:\Program Files\Norton AntiVirus\Quarantine\35D56CFC=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton AntiVirus\Quarantine\35D56CFC=>(Quarantine-2)
Deleted

C:\Program Files\Norton AntiVirus\Quarantine\35D816F8=>(Quarantine-2)
Infected with: GenPack:Trojan.Swizzor.HH

C:\Program Files\Norton AntiVirus\Quarantine\35D816F8=>(Quarantine-2)
Deleted

F:\System Volume Information\_restore{79BE8769-E0B7-410E-97F6-E0ED3679C8B0}\RP762\A0175564.exe
Infected with: Backdoor.MoSucker.0.6

F:\System Volume Information\_restore{79BE8769-E0B7-410E-97F6-E0ED3679C8B0}\RP762\A0175564.exe
Disinfection failed

F:\System Volume Information\_restore{79BE8769-E0B7-410E-97F6-E0ED3679C8B0}\RP762\A0175564.exe
Deleted


Un virus à été trouvé (Backdoor.MoSucker.0.6) mais je crois qu'il à été éliminé par norton.

Encore merci.

   
Répondre à Mathieu

7

boulepate62, le 22 aoû 2006 à 23:07:28

De rien :-)


Supprime tous les fichiers mit en quarantaine par Norton.


Le scan à démontré que ta restauration du systeme est infecté, nous allons regler le probléme, marche à suivre

Alors ceci; F:\System Volume Information\_restore(voir rapport bitdefender) indique que ta restauration du systeme etait infecté, pour être sûr, nous allons créer un point propre.

Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"

¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".

Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:

Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.


je ne vois plus rien d'anormal, si tu as des questions n'hesites pas ;-)

A+++ *C'est en forgeant que l'on devient forgeron*
Besoin d'aide informatique->entraide.aceboard.fr

   
Répondre à boulepate62

8

Khama, le 13 oct 2006 à 18:13:29

Bonjour,
J'ai le même problème et je suis tout autant calé que Mathieu en info...
Hier mon PC envoyait les mails non-stop, aujourd'hui apparement rien mais norton m'a supprimé un virus nommé "trojan.lootsek.av"
Je ne pense pas que mon PC soit débarassé de ce problème pour autant donc je vais poster mes logs a la suite, si quelqu'un peut m'aider.

*Voici le scan bitdefender:

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\20exmodul32e.e.exe


Infected with: DeepScan:Generic.Malware.MYddldg.B83A86B3

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\20exmodul32e.e.exe


Disinfection failed

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\20exmodul32e.e.exe


Deleted

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\52exmodul32e.e.exe


Infected with: DeepScan:Generic.Malware.MYddldg.B83A86B3

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\52exmodul32e.e.exe


Disinfection failed

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\52exmodul32e.e.exe


Deleted

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\54exmodul32e.e.exe


Infected with: DeepScan:Generic.Malware.MYddldg.B83A86B3

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\54exmodul32e.e.exe


Disinfection failed

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\54exmodul32e.e.exe


Deleted

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\99exmodul32e.e.exe


Infected with: DeepScan:Generic.Malware.MYddldg.B83A86B3

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\99exmodul32e.e.exe


Disinfection failed

C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\99exmodul32e.e.exe


Deleted



*Et le log de Hijack:

Logfile of HijackThis v1.99.1
Scan saved at 18:10:30, on 13/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv4.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\ECREPONT Léo\Mes documents\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Windows Log - Unknown owner - C:\WINDOWS\system32\nvsvcd.exe
O23 - Service: WUSB54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe" "WUSB54Gv4.exe (file missing)


Voila, merci et a+

   
Répondre à Khama

9

Khama, le 13 oct 2006 à 18:41:18

Voici mon rapport Ewido si nécessaire :) J'ai tout supprimé.

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 18:39:37 13/10/2006

+ Scan result:



C:\Documents and Settings\ECREPONT Léo\Local Settings\Temp\tmp1.tmp -> Proxy.Horst.jy : No action taken.
C:\WINDOWS\system32\nvsvcd.exe -> Proxy.Horst.jy : No action taken.
:mozilla.83:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.84:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.85:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.86:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.87:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.139:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.140:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.141:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.142:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.143:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.314:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.37:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.39:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.42:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.200:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adjuggler : No action taken.
:mozilla.201:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adjuggler : No action taken.
:mozilla.202:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adjuggler : No action taken.
:mozilla.409:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.16:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.17:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.31:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.32:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.33:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.35:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.36:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.72:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.88:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.403:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.404:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.240:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.241:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.242:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.74:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.24:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.25:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.26:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.27:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.151:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.401:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.109:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.110:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.218:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.211:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.212:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.375:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.422:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Ivwbox : No action taken.
:mozilla.95:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.18:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.267:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.268:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.269:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.270:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.96:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.97:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.98:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.331:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.77:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.78:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.79:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.80:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.81:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.82:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.234:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.235:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.236:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.237:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.238:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.239:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.21:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.22:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.23:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.407:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Spylog : No action taken.
:mozilla.38:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.40:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.41:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.43:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.44:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.461:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Targetnet : No action taken.
:mozilla.160:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.161:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.411:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.69:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.70:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.71:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.90:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Webtrendslive : No action taken.
:mozilla.408:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Yadro : No action taken.
:mozilla.253:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.254:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.255:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.342:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.343:C:\Documents and Settings\ECREPONT Léo\Application Data\Mozilla\Firefox\Profiles\0gu2tjdv.default\cookies.txt -> TrackingCookie.Zedo : No action taken.


::Report end

   
Répondre à Khama

10

boulepate62, le 13 oct 2006 à 22:39:07

Salut,

tu peux déjà faire ce nettoyage*, ensuite créer un nouveau message de demander d'aie sur le forum virus/sécurité**


* Fait ce nettoyage: (à faire réguliérement)

¤Telecharges et installes ceci:
CCleaner:
Ccleaner

dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes

¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"


** index?cat=7#ecrire

A++
kerio.probb.fr/index.htm 

   
Répondre à boulepate62

11

Khama, le 14 oct 2006 à 09:47:04

Bonjour,
Merci beaucoup pour ta réponse, j'ai effectué tout les nettoyages possibles et le problème me semble résolu, si les symptomes réapparraissent, j'écrirais un post sur le forum.

A+

   
Répondre à Khama

12

 brahim, le 24 fév 2007 à 01:03:52

Dddddddddddddddd

   
Répondre à brahim
Posez votre question Répondre
Ils ont besoin de votre aide