Sujet Précédent Sujet Suivant

Virus sur msn

Résolu/Fermé
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 - 14 sept. 2007 à 16:36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 - 22 sept. 2007 à 21:56
bonjour a tous .hier j ai recu un fichier zip(par msn) intitule"des photos de toi" je l ai ouvert et rien a l interieur.mais maintenant mes amis connecté ou non a msn le recoivent de ma part et je ne peut rien faire je suis infecté .meme mon MSN se connecte tout seul .
que faire ?merci
A voir également:

36 réponses

  • 1
  • 2
Réponse 1 / 36
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 394
14 sept. 2007 à 16:39
salut,
c'est un ver fait ceci:

Téléchargez MSNFix.zip (de !aur3n7) sur votre bureau:
http://sosvirus.changelog.fr/MSNFix.zip
Décompressez-le (clic droit >> Extraire ici) et double cliquer sur le fichier MSNFix.bat.
- Exécutez l'option R.
-- Si l'infection est détectée, exécutez l'option N.
--- Sauvegardez ce rapport puis faites un copier/coller de ce rapport sur le forum, ainsi qu'un nouveau scan HijackThis fait en mode normal.

Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.
0
Réponse 2 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
14 sept. 2007 à 16:43
MSNFix 1.499

C:\Documents and Settings\Admin\Bureau\MSNFix\MSNFix
Fix exécuté le 14/09/2007 - 16:37:41,10 By Admin
mode normal

************************ Recherche les fichiers présents

... C:\WINDOWS\Z058_jpg.zip
... C:\WINDOWS\system32\microsoft\backup.ftp
... C:\WINDOWS\system32\microsoft\backup.tftp
... C:\WINDOWS\Z058_jpg.zip

************************ Recherche les dossiers présents

Aucun dossier trouvé




************************ Suppression des fichiers

.. OK ... C:\WINDOWS\Z058_jpg.zip
.. OK ... C:\WINDOWS\system32\microsoft\backup.ftp
.. OK ... C:\WINDOWS\system32\microsoft\backup.tftp
.. OK ... C:\WINDOWS\Z058_jpg.zip



************************ Nettoyage du registre



************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\WINDOWS\downloadme0.zip] B2AB3A5366854D7083DE74860BE27C6E
[C:\WINDOWS\downloadme18.zip] 46A3FA5F27AF5545E335F047DB745942
[C:\WINDOWS\downloadme21.zip] D35FF86D9DA9B4DCE5387C90B7A10A8C
[C:\WINDOWS\downloadme27.zip] 3943674672C66C01E7B10A90CE0CD4BA
[C:\WINDOWS\downloadme3.zip] 97E346E992AB198786F81F7E1A5D5DED
[C:\WINDOWS\downloadme30.zip] 34825C0FF3339A5F47A3AABB429CEDC5
[C:\WINDOWS\downloadme33.zip] 2B34E36987AE6A5553C53813FD27B1C5
[C:\WINDOWS\downloadme39.zip] E9631065D045E109D6F60CBE6FB0A4A0
[C:\WINDOWS\downloadme45.zip] 2C322D06A84920B34D81994CE8B76E5D
[C:\WINDOWS\downloadme48.zip] 1C01821A00B513F000EB4DDD8C8C52CA
[C:\WINDOWS\downloadme51.zip] 9A4B87C3BF24FF3480DF4BAE06DE0B2F
[C:\WINDOWS\downloadme54.zip] 7E514F67DF1EA45F500D0B0F63BB4DDA
[C:\WINDOWS\downloadme57.zip] 93D502B81E64EC1B5712189D6C73FA6C
[C:\WINDOWS\downloadme6.zip] F8681F82E07611B05EFF870E7C00808B
[C:\WINDOWS\downloadme60.zip] C30AED390AD9BA123066C6CEEE29C365
[C:\WINDOWS\downloadme66.zip] B404E846D36733E5BEE9EFAC3EEFB1A4
[C:\WINDOWS\downloadme69.zip] D554A94D5897EAC4A5BF82174A432A82
[C:\WINDOWS\downloadme72.zip] 9B02A0D3CBDDF93E5390656B24EE7C88
[C:\WINDOWS\downloadme75.zip] B9992F2720E4618936F0981E52FE243B
[C:\WINDOWS\downloadme84.zip] 22889439DC29D18598ADB35EE28F9913
[C:\WINDOWS\downloadme87.zip] 623C6F3B33083EF01F87AB4797916B1E
[C:\WINDOWS\downloadme9.zip] 4326A5C37116F5B15F53DD6AB6FC5066
[C:\WINDOWS\downloadme93.zip] 53C787BED14BC25E4C63194230CEA035
[C:\WINDOWS\downloadme96.zip] 47289900D6AADD1D3DCE42BAFA93C692
[C:\WINDOWS\file1.zip] E840380C5DF9CCFCD95F1CB5E3155FFF
[C:\WINDOWS\file10.zip] FEBE03C526D45D1445AB7CED0BEEB74C
[C:\WINDOWS\file13.zip] A2B4410DA2B5BDDD750B9FE45ECC3617
[C:\WINDOWS\file19.zip] 839743D98F9C558F3B4DC3C9E487C6E2
[C:\WINDOWS\file22.zip] 1CE9948564EA0B8A685036F6570F47C8
[C:\WINDOWS\file31.zip] B06C770FB99B4E7B79D97BE939C5BCA3
[C:\WINDOWS\file34.zip] B46353EBBC649F049E06C2F5A15FC407
[C:\WINDOWS\file37.zip] 4DF070F1480FFC852B1787BD2EE6ECC4
[C:\WINDOWS\file40.zip] 1F84C6A1A9DAAFEFD3DD166322F9AFAC
[C:\WINDOWS\file43.zip] AA50BEA7648BE0786864210F8862A0A8
[C:\WINDOWS\file46.zip] 65C204C76957E22FB8B8B6B093EB4FDD
[C:\WINDOWS\file49.zip] 0867D5CE8965596E433659B8593C657C
[C:\WINDOWS\file52.zip] CC9374A347F22404193CAC0D982A854B
[C:\WINDOWS\file61.zip] EC3590A5BCA45BF71E4230B2D7558079
[C:\WINDOWS\file64.zip] 9912C68C943A19A469253244C427586C
[C:\WINDOWS\file67.zip] 1848499F62895F73AD2AD0796EFAFCA2
[C:\WINDOWS\file70.zip] 23BE245CF31A62D19DF75809C7D89DE4
[C:\WINDOWS\file76.zip] 5D1F5362EBCF352A8424DDF5492322A4
[C:\WINDOWS\file85.zip] 64CD7AC46F9F756388A8D3224AAD08AC
[C:\WINDOWS\file88.zip] 34B86C528892F4E5ECC5CB69846750AF
[C:\WINDOWS\file91.zip] E54563252E4C9C2AB4C2F58DB2BDF451
[C:\WINDOWS\file94.zip] 0F26CEA46D0748B611DF16DDB0816404
[C:\WINDOWS\file97.zip] 8375B7AAFEB546A103ADB3C29AE53C62
[C:\WINDOWS\files1.zip] 30EF8F11EC068CFCD90137F5B987400A
[C:\WINDOWS\files10.zip] CB9F5CD758D7EDCF0E01F0C90F71FB60
[C:\WINDOWS\files16.zip] 8BA740307335532C97190966D3B81A0B
[C:\WINDOWS\files22.zip] 1B3E1FFF93C7D749EC591F468FC52394
[C:\WINDOWS\files28.zip] 54BB5F0E38694C407C64ECDC61D818B3
[C:\WINDOWS\files31.zip] 2829022466EC295C908EEA7A47327397
[C:\WINDOWS\files37.zip] 8E9642027198F26A1A3A8089F8F45590
[C:\WINDOWS\files4.zip] 0BA47C8FA9F0D579C231FFFBBDF47AD9
[C:\WINDOWS\files43.zip] 99BAD8BD6D31C48B1BEB6DBAFEB1F98F
[C:\WINDOWS\files49.zip] 23625A8D926AF84C4AFC31C4E6ED3879
[C:\WINDOWS\files52.zip] 3920A3FEAA7B4E5533F61F3553C12051
[C:\WINDOWS\files55.zip] 8F7B9C68233F5A6394063E26CF860474
[C:\WINDOWS\files58.zip] 29D4005FD0A5D23268CA237290CA554B
[C:\WINDOWS\files61.zip] 0034CBBA2E513B10A3491B899F611B32
[C:\WINDOWS\files67.zip] 4954DE8AFC3BFAD40BF83BDD7EAFB93A
[C:\WINDOWS\files70.zip] B9CD0EFA8AD64890F97197BFD3F48E1B
[C:\WINDOWS\files73.zip] E48C6E70D5EB85D6A691BBE8F2DE81D9
[C:\WINDOWS\files76.zip] FE0669B2BB69FC89772A04429DD16580
[C:\WINDOWS\files79.zip] 1D87347162FDCF85AB37A3B60FE10962
[C:\WINDOWS\files82.zip] 5CA02344C6051C28DD146AD25758189A
[C:\WINDOWS\files85.zip] 8AD70B9F36754302D5A2B83D4D5A8850
[C:\WINDOWS\files94.zip] 8C0F24FC63A7BA0BEE8F420F7EE7E8EA
[C:\WINDOWS\JPGimage11.zip] 30A04EF37E8B02099900E970A7BCB0A4
[C:\WINDOWS\JPGimage14.zip] 4CC02619F55F97DC43ECD97A1568A8DA
[C:\WINDOWS\JPGimage17.zip] FA4F5FEDB6E6F97B035BDFDC5949F4E3
[C:\WINDOWS\JPGimage26.zip] F86A8FEDC2302107128AC9FD8D453D15
[C:\WINDOWS\JPGimage29.zip] 12BFF3F08ECD09F689A514065A1D6DD1
[C:\WINDOWS\JPGimage32.zip] 5E28B31871767C96A4D99D137EE33145
[C:\WINDOWS\JPGimage35.zip] 8209E992ACCCB13ACD8E687A5C2EF23A
[C:\WINDOWS\JPGimage41.zip] 3AABFEA4DF96A5FDD4411818C8B4F30C
[C:\WINDOWS\JPGimage44.zip] A9A8D0E48C5C8E88A32791CB3C48BEEF
[C:\WINDOWS\JPGimage47.zip] A7BCED1B5CAB3F5913E6EBD523772FE7
[C:\WINDOWS\JPGimage5.zip] 05600AAA24D796CE81869649FD59B02F
[C:\WINDOWS\JPGimage53.zip] 010F70B93826CF7CDAA353A919E638E8
[C:\WINDOWS\JPGimage56.zip] 21E2E43E4CA408271C6667AB9F9AE7B9
[C:\WINDOWS\JPGimage59.zip] B08D30CC28D63C0E330219364E85A8A1
[C:\WINDOWS\JPGimage62.zip] 8C801174BAEEA694B7F3519850664E0A
[C:\WINDOWS\JPGimage65.zip] 32F5BED7CA0BE14FCCE7900B6870D3D4
[C:\WINDOWS\JPGimage68.zip] 6A4180EB75DFFE3EEF2B53893368F35C
[C:\WINDOWS\JPGimage71.zip] 0B1440A67427E39B255EED90D17301EB
[C:\WINDOWS\JPGimage74.zip] 90C11F39901EE427468F23583827EB1D
[C:\WINDOWS\JPGimage77.zip] 3626D99C3940937C4C4232DB122A72B8
[C:\WINDOWS\JPGimage80.zip] D822ADF9034095713CD0A34419FD8BDC
[C:\WINDOWS\JPGimage83.zip] E1B73600EA193AE9E6E54CCA4D93FDA6
[C:\WINDOWS\JPGimage86.zip] 8C06D5DCE46CF3EC1EAC66A0EFFCA529
[C:\WINDOWS\JPGimage92.zip] 1E13E557991E039F96DE06F63694739C
[C:\WINDOWS\JPGimage95.zip] D51B088F3E81541B072CC51E0CE78494
[C:\WINDOWS\JPGimage98.zip] 0AE6137E16B97C2A4B66919CC28709FF
[C:\WINDOWS\look0.zip] 71ED0134E285CD71D2FEEDE500FB4BAB
[C:\WINDOWS\look12.zip] E2109711B3CEEB6560BE0CA014D781B8
[C:\WINDOWS\look15.zip] 2D972DE28CD08074FFC6C645B364D2DF
[C:\WINDOWS\look18.zip] E40A8CAB609F6AD3CF9A0DC62B37163F
[C:\WINDOWS\look24.zip] A6D7FE9E68F2E77DB626B2B403DC2CFE
[C:\WINDOWS\look27.zip] 1E792FD40F021C6C9BD1AACEF53C1801
[C:\WINDOWS\look36.zip] 479CC1CF861254AF8E31648D88D0D1EC
[C:\WINDOWS\look39.zip] 2CE498549253C800ED9F05730098BE09
[C:\WINDOWS\look42.zip] 7356E05CC5B9B7C668C026F82F008B9F
[C:\WINDOWS\look48.zip] 382B1B284C685B833F8EB8E8FC210377
[C:\WINDOWS\look51.zip] A5CF2D7B560FDC157EE2DA812ED52522
[C:\WINDOWS\look57.zip] 23C0F50E610862A23E3A5C4F14FB7651
[C:\WINDOWS\look6.zip] 62D7443B92BA1757C619D6B0B30A8EAE
[C:\WINDOWS\look60.zip] 9AA6A253C3F8A4059D9B61087D51CF6E
[C:\WINDOWS\look63.zip] 14E3B09DB306D7DD0410A25728E08C6C
[C:\WINDOWS\look66.zip] 250D5AD840941E1423297D4933FAB344
[C:\WINDOWS\look69.zip] 4F5A9C44F60DD6E7E0552EDF6286D529
[C:\WINDOWS\look72.zip] C0FA78EFD370DD4061302759AEB59617
[C:\WINDOWS\look75.zip] B12186950D1C4F6243CC1193BB01FE55
[C:\WINDOWS\look78.zip] 477BD7CE3AF4B6A3F60F5E9ED50E6BAE
[C:\WINDOWS\look84.zip] A8BDB892E6A9B80BDB661565960040B2
[C:\WINDOWS\look93.zip] BF9C25FEAD3F4392215885EB33BEA5CD
[C:\WINDOWS\look96.zip] FD53E0B1C665243711B5D61E4E53ED6B
[C:\WINDOWS\news11.zip] 43CE04ADDFFF53DE294256A366D5D67A
[C:\WINDOWS\news14.zip] FE7A6A330ABA99E622D3E9B99DC5ECE3
[C:\WINDOWS\news2.zip] CA32DF75F6436F6CB16438F8216EBC0A
[C:\WINDOWS\news20.zip] FFA2663EC497845D0AE31F6C7FA0D339
[C:\WINDOWS\news29.zip] E6B6412F0FF4F96A254EC40A4911C77B
[C:\WINDOWS\news35.zip] 0A5C13F72C47CB5443E7BBD44CEE9BF0
[C:\WINDOWS\news38.zip] 5B6724EFD74465ECA5CD2989F961A394
[C:\WINDOWS\news41.zip] 88397CDEDB6B1705B54E5116E260E89B
[C:\WINDOWS\news44.zip] DA26F984CB5FB7E972801ED08A4FA4D1
[C:\WINDOWS\news47.zip] AE0EE5FF9FB50D4F4DAFA859BAC06823
[C:\WINDOWS\news5.zip] E663625761BB4974E2D7239B30AFA204
[C:\WINDOWS\news50.zip] 43A69A7ED0E9EB6B8DC670C5E2CA6959
[C:\WINDOWS\news53.zip] D2229B25E1A8B1E97BC4061957D782B5
[C:\WINDOWS\news56.zip] B4F7611407A85C165C7A780A322EB933
[C:\WINDOWS\news59.zip] 28897F3AD5FC00232CE0A40B6E55B27F
[C:\WINDOWS\news62.zip] 5D6A7A92D4021446BD0FCA3B72464C5E
[C:\WINDOWS\news65.zip] 50AA233D1576A43A596CFEBFB3DF6C10
[C:\WINDOWS\news68.zip] 5B6D02D5AD0C1C3B7307556F9A193384
[C:\WINDOWS\news71.zip] 2E80BD70EA466E4456E3318938A273BF
[C:\WINDOWS\news74.zip] 540D3CE826054B8A2C16531B03DAB1BA
[C:\WINDOWS\news80.zip] 5EBE1284F6EF7ACEF57D7D7F50AB6118
[C:\WINDOWS\news83.zip] C98F2C0BC193C454801A64C0F15BBFD5
[C:\WINDOWS\news86.zip] 0FAB05D3CD051BC4921451616DDF81FD
[C:\WINDOWS\news89.zip] AB98C579A85CF898C6FDF43945C7FE08
[C:\WINDOWS\news92.zip] 0977099F9FA036A9B9ADD8AA471D7DDF
[C:\WINDOWS\news95.zip] 55F52663E369E7C969BC6D04CE613A30
[C:\WINDOWS\news98.zip] D088CAA9AD2C3231B6D2F0CE8B6B9BE4
[C:\WINDOWS\system32\ACDSee.scr] 80A299C1EBC79FA2F24C26DF93543A64


Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 14092007_16382732.zip


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------
0
Réponse 3 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
14 sept. 2007 à 16:45
Logfile of HijackThis v1.99.1
Scan saved at 16:41:11, on 14/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\a-squared free\a2service.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\JMRaidTool.exe
C:\WINDOWS\SkyTel.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\vsnp2std.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\ENJOY Plus!\ENJOY Plus!.exe
C:\Program Files\eMule\eMule.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Copernic Desktop Search 2] "C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe" /tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?71422339126146d2a96aebc02f627548
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?71422339126146d2a96aebc02f627548
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O21 - SSODL: Version3 - {810E7B33-8930-493C-9C8F-32C399F2BD54} - (no file)
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
0
Réponse 4 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
14 sept. 2007 à 17:08
plus personne?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
14 sept. 2007 à 18:30
!^^![ME], Peux tu faire uploader les zip détectés dans MSNfix?

A+
0
sparadra62
14 sept. 2007 à 19:23
qu est ce que t apel "uploader"
0
Réponse 6 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
14 sept. 2007 à 18:32
ok ,voila ce que j ai donc fait ensuite tout seul comme un grand

telecharger avg antispyware,installer et mettre a jour tres important de mettre a jour
redemarrer en mode sans echec et analyser avec AVG
ensuite supprimer les tracking cookies et j ai mis le reste en quarantaine
apres j ai redemarrer en mode normal et supprimer ma quarantaine et voila msn sent moins mauvais !
je ne sais pas si tout sa est juste je ne suis qu un debutant alors si vous avez envie de faire comme moi demandez d abord a un oeil plus expert sa ne vous coutera pas plus cher
a plus
0
Réponse 7 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 14:37
Relance msnfix et copie colle le rapport stp

a+
0
Réponse 8 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 15:02
MSNFix 1.505

C:\Documents and Settings\Admin\Bureau\MSNFix\MSNFix
Fix exécuté le 15/09/2007 - 14:56:49,56 By Admin
mode normal

************************ Recherche les fichiers présents

... C:\WINDOWS\system32\direct3dx.dll
... C:\WINDOWS\system32\directxd.exe
... C:\WINDOWS\files1.zip
... C:\WINDOWS\files10.zip
... C:\WINDOWS\files16.zip
... C:\WINDOWS\files22.zip
... C:\WINDOWS\files28.zip
... C:\WINDOWS\files31.zip
... C:\WINDOWS\files37.zip
... C:\WINDOWS\files4.zip
... C:\WINDOWS\files43.zip
... C:\WINDOWS\files49.zip
... C:\WINDOWS\files52.zip
... C:\WINDOWS\files55.zip
... C:\WINDOWS\files58.zip
... C:\WINDOWS\files61.zip
... C:\WINDOWS\files67.zip
... C:\WINDOWS\files70.zip
... C:\WINDOWS\files73.zip
... C:\WINDOWS\files76.zip
... C:\WINDOWS\files79.zip
... C:\WINDOWS\files82.zip
... C:\WINDOWS\files85.zip
... C:\WINDOWS\files94.zip
... C:\WINDOWS\news11.zip
... C:\WINDOWS\news14.zip
... C:\WINDOWS\news2.zip
... C:\WINDOWS\news20.zip
... C:\WINDOWS\news29.zip
... C:\WINDOWS\news35.zip
... C:\WINDOWS\news38.zip
... C:\WINDOWS\news41.zip
... C:\WINDOWS\news44.zip
... C:\WINDOWS\news47.zip
... C:\WINDOWS\news5.zip
... C:\WINDOWS\news50.zip
... C:\WINDOWS\news53.zip
... C:\WINDOWS\news56.zip
... C:\WINDOWS\news59.zip
... C:\WINDOWS\news62.zip
... C:\WINDOWS\news65.zip
... C:\WINDOWS\news68.zip
... C:\WINDOWS\news71.zip
... C:\WINDOWS\news74.zip
... C:\WINDOWS\news80.zip
... C:\WINDOWS\news83.zip
... C:\WINDOWS\news86.zip
... C:\WINDOWS\news89.zip
... C:\WINDOWS\news92.zip
... C:\WINDOWS\news95.zip
... C:\WINDOWS\news98.zip

************************ heur. MSNCHK.exe ***** /!\ beta test /!\

[!] C:\WINDOWS\downloadme0.zip is INFECTED
[!] C:\WINDOWS\downloadme18.zip is INFECTED
[!] C:\WINDOWS\downloadme21.zip is INFECTED
[!] C:\WINDOWS\downloadme27.zip is INFECTED
[!] C:\WINDOWS\downloadme3.zip is INFECTED
[!] C:\WINDOWS\downloadme30.zip is INFECTED
[!] C:\WINDOWS\downloadme33.zip is INFECTED
[!] C:\WINDOWS\downloadme39.zip is INFECTED
[!] C:\WINDOWS\downloadme45.zip is INFECTED
[!] C:\WINDOWS\downloadme48.zip is INFECTED
[!] C:\WINDOWS\downloadme51.zip is INFECTED
[!] C:\WINDOWS\downloadme54.zip is INFECTED
[!] C:\WINDOWS\downloadme57.zip is INFECTED
[!] C:\WINDOWS\downloadme6.zip is INFECTED
[!] C:\WINDOWS\downloadme60.zip is INFECTED
[!] C:\WINDOWS\downloadme66.zip is INFECTED
[!] C:\WINDOWS\downloadme69.zip is INFECTED
[!] C:\WINDOWS\downloadme72.zip is INFECTED
[!] C:\WINDOWS\downloadme75.zip is INFECTED
[!] C:\WINDOWS\downloadme84.zip is INFECTED
[!] C:\WINDOWS\downloadme87.zip is INFECTED
[!] C:\WINDOWS\downloadme9.zip is INFECTED
[!] C:\WINDOWS\downloadme93.zip is INFECTED
[!] C:\WINDOWS\downloadme96.zip is INFECTED
[!] C:\WINDOWS\file1.zip is INFECTED
[!] C:\WINDOWS\file10.zip is INFECTED
[!] C:\WINDOWS\file13.zip is INFECTED
[!] C:\WINDOWS\file19.zip is INFECTED
[!] C:\WINDOWS\file22.zip is INFECTED
[!] C:\WINDOWS\file31.zip is INFECTED
[!] C:\WINDOWS\file34.zip is INFECTED
[!] C:\WINDOWS\file37.zip is INFECTED
[!] C:\WINDOWS\file40.zip is INFECTED
[!] C:\WINDOWS\file43.zip is INFECTED
[!] C:\WINDOWS\file46.zip is INFECTED
[!] C:\WINDOWS\file49.zip is INFECTED
[!] C:\WINDOWS\file52.zip is INFECTED
[!] C:\WINDOWS\file61.zip is INFECTED
[!] C:\WINDOWS\file64.zip is INFECTED
[!] C:\WINDOWS\file67.zip is INFECTED
[!] C:\WINDOWS\file70.zip is INFECTED
[!] C:\WINDOWS\file76.zip is INFECTED
[!] C:\WINDOWS\file85.zip is INFECTED
[!] C:\WINDOWS\file88.zip is INFECTED
[!] C:\WINDOWS\file91.zip is INFECTED
[!] C:\WINDOWS\file94.zip is INFECTED
[!] C:\WINDOWS\file97.zip is INFECTED
[!] C:\WINDOWS\files1.zip is INFECTED
[!] C:\WINDOWS\files10.zip is INFECTED
[!] C:\WINDOWS\files16.zip is INFECTED
[!] C:\WINDOWS\files22.zip is INFECTED
[!] C:\WINDOWS\files28.zip is INFECTED
[!] C:\WINDOWS\files31.zip is INFECTED
[!] C:\WINDOWS\files37.zip is INFECTED
[!] C:\WINDOWS\files4.zip is INFECTED
[!] C:\WINDOWS\files43.zip is INFECTED
[!] C:\WINDOWS\files49.zip is INFECTED
[!] C:\WINDOWS\files52.zip is INFECTED
[!] C:\WINDOWS\files55.zip is INFECTED
[!] C:\WINDOWS\files58.zip is INFECTED
[!] C:\WINDOWS\files61.zip is INFECTED
[!] C:\WINDOWS\files67.zip is INFECTED
[!] C:\WINDOWS\files70.zip is INFECTED
[!] C:\WINDOWS\files73.zip is INFECTED
[!] C:\WINDOWS\files76.zip is INFECTED
[!] C:\WINDOWS\files79.zip is INFECTED
[!] C:\WINDOWS\files82.zip is INFECTED
[!] C:\WINDOWS\files85.zip is INFECTED
[!] C:\WINDOWS\files94.zip is INFECTED
[!] C:\WINDOWS\JPGimage11.zip is INFECTED
[!] C:\WINDOWS\JPGimage14.zip is INFECTED
[!] C:\WINDOWS\JPGimage17.zip is INFECTED
[!] C:\WINDOWS\JPGimage26.zip is INFECTED
[!] C:\WINDOWS\JPGimage29.zip is INFECTED
[!] C:\WINDOWS\JPGimage32.zip is INFECTED
[!] C:\WINDOWS\JPGimage35.zip is INFECTED
[!] C:\WINDOWS\JPGimage41.zip is INFECTED
[!] C:\WINDOWS\JPGimage44.zip is INFECTED
[!] C:\WINDOWS\JPGimage47.zip is INFECTED
[!] C:\WINDOWS\JPGimage5.zip is INFECTED
[!] C:\WINDOWS\JPGimage53.zip is INFECTED
[!] C:\WINDOWS\JPGimage56.zip is INFECTED
[!] C:\WINDOWS\JPGimage59.zip is INFECTED
[!] C:\WINDOWS\JPGimage62.zip is INFECTED
[!] C:\WINDOWS\JPGimage65.zip is INFECTED
[!] C:\WINDOWS\JPGimage68.zip is INFECTED
[!] C:\WINDOWS\JPGimage71.zip is INFECTED
[!] C:\WINDOWS\JPGimage74.zip is INFECTED
[!] C:\WINDOWS\JPGimage77.zip is INFECTED
[!] C:\WINDOWS\JPGimage80.zip is INFECTED
[!] C:\WINDOWS\JPGimage83.zip is INFECTED
[!] C:\WINDOWS\JPGimage86.zip is INFECTED
[!] C:\WINDOWS\JPGimage92.zip is INFECTED
[!] C:\WINDOWS\JPGimage95.zip is INFECTED
[!] C:\WINDOWS\JPGimage98.zip is INFECTED
[!] C:\WINDOWS\look0.zip is INFECTED
[!] C:\WINDOWS\look12.zip is INFECTED
[!] C:\WINDOWS\look15.zip is INFECTED
[!] C:\WINDOWS\look18.zip is INFECTED
[!] C:\WINDOWS\look24.zip is INFECTED
[!] C:\WINDOWS\look27.zip is INFECTED
[!] C:\WINDOWS\look36.zip is INFECTED
[!] C:\WINDOWS\look39.zip is INFECTED
[!] C:\WINDOWS\look42.zip is INFECTED
[!] C:\WINDOWS\look48.zip is INFECTED
[!] C:\WINDOWS\look51.zip is INFECTED
[!] C:\WINDOWS\look57.zip is INFECTED
[!] C:\WINDOWS\look6.zip is INFECTED
[!] C:\WINDOWS\look60.zip is INFECTED
[!] C:\WINDOWS\look63.zip is INFECTED
[!] C:\WINDOWS\look66.zip is INFECTED
[!] C:\WINDOWS\look69.zip is INFECTED
[!] C:\WINDOWS\look72.zip is INFECTED
[!] C:\WINDOWS\look75.zip is INFECTED
[!] C:\WINDOWS\look78.zip is INFECTED
[!] C:\WINDOWS\look84.zip is INFECTED
[!] C:\WINDOWS\look93.zip is INFECTED
[!] C:\WINDOWS\look96.zip is INFECTED
[!] C:\WINDOWS\news11.zip is INFECTED
[!] C:\WINDOWS\news14.zip is INFECTED
[!] C:\WINDOWS\news2.zip is INFECTED
[!] C:\WINDOWS\news20.zip is INFECTED
[!] C:\WINDOWS\news29.zip is INFECTED
[!] C:\WINDOWS\news35.zip is INFECTED
[!] C:\WINDOWS\news38.zip is INFECTED
[!] C:\WINDOWS\news41.zip is INFECTED
[!] C:\WINDOWS\news44.zip is INFECTED
[!] C:\WINDOWS\news47.zip is INFECTED
[!] C:\WINDOWS\news5.zip is INFECTED
[!] C:\WINDOWS\news50.zip is INFECTED
[!] C:\WINDOWS\news53.zip is INFECTED
[!] C:\WINDOWS\news56.zip is INFECTED
[!] C:\WINDOWS\news59.zip is INFECTED
[!] C:\WINDOWS\news62.zip is INFECTED
[!] C:\WINDOWS\news65.zip is INFECTED
[!] C:\WINDOWS\news68.zip is INFECTED
[!] C:\WINDOWS\news71.zip is INFECTED
[!] C:\WINDOWS\news74.zip is INFECTED
[!] C:\WINDOWS\news80.zip is INFECTED
[!] C:\WINDOWS\news83.zip is INFECTED
[!] C:\WINDOWS\news86.zip is INFECTED
[!] C:\WINDOWS\news89.zip is INFECTED
[!] C:\WINDOWS\news92.zip is INFECTED
[!] C:\WINDOWS\news95.zip is INFECTED
[!] C:\WINDOWS\news98.zip is INFECTED


************************ Recherche les dossiers présents

Aucun dossier trouvé




************************ Suppression des fichiers

.. OK ... C:\WINDOWS\system32\direct3dx.dll
.. OK ... C:\WINDOWS\system32\directxd.exe
.. OK ... C:\WINDOWS\files1.zip
.. OK ... C:\WINDOWS\files10.zip
.. OK ... C:\WINDOWS\files16.zip
.. OK ... C:\WINDOWS\files22.zip
.. OK ... C:\WINDOWS\files28.zip
.. OK ... C:\WINDOWS\files31.zip
.. OK ... C:\WINDOWS\files37.zip
.. OK ... C:\WINDOWS\files4.zip
.. OK ... C:\WINDOWS\files43.zip
.. OK ... C:\WINDOWS\files49.zip
.. OK ... C:\WINDOWS\files52.zip
.. OK ... C:\WINDOWS\files55.zip
.. OK ... C:\WINDOWS\files58.zip
.. OK ... C:\WINDOWS\files61.zip
.. OK ... C:\WINDOWS\files67.zip
.. OK ... C:\WINDOWS\files70.zip
.. OK ... C:\WINDOWS\files73.zip
.. OK ... C:\WINDOWS\files76.zip
.. OK ... C:\WINDOWS\files79.zip
.. OK ... C:\WINDOWS\files82.zip
.. OK ... C:\WINDOWS\files85.zip
.. OK ... C:\WINDOWS\files94.zip
.. OK ... C:\WINDOWS\news11.zip
.. OK ... C:\WINDOWS\news14.zip
.. OK ... C:\WINDOWS\news2.zip
.. OK ... C:\WINDOWS\news20.zip
.. OK ... C:\WINDOWS\news29.zip
.. OK ... C:\WINDOWS\news35.zip
.. OK ... C:\WINDOWS\news38.zip
.. OK ... C:\WINDOWS\news41.zip
.. OK ... C:\WINDOWS\news44.zip
.. OK ... C:\WINDOWS\news47.zip
.. OK ... C:\WINDOWS\news5.zip
.. OK ... C:\WINDOWS\news50.zip
.. OK ... C:\WINDOWS\news53.zip
.. OK ... C:\WINDOWS\news56.zip
.. OK ... C:\WINDOWS\news59.zip
.. OK ... C:\WINDOWS\news62.zip
.. OK ... C:\WINDOWS\news65.zip
.. OK ... C:\WINDOWS\news68.zip
.. OK ... C:\WINDOWS\news71.zip
.. OK ... C:\WINDOWS\news74.zip
.. OK ... C:\WINDOWS\news80.zip
.. OK ... C:\WINDOWS\news83.zip
.. OK ... C:\WINDOWS\news86.zip
.. OK ... C:\WINDOWS\news89.zip
.. OK ... C:\WINDOWS\news92.zip
.. OK ... C:\WINDOWS\news95.zip
.. OK ... C:\WINDOWS\news98.zip



************************ Nettoyage du registre



************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\WINDOWS\downloadme0.zip] B2AB3A5366854D7083DE74860BE27C6E
[C:\WINDOWS\downloadme18.zip] 46A3FA5F27AF5545E335F047DB745942
[C:\WINDOWS\downloadme21.zip] D35FF86D9DA9B4DCE5387C90B7A10A8C
[C:\WINDOWS\downloadme27.zip] 3943674672C66C01E7B10A90CE0CD4BA
[C:\WINDOWS\downloadme3.zip] 97E346E992AB198786F81F7E1A5D5DED
[C:\WINDOWS\downloadme30.zip] 34825C0FF3339A5F47A3AABB429CEDC5
[C:\WINDOWS\downloadme33.zip] 2B34E36987AE6A5553C53813FD27B1C5
[C:\WINDOWS\downloadme39.zip] E9631065D045E109D6F60CBE6FB0A4A0
[C:\WINDOWS\downloadme45.zip] 2C322D06A84920B34D81994CE8B76E5D
[C:\WINDOWS\downloadme48.zip] 1C01821A00B513F000EB4DDD8C8C52CA
[C:\WINDOWS\downloadme51.zip] 9A4B87C3BF24FF3480DF4BAE06DE0B2F
[C:\WINDOWS\downloadme54.zip] 7E514F67DF1EA45F500D0B0F63BB4DDA
[C:\WINDOWS\downloadme57.zip] 93D502B81E64EC1B5712189D6C73FA6C
[C:\WINDOWS\downloadme6.zip] F8681F82E07611B05EFF870E7C00808B
[C:\WINDOWS\downloadme60.zip] C30AED390AD9BA123066C6CEEE29C365
[C:\WINDOWS\downloadme66.zip] B404E846D36733E5BEE9EFAC3EEFB1A4
[C:\WINDOWS\downloadme69.zip] D554A94D5897EAC4A5BF82174A432A82
[C:\WINDOWS\downloadme72.zip] 9B02A0D3CBDDF93E5390656B24EE7C88
[C:\WINDOWS\downloadme75.zip] B9992F2720E4618936F0981E52FE243B
[C:\WINDOWS\downloadme84.zip] 22889439DC29D18598ADB35EE28F9913
[C:\WINDOWS\downloadme87.zip] 623C6F3B33083EF01F87AB4797916B1E
[C:\WINDOWS\downloadme9.zip] 4326A5C37116F5B15F53DD6AB6FC5066
[C:\WINDOWS\downloadme93.zip] 53C787BED14BC25E4C63194230CEA035
[C:\WINDOWS\downloadme96.zip] 47289900D6AADD1D3DCE42BAFA93C692
[C:\WINDOWS\file1.zip] E840380C5DF9CCFCD95F1CB5E3155FFF
[C:\WINDOWS\file10.zip] FEBE03C526D45D1445AB7CED0BEEB74C
[C:\WINDOWS\file13.zip] A2B4410DA2B5BDDD750B9FE45ECC3617
[C:\WINDOWS\file19.zip] 839743D98F9C558F3B4DC3C9E487C6E2
[C:\WINDOWS\file22.zip] 1CE9948564EA0B8A685036F6570F47C8
[C:\WINDOWS\file31.zip] B06C770FB99B4E7B79D97BE939C5BCA3
[C:\WINDOWS\file34.zip] B46353EBBC649F049E06C2F5A15FC407
[C:\WINDOWS\file37.zip] 4DF070F1480FFC852B1787BD2EE6ECC4
[C:\WINDOWS\file40.zip] 1F84C6A1A9DAAFEFD3DD166322F9AFAC
[C:\WINDOWS\file43.zip] AA50BEA7648BE0786864210F8862A0A8
[C:\WINDOWS\file46.zip] 65C204C76957E22FB8B8B6B093EB4FDD
[C:\WINDOWS\file49.zip] 0867D5CE8965596E433659B8593C657C
[C:\WINDOWS\file52.zip] CC9374A347F22404193CAC0D982A854B
[C:\WINDOWS\file61.zip] EC3590A5BCA45BF71E4230B2D7558079
[C:\WINDOWS\file64.zip] 9912C68C943A19A469253244C427586C
[C:\WINDOWS\file67.zip] 1848499F62895F73AD2AD0796EFAFCA2
[C:\WINDOWS\file70.zip] 23BE245CF31A62D19DF75809C7D89DE4
[C:\WINDOWS\file76.zip] 5D1F5362EBCF352A8424DDF5492322A4
[C:\WINDOWS\file85.zip] 64CD7AC46F9F756388A8D3224AAD08AC
[C:\WINDOWS\file88.zip] 34B86C528892F4E5ECC5CB69846750AF
[C:\WINDOWS\file91.zip] E54563252E4C9C2AB4C2F58DB2BDF451
[C:\WINDOWS\file94.zip] 0F26CEA46D0748B611DF16DDB0816404
[C:\WINDOWS\file97.zip] 8375B7AAFEB546A103ADB3C29AE53C62
[C:\WINDOWS\JPGimage11.zip] 30A04EF37E8B02099900E970A7BCB0A4
[C:\WINDOWS\JPGimage14.zip] 4CC02619F55F97DC43ECD97A1568A8DA
[C:\WINDOWS\JPGimage17.zip] FA4F5FEDB6E6F97B035BDFDC5949F4E3
[C:\WINDOWS\JPGimage26.zip] F86A8FEDC2302107128AC9FD8D453D15
[C:\WINDOWS\JPGimage29.zip] 12BFF3F08ECD09F689A514065A1D6DD1
[C:\WINDOWS\JPGimage32.zip] 5E28B31871767C96A4D99D137EE33145
[C:\WINDOWS\JPGimage35.zip] 8209E992ACCCB13ACD8E687A5C2EF23A
[C:\WINDOWS\JPGimage41.zip] 3AABFEA4DF96A5FDD4411818C8B4F30C
[C:\WINDOWS\JPGimage44.zip] A9A8D0E48C5C8E88A32791CB3C48BEEF
[C:\WINDOWS\JPGimage47.zip] A7BCED1B5CAB3F5913E6EBD523772FE7
[C:\WINDOWS\JPGimage5.zip] 05600AAA24D796CE81869649FD59B02F
[C:\WINDOWS\JPGimage53.zip] 010F70B93826CF7CDAA353A919E638E8
[C:\WINDOWS\JPGimage56.zip] 21E2E43E4CA408271C6667AB9F9AE7B9
[C:\WINDOWS\JPGimage59.zip] B08D30CC28D63C0E330219364E85A8A1
[C:\WINDOWS\JPGimage62.zip] 8C801174BAEEA694B7F3519850664E0A
[C:\WINDOWS\JPGimage65.zip] 32F5BED7CA0BE14FCCE7900B6870D3D4
[C:\WINDOWS\JPGimage68.zip] 6A4180EB75DFFE3EEF2B53893368F35C
[C:\WINDOWS\JPGimage71.zip] 0B1440A67427E39B255EED90D17301EB
[C:\WINDOWS\JPGimage74.zip] 90C11F39901EE427468F23583827EB1D
[C:\WINDOWS\JPGimage77.zip] 3626D99C3940937C4C4232DB122A72B8
[C:\WINDOWS\JPGimage80.zip] D822ADF9034095713CD0A34419FD8BDC
[C:\WINDOWS\JPGimage83.zip] E1B73600EA193AE9E6E54CCA4D93FDA6
[C:\WINDOWS\JPGimage86.zip] 8C06D5DCE46CF3EC1EAC66A0EFFCA529
[C:\WINDOWS\JPGimage92.zip] 1E13E557991E039F96DE06F63694739C
[C:\WINDOWS\JPGimage95.zip] D51B088F3E81541B072CC51E0CE78494
[C:\WINDOWS\JPGimage98.zip] 0AE6137E16B97C2A4B66919CC28709FF
[C:\WINDOWS\look0.zip] 71ED0134E285CD71D2FEEDE500FB4BAB
[C:\WINDOWS\look12.zip] E2109711B3CEEB6560BE0CA014D781B8
[C:\WINDOWS\look15.zip] 2D972DE28CD08074FFC6C645B364D2DF
[C:\WINDOWS\look18.zip] E40A8CAB609F6AD3CF9A0DC62B37163F
[C:\WINDOWS\look24.zip] A6D7FE9E68F2E77DB626B2B403DC2CFE
[C:\WINDOWS\look27.zip] 1E792FD40F021C6C9BD1AACEF53C1801
[C:\WINDOWS\look36.zip] 479CC1CF861254AF8E31648D88D0D1EC
[C:\WINDOWS\look39.zip] 2CE498549253C800ED9F05730098BE09
[C:\WINDOWS\look42.zip] 7356E05CC5B9B7C668C026F82F008B9F
[C:\WINDOWS\look48.zip] 382B1B284C685B833F8EB8E8FC210377
[C:\WINDOWS\look51.zip] A5CF2D7B560FDC157EE2DA812ED52522
[C:\WINDOWS\look57.zip] 23C0F50E610862A23E3A5C4F14FB7651
[C:\WINDOWS\look6.zip] 62D7443B92BA1757C619D6B0B30A8EAE
[C:\WINDOWS\look60.zip] 9AA6A253C3F8A4059D9B61087D51CF6E
[C:\WINDOWS\look63.zip] 14E3B09DB306D7DD0410A25728E08C6C
[C:\WINDOWS\look66.zip] 250D5AD840941E1423297D4933FAB344
[C:\WINDOWS\look69.zip] 4F5A9C44F60DD6E7E0552EDF6286D529
[C:\WINDOWS\look72.zip] C0FA78EFD370DD4061302759AEB59617
[C:\WINDOWS\look75.zip] B12186950D1C4F6243CC1193BB01FE55
[C:\WINDOWS\look78.zip] 477BD7CE3AF4B6A3F60F5E9ED50E6BAE
[C:\WINDOWS\look84.zip] A8BDB892E6A9B80BDB661565960040B2
[C:\WINDOWS\look93.zip] BF9C25FEAD3F4392215885EB33BEA5CD
[C:\WINDOWS\look96.zip] FD53E0B1C665243711B5D61E4E53ED6B

[color=#FF0000][b]==>[/b][/color] SVP merci d'envoyer le fichier [b] C:\DOCUME~1\Admin\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr



Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 15092007_14572832.zip


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------
0
Réponse 9 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 16:47
Salut,

Clique ici:
http://upload.changelog.fr

Pseudo, met Regis59

Clique sur Parcourir et recherche:
C:\DOCUME~1\Admin\Bureau\Upload_Me.zip

Clique sur Envoyer.

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve ci-dessous, 

C:\WINDOWS\downloadme0.zip
C:\WINDOWS\downloadme18.zip
C:\WINDOWS\downloadme21.zip
C:\WINDOWS\downloadme27.zip
C:\WINDOWS\downloadme3.zip
C:\WINDOWS\downloadme30.zip
C:\WINDOWS\downloadme33.zip
C:\WINDOWS\downloadme39.zip
C:\WINDOWS\downloadme45.zip
C:\WINDOWS\downloadme48.zip
C:\WINDOWS\downloadme51.zip
C:\WINDOWS\downloadme54.zip
C:\WINDOWS\downloadme57.zip
C:\WINDOWS\downloadme6.zip
C:\WINDOWS\downloadme60.zip
C:\WINDOWS\downloadme66.zip
C:\WINDOWS\downloadme69.zip
C:\WINDOWS\downloadme72.zip
C:\WINDOWS\downloadme75.zip
C:\WINDOWS\downloadme84.zip
C:\WINDOWS\downloadme87.zip
C:\WINDOWS\downloadme9.zip
C:\WINDOWS\downloadme93.zip
C:\WINDOWS\downloadme96.zip
C:\WINDOWS\file1.zip
C:\WINDOWS\file10.zip
C:\WINDOWS\file13.zip
C:\WINDOWS\file19.zip
C:\WINDOWS\file22.zip
C:\WINDOWS\file31.zip
C:\WINDOWS\file34.zip
C:\WINDOWS\file37.zip
C:\WINDOWS\file40.zip
C:\WINDOWS\file43.zip
C:\WINDOWS\file46.zip
C:\WINDOWS\file49.zip
C:\WINDOWS\file52.zip
C:\WINDOWS\file61.zip
C:\WINDOWS\file64.zip
C:\WINDOWS\file67.zip
C:\WINDOWS\file70.zip
C:\WINDOWS\file76.zip
C:\WINDOWS\file85.zip
C:\WINDOWS\file88.zip
C:\WINDOWS\file91.zip
C:\WINDOWS\file94.zip
C:\WINDOWS\file97.zip
C:\WINDOWS\JPGimage11.zip
C:\WINDOWS\JPGimage14.zip
C:\WINDOWS\JPGimage17.zip
C:\WINDOWS\JPGimage26.zip
C:\WINDOWS\JPGimage29.zip
C:\WINDOWS\JPGimage32.zip
C:\WINDOWS\JPGimage35.zip
C:\WINDOWS\JPGimage41.zip
C:\WINDOWS\JPGimage44.zip
C:\WINDOWS\JPGimage47.zip
C:\WINDOWS\JPGimage5.zip
C:\WINDOWS\JPGimage53.zip
C:\WINDOWS\JPGimage56.zip
C:\WINDOWS\JPGimage59.zip
C:\WINDOWS\JPGimage62.zip
C:\WINDOWS\JPGimage65.zip
C:\WINDOWS\JPGimage68.zip
C:\WINDOWS\JPGimage71.zip
C:\WINDOWS\JPGimage74.zip
C:\WINDOWS\JPGimage77.zip
C:\WINDOWS\JPGimage80.zip
C:\WINDOWS\JPGimage83.zip
C:\WINDOWS\JPGimage86.zip
C:\WINDOWS\JPGimage92.zip
C:\WINDOWS\JPGimage95.zip
[C:\WINDOWS\JPGimage98.zip
[C:\WINDOWS\look0.zip
[C:\WINDOWS\look12.zip
[C:\WINDOWS\look15.zip
[C:\WINDOWS\look18.zip
[C:\WINDOWS\look24.zip
[C:\WINDOWS\look27.zip
[C:\WINDOWS\look36.zip
[C:\WINDOWS\look39.zip
[C:\WINDOWS\look42.zip
[C:\WINDOWS\look48.zip
[C:\WINDOWS\look51.zip
[C:\WINDOWS\look57.zip
[C:\WINDOWS\look6.zip
[C:\WINDOWS\look60.zip
[C:\WINDOWS\look63.zip
[C:\WINDOWS\look66.zip
[C:\WINDOWS\look69.zip
[C:\WINDOWS\look72.zip
[C:\WINDOWS\look75.zip
[C:\WINDOWS\look78.zip
[C:\WINDOWS\look84.zip
[C:\WINDOWS\look93.zip
[C:\WINDOWS\look96.zip


et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.
[quote]liste chemin des fichiers/et ou dossiers à supprimer
clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

A+
0
Réponse 10 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 17:07
C:\WINDOWS\downloadme0.zip moved successfully.
C:\WINDOWS\downloadme18.zip moved successfully.
C:\WINDOWS\downloadme21.zip moved successfully.
C:\WINDOWS\downloadme27.zip moved successfully.
C:\WINDOWS\downloadme3.zip moved successfully.
C:\WINDOWS\downloadme30.zip moved successfully.
C:\WINDOWS\downloadme33.zip moved successfully.
C:\WINDOWS\downloadme39.zip moved successfully.
C:\WINDOWS\downloadme45.zip moved successfully.
C:\WINDOWS\downloadme48.zip moved successfully.
C:\WINDOWS\downloadme51.zip moved successfully.
C:\WINDOWS\downloadme54.zip moved successfully.
C:\WINDOWS\downloadme57.zip moved successfully.
C:\WINDOWS\downloadme6.zip moved successfully.
C:\WINDOWS\downloadme60.zip moved successfully.
C:\WINDOWS\downloadme66.zip moved successfully.
C:\WINDOWS\downloadme69.zip moved successfully.
C:\WINDOWS\downloadme72.zip moved successfully.
C:\WINDOWS\downloadme75.zip moved successfully.
C:\WINDOWS\downloadme84.zip moved successfully.
C:\WINDOWS\downloadme87.zip moved successfully.
C:\WINDOWS\downloadme9.zip moved successfully.
C:\WINDOWS\downloadme93.zip moved successfully.
C:\WINDOWS\downloadme96.zip moved successfully.
C:\WINDOWS\file1.zip moved successfully.
C:\WINDOWS\file10.zip moved successfully.
C:\WINDOWS\file13.zip moved successfully.
C:\WINDOWS\file19.zip moved successfully.
C:\WINDOWS\file22.zip moved successfully.
C:\WINDOWS\file31.zip moved successfully.
C:\WINDOWS\file34.zip moved successfully.
C:\WINDOWS\file37.zip moved successfully.
C:\WINDOWS\file40.zip moved successfully.
C:\WINDOWS\file43.zip moved successfully.
C:\WINDOWS\file46.zip moved successfully.
C:\WINDOWS\file49.zip moved successfully.
C:\WINDOWS\file52.zip moved successfully.
C:\WINDOWS\file61.zip moved successfully.
C:\WINDOWS\file64.zip moved successfully.
C:\WINDOWS\file67.zip moved successfully.
C:\WINDOWS\file70.zip moved successfully.
C:\WINDOWS\file76.zip moved successfully.
C:\WINDOWS\file85.zip moved successfully.
C:\WINDOWS\file88.zip moved successfully.
C:\WINDOWS\file91.zip moved successfully.
C:\WINDOWS\file94.zip moved successfully.
C:\WINDOWS\file97.zip moved successfully.
C:\WINDOWS\JPGimage11.zip moved successfully.
C:\WINDOWS\JPGimage14.zip moved successfully.
C:\WINDOWS\JPGimage17.zip moved successfully.
C:\WINDOWS\JPGimage26.zip moved successfully.
C:\WINDOWS\JPGimage29.zip moved successfully.
C:\WINDOWS\JPGimage32.zip moved successfully.
C:\WINDOWS\JPGimage35.zip moved successfully.
C:\WINDOWS\JPGimage41.zip moved successfully.
C:\WINDOWS\JPGimage44.zip moved successfully.
C:\WINDOWS\JPGimage47.zip moved successfully.
C:\WINDOWS\JPGimage5.zip moved successfully.
C:\WINDOWS\JPGimage53.zip moved successfully.
C:\WINDOWS\JPGimage56.zip moved successfully.
C:\WINDOWS\JPGimage59.zip moved successfully.
C:\WINDOWS\JPGimage62.zip moved successfully.
C:\WINDOWS\JPGimage65.zip moved successfully.
C:\WINDOWS\JPGimage68.zip moved successfully.
C:\WINDOWS\JPGimage71.zip moved successfully.
C:\WINDOWS\JPGimage74.zip moved successfully.
C:\WINDOWS\JPGimage77.zip moved successfully.
C:\WINDOWS\JPGimage80.zip moved successfully.
C:\WINDOWS\JPGimage83.zip moved successfully.
C:\WINDOWS\JPGimage86.zip moved successfully.
C:\WINDOWS\JPGimage92.zip moved successfully.
C:\WINDOWS\JPGimage95.zip moved successfully.
File/Folder [C:\WINDOWS\JPGimage98.zip not found.
File/Folder [C:\WINDOWS\look0.zip not found.
File/Folder [C:\WINDOWS\look12.zip not found.
File/Folder [C:\WINDOWS\look15.zip not found.
File/Folder [C:\WINDOWS\look18.zip not found.
File/Folder [C:\WINDOWS\look24.zip not found.
File/Folder [C:\WINDOWS\look27.zip not found.
File/Folder [C:\WINDOWS\look36.zip not found.
File/Folder [C:\WINDOWS\look39.zip not found.
File/Folder [C:\WINDOWS\look42.zip not found.
File/Folder [C:\WINDOWS\look48.zip not found.
File/Folder [C:\WINDOWS\look51.zip not found.
File/Folder [C:\WINDOWS\look57.zip not found.
File/Folder [C:\WINDOWS\look6.zip not found.
File/Folder [C:\WINDOWS\look60.zip not found.
File/Folder [C:\WINDOWS\look63.zip not found.
File/Folder [C:\WINDOWS\look66.zip not found.
File/Folder [C:\WINDOWS\look69.zip not found.
File/Folder [C:\WINDOWS\look72.zip not found.
File/Folder [C:\WINDOWS\look75.zip not found.
File/Folder [C:\WINDOWS\look78.zip not found.
File/Folder [C:\WINDOWS\look84.zip not found.
File/Folder [C:\WINDOWS\look93.zip not found.
File/Folder [C:\WINDOWS\look96.zip not found.

Created on 09/15/2007 17:02:06
0
Réponse 11 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 17:08
Impec.

Relance msnfix et copie colle le rapport + un nouveau HijackThis.

a+
0
Réponse 12 / 36
sparadra62
15 sept. 2007 à 17:10
la en ce moment la personne continue a m envoyer des fichier zip piegé (que je n ouvre pas bien entendu)du style "regarde ta tete avec un crane rasé..." pourtant son adresse n est pas dans mais contact je l ai prevenu mais elle ma dit qu elle s en foutai
0
Réponse 13 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 17:13
MSNFix 1.505

C:\Documents and Settings\Admin\Bureau\MSNFix\MSNFix
Fix exécuté le 15/09/2007 - 17:09:08,09 By Admin
mode normal

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\WINDOWS\JPGimage98.zip] 0AE6137E16B97C2A4B66919CC28709FF
[C:\WINDOWS\look0.zip] 71ED0134E285CD71D2FEEDE500FB4BAB
[C:\WINDOWS\look12.zip] E2109711B3CEEB6560BE0CA014D781B8
[C:\WINDOWS\look15.zip] 2D972DE28CD08074FFC6C645B364D2DF
[C:\WINDOWS\look18.zip] E40A8CAB609F6AD3CF9A0DC62B37163F
[C:\WINDOWS\look24.zip] A6D7FE9E68F2E77DB626B2B403DC2CFE
[C:\WINDOWS\look27.zip] 1E792FD40F021C6C9BD1AACEF53C1801
[C:\WINDOWS\look36.zip] 479CC1CF861254AF8E31648D88D0D1EC
[C:\WINDOWS\look39.zip] 2CE498549253C800ED9F05730098BE09
[C:\WINDOWS\look42.zip] 7356E05CC5B9B7C668C026F82F008B9F
[C:\WINDOWS\look48.zip] 382B1B284C685B833F8EB8E8FC210377
[C:\WINDOWS\look51.zip] A5CF2D7B560FDC157EE2DA812ED52522
[C:\WINDOWS\look57.zip] 23C0F50E610862A23E3A5C4F14FB7651
[C:\WINDOWS\look6.zip] 62D7443B92BA1757C619D6B0B30A8EAE
[C:\WINDOWS\look60.zip] 9AA6A253C3F8A4059D9B61087D51CF6E
[C:\WINDOWS\look63.zip] 14E3B09DB306D7DD0410A25728E08C6C
[C:\WINDOWS\look66.zip] 250D5AD840941E1423297D4933FAB344
[C:\WINDOWS\look69.zip] 4F5A9C44F60DD6E7E0552EDF6286D529
[C:\WINDOWS\look72.zip] C0FA78EFD370DD4061302759AEB59617
[C:\WINDOWS\look75.zip] B12186950D1C4F6243CC1193BB01FE55
[C:\WINDOWS\look78.zip] 477BD7CE3AF4B6A3F60F5E9ED50E6BAE
[C:\WINDOWS\look84.zip] A8BDB892E6A9B80BDB661565960040B2
[C:\WINDOWS\look93.zip] BF9C25FEAD3F4392215885EB33BEA5CD
[C:\WINDOWS\look96.zip] FD53E0B1C665243711B5D61E4E53ED6B

[color=#FF0000][b]==>[/b][/color] SVP merci d'envoyer le fichier [b] C:\DOCUME~1\Admin\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr




------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------
0
Réponse 14 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 17:15
Logfile of HijackThis v1.99.1
Scan saved at 17:10:36, on 15/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\a-squared free\a2service.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\JMRaidTool.exe
C:\WINDOWS\SkyTel.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp2std.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\vsnp2std.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\eMule\eMule.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Copernic Desktop Search 2] "C:\Program Files\Copernic Desktop Search 2\DesktopSearchService.exe" /tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?71422339126146d2a96aebc02f627548
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?71422339126146d2a96aebc02f627548
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
0
Réponse 15 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 17:19
Ok

Donne moi son adresse MSN en privé stp

Par contre;MSNfix detecte des fichiers suspects, regarde s'ils sont presents sur ton pc

a+
0
Réponse 16 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 17:43
oui ces fichiers je les ai trouvé il sont dans windows effectivement
0
Réponse 17 / 36
julro
15 sept. 2007 à 20:02
MSNFix 1.505

C:\Documents and Settings\Administrateur\Bureau\MSNFix\MSNFix
Fix exécuté le 15/09/2007 - 19:57:53,50 By Administrateur
mode normal

************************ Recherche les fichiers présents

... C:\WINDOWS\services.exe

************************ heur. MSNCHK.exe ***** /!\ beta test /!\



************************ Recherche les dossiers présents

Aucun dossier trouvé




************************ Suppression des fichiers

.. OK ... C:\WINDOWS\services.exe



************************ Nettoyage du registre



************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\WINDOWS\system32\aurora.scr] 56410EA0E47E1133041025973BC2C7D2
[C:\WINDOWS\system32\bubbles.scr] 019AC8E7BC6E56FFC1471CF0CEB3998D
[C:\WINDOWS\system32\euphoria.scr] 2DF6E747B64F9401CE2238B31046C993
[C:\WINDOWS\system32\mystify.scr] D1CABA33D2CD02CA6E96F5B4A92121EA
[C:\WINDOWS\system32\plasma.scr] B448DE0F1F8EEAA41EDAC45F297F0ADE

[color=#FF0000][b]==>[/b][/color] SVP merci d'envoyer le fichier [b] C:\DOCUME~1\ADMINI~1\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr



Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 15092007_19582929.zip


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------
0
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 20:57
qu est que tu fait la?
0
Réponse 18 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 20:56
Ok comme ils sont présents, supprime les.

Puis relance MSNfix.

a+
0
Réponse 19 / 36
sparadra62 Messages postés 591 Date d'inscription jeudi 17 mai 2007 Statut Membre Dernière intervention 30 janvier 2015 4
15 sept. 2007 à 20:59
MSNFix 1.505

C:\Documents and Settings\Admin\Bureau\MSNFix\MSNFix
Fix exécuté le 15/09/2007 - 20:54:38,62 By Admin
mode normal

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

Aucun Fichier trouvé



------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------
0
Réponse 20 / 36
Regis59 Messages postés 21143 Date d'inscription mardi 27 juin 2006 Statut Contributeur sécurité Dernière intervention 22 juin 2016 1 320
15 sept. 2007 à 21:09
Impec,

remet un hijackthis

a+
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
symboles et écritures pour nick msn
Pando -
roro -

20 réponses
Peut on retrouver des conversations MSN?
Moi51 -
benzar -

36 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
impossible de me connecter a msn hotmail
Regis -
marino_u -

4 réponses