C'est au sujet de mon pc qui est super lent
Résolu/Fermé
baguidi
-
21 sept. 2007 à 18:36
FillPCA Messages postés 2242 Date d'inscription samedi 21 avril 2007 Statut Non membre Dernière intervention 18 février 2023 - 27 sept. 2007 à 19:50
FillPCA Messages postés 2242 Date d'inscription samedi 21 avril 2007 Statut Non membre Dernière intervention 18 février 2023 - 27 sept. 2007 à 19:50
A voir également:
- C'est au sujet de mon pc qui est super lent
- Mon pc est lent - Guide
- Benchmark pc - Guide
- Mon mac est lent comment le nettoyer - Guide
- Mon pc s'allume mais ne démarre pas windows 10 - Guide
- Reinitialiser pc - Guide
27 réponses
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
21 sept. 2007 à 18:42
21 sept. 2007 à 18:42
Bonjour,
* Prière d'imprimer ces instructions, ou de les coller dans un fichier texte pour lecture en mode Sans Échec.
* Télécharge Brute Force Uninstaller (de Merijn) : http://www.merijn.org/files/bfu.zip
* Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU).
* Fais un clic droit ici : http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger toolbar.bfu (de Chercheur). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utlises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).
* Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8 ou F5 ; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.
* Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU).
o Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur : toolbar.bfu
o Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\toolbar.bfu
o Clique sur Execute et laisse-le faire son travail.
o Attendre que Complete script execution apparaîsse et clique sur OK.
o Clique Exit pour fermer le programme BFU.
* Redémarre normalement.
Edite aussi un nouveau rapport Hijackthis.
FillPCA
* Prière d'imprimer ces instructions, ou de les coller dans un fichier texte pour lecture en mode Sans Échec.
* Télécharge Brute Force Uninstaller (de Merijn) : http://www.merijn.org/files/bfu.zip
* Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU).
* Fais un clic droit ici : http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger toolbar.bfu (de Chercheur). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utlises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).
* Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8 ou F5 ; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.
* Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU).
o Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur : toolbar.bfu
o Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\toolbar.bfu
o Clique sur Execute et laisse-le faire son travail.
o Attendre que Complete script execution apparaîsse et clique sur OK.
o Clique Exit pour fermer le programme BFU.
* Redémarre normalement.
Edite aussi un nouveau rapport Hijackthis.
FillPCA
merci mon brave
j'ai réalisé votre methode pour régler mon prob. Semble t'il que l'amélioration n'est pas totale ce qui fait que je continue toujours par etre embêté par les Spywares. D'ailleurs je tente de télécharger l'antiSpyware mais cela ne prend pas. J'ignore sur quel site trouver le bon téléchargement. je suis à votre écoute et merci de m'aider.
j'ai réalisé votre methode pour régler mon prob. Semble t'il que l'amélioration n'est pas totale ce qui fait que je continue toujours par etre embêté par les Spywares. D'ailleurs je tente de télécharger l'antiSpyware mais cela ne prend pas. J'ignore sur quel site trouver le bon téléchargement. je suis à votre écoute et merci de m'aider.
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
24 sept. 2007 à 17:09
24 sept. 2007 à 17:09
Bonjour,
Je n'ai pas prétendu que tout allait rentrer dans l'ordre ainsi. Ce n'est qu'une étape.
Edite comme demandé un rapport Hijackthis pour que je vois les améliorations.
FillPCA
Je n'ai pas prétendu que tout allait rentrer dans l'ordre ainsi. Ce n'est qu'une étape.
Edite comme demandé un rapport Hijackthis pour que je vois les améliorations.
FillPCA
Salut FillpCA
je t'envoie le rapport et merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:38, on 24/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
je t'envoie le rapport et merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:38, on 24/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
24 sept. 2007 à 17:41
24 sept. 2007 à 17:41
Re,
1/ Télécharge Ccleaner Basic https://www.ccleaner.com/ccleaner/download
Ouvre Ccleaner, clique sur "lancer le nettoyage".
2/ Télécharge AVGantispyware : https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente.
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas. Ensuite.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.
3/ Edite le rapport AVG antispyware et un nouveau rapport Hijackthis.
FillPCA
1/ Télécharge Ccleaner Basic https://www.ccleaner.com/ccleaner/download
Ouvre Ccleaner, clique sur "lancer le nettoyage".
2/ Télécharge AVGantispyware : https://www.avg.com/en-ww/free-antivirus-download
Tu l'installes.
Lance AVG Anti-Spyware et clique sur le bouton Mise à jour. Patiente.
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas. Ensuite.
Clique sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.
3/ Edite le rapport AVG antispyware et un nouveau rapport Hijackthis.
FillPCA
bonjour monsieur FillPCA
voici le rapport de AVG
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:04:27 25/09/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe -> Adware.Trymedia : Ignoré.
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004608.exe -> Backdoor.Small.lo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP38\A0009947.exe -> Dropper.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004613.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004614.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004607.exe -> Trojan.Copier : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004612.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004615.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
voici celui de hija
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:16:39, on 25/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\setup_wm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\NORTON~1\navw32.exe
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
voici le rapport de AVG
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:04:27 25/09/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe -> Adware.Trymedia : Ignoré.
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004608.exe -> Backdoor.Small.lo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP38\A0009947.exe -> Dropper.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004613.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004614.exe -> Dropper.Small.apl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004607.exe -> Trojan.Copier : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004612.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP28\A0004615.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
voici celui de hija
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:16:39, on 25/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP UT\bin\hppusg.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Media Player\setup_wm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\NORTON~1\navw32.exe
C:\Documents and Settings\IBRA\Bureau\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www8.hp.com/fr/fr/home.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = C:\Program Files\Fichiers communs\Sonic Shared\CineTray.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE91305D-55AD-456D-BFBF-0E89CC6F35C3}: NameServer = 81.91.232.1,81.91.225.1
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O24 - Desktop Component 0: (no name) - http://fr.wrs.yahoo.com/_ylt=AsmV9mb9QwCyG0UdrMMPKJRuAQx./SIG=11k7c422a/**http%3A//photos.lacoccinelle.net/02/95/220295.jpg
Pi_Xi
Messages postés
2244
Date d'inscription
samedi 24 mars 2007
Statut
Membre
Dernière intervention
22 janvier 2016
149
25 sept. 2007 à 17:25
25 sept. 2007 à 17:25
Bonjour,
tu peux fixer les lignes suivantes:
tu peux fixer les lignes suivantes:
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXECa accélérera un peu ton pc ^^
bonjour Pi_Xi
jé fixé les quatre lignes mais le problème persiste encore et le voyant veille de l'unité centrale qui indique que l'UC bosse travaille tjs au lieu de scintiller
jé fixé les quatre lignes mais le problème persiste encore et le voyant veille de l'unité centrale qui indique que l'UC bosse travaille tjs au lieu de scintiller
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
25 sept. 2007 à 19:22
25 sept. 2007 à 19:22
Re,
1/ Ton fournisseur d'accès à Internet est bien au Bénin : https://whois.domaintools.com/81.91.225.1 ?
2/ * Fais un scan en ligne en cliquant ici : http://assiste.com.free.fr/...
* Choisis Panda.
* Tu dois réaliser le scan en utilisant Internet explorer. Une information apparait en haut, près de la barre d'état. Tu dois accepter et installer l'activeX proposé. La mise à jour de l'antivirus se lance.
* Réalise un scan complet du système.
* Sauvegarde le rapport en mode texte à l'issue du scan.
Edite le rapport Panda.
FillPCA
1/ Ton fournisseur d'accès à Internet est bien au Bénin : https://whois.domaintools.com/81.91.225.1 ?
2/ * Fais un scan en ligne en cliquant ici : http://assiste.com.free.fr/...
* Choisis Panda.
* Tu dois réaliser le scan en utilisant Internet explorer. Une information apparait en haut, près de la barre d'état. Tu dois accepter et installer l'activeX proposé. La mise à jour de l'antivirus se lance.
* Réalise un scan complet du système.
* Sauvegarde le rapport en mode texte à l'issue du scan.
Edite le rapport Panda.
FillPCA
salut FillPCA
Voici le rapport du scan panda
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017891.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027356.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020831.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020836.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027361.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017895.DLL
Adware/Trymedi... Adware
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP51\A0017724.exe
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027369.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020805.dll
C:\System Volume Informat...7CACD9}\RP81\A0027334.dll
C:\System Volume Informat...7CACD9}\RP70\A0020841.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017899.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027338.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020813.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017878.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020838.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027363.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017897.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020826.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027351.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017888.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017883.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027345.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020820.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...9}\RP70\A0020828.MANIFEST
C:\System Volume Informat...9}\RP81\A0027353.MANIFEST
C:\System Volume Informat...9}\RP52\A0017889.MANIFEST
C:\System Volume Informat...9}\RP56\A0018180.manifest
C:\System Volume Informat...9}\RP52\A0017870.manifest
C:\System Volume Informat...9}\RP81\A0023897.manifest
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020806.dll
C:\System Volume Informat...7CACD9}\RP81\A0030427.dll
C:\System Volume Informat...7CACD9}\RP52\A0017871.dll
C:\System Volume Informat...7CACD9}\RP70\A0020819.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017882.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027344.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017884.SCR
C:\System Volume Informat...7CACD9}\RP81\A0027333.scr
C:\System Volume Informat...7CACD9}\RP52\A0017869.scr
C:\System Volume Informat...7CACD9}\RP81\A0027346.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020821.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020804.scr
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027347.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020822.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017885.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020818.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017881.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027343.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020816.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017880.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027341.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027359.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020834.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017894.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020843.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020815.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027340.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020847.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020829.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027354.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027368.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027337.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020852.DLL
application/fu... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...9-499C-A11F-23C360D7C3F8}
HKEY_CURRENT_USER\Softwar...9-47A3-BD87-1E41684E07BB}
HKEY_CLASSES_ROOT\TypeLib...a-464a-9326-3f2801535a4d}
HKEY_LOCAL_MACHINE\softwa...B-42D5-8C85-4469CDA897AB}
hkey_classes_root\funwebproductsinstaller.start.1
hkey_classes_root\clsid\{...b-42d5-8c85-4469cda897ab}
HKEY_CURRENT_USER\Softwar...0-46FC-94B8-81276E4E27DF}
HKEY_CLASSES_ROOT\TypeLib...e-479e-b922-fbbd096e792c}
hkey_classes_root\clsid\{...9-499c-a11f-23c360d7c3f8}
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020845.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020825.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027350.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027349.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020824.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017887.EXE
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP79\A0022580.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020837.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027362.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017896.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027377.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027378.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020853.DLL
application/my... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...E-44cf-8957-5838F569A31D}
hkey_classes_root\clsid\{...e-44cf-8957-5838f569a31d}
HKEY_CLASSES_ROOT\TypeLib...B-4F24-AE82-7E2CE94BB6A9}
HKEY_LOCAL_MACHINE\softwa...3-4961-B6BB-170DE4475CCA}
hkey_classes_root\clsid\{...3-4961-b6bb-170de4475cca}
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027335.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020849.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027365.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020842.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027348.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020823.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017886.DLL
Application/Ps... Tracking Application
Latent
Show + Info
C:\Documents and Settings...A\Bureau\clean\pskill.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020846.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020827.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027352.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020839.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027364.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017898.EXE
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020835.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020848.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027360.DLL
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0024066.DLL
Application/Pr... Tracking Application
Latent
Show + Info
C:\Documents and Settings...ix\SDFix\apps\Process.exe
C:\RECYCLER\S-1-5-21-1512...e[SDFix\apps\Process.exe]
C:\Program Files\Navilog1\Process.exe
C:\System Volume Informat...7CACD9}\RP81\A0031517.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020851.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020840.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027367.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027336.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020850.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027366.EXE
Cookie/Doublec... Tracking Cookie
Latent
Show + Info
C:\Documents and Settings...es.txt[.doubleclick.net/]
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017879.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027339.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020814.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017890.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027355.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020830.DLL
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP80\A0022764.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020844.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020817.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027342.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027357.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020832.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017892.DLL
Cookie/Bluestr... Tracking Cookie
Latent
Show + Info
Voici le rapport du scan panda
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017891.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027356.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020831.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020836.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027361.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017895.DLL
Adware/Trymedi... Adware
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP51\A0017724.exe
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027369.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020805.dll
C:\System Volume Informat...7CACD9}\RP81\A0027334.dll
C:\System Volume Informat...7CACD9}\RP70\A0020841.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017899.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027338.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020813.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017878.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020838.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027363.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017897.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020826.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027351.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017888.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017883.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027345.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020820.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...9}\RP70\A0020828.MANIFEST
C:\System Volume Informat...9}\RP81\A0027353.MANIFEST
C:\System Volume Informat...9}\RP52\A0017889.MANIFEST
C:\System Volume Informat...9}\RP56\A0018180.manifest
C:\System Volume Informat...9}\RP52\A0017870.manifest
C:\System Volume Informat...9}\RP81\A0023897.manifest
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020806.dll
C:\System Volume Informat...7CACD9}\RP81\A0030427.dll
C:\System Volume Informat...7CACD9}\RP52\A0017871.dll
C:\System Volume Informat...7CACD9}\RP70\A0020819.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017882.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027344.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017884.SCR
C:\System Volume Informat...7CACD9}\RP81\A0027333.scr
C:\System Volume Informat...7CACD9}\RP52\A0017869.scr
C:\System Volume Informat...7CACD9}\RP81\A0027346.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020821.SCR
C:\System Volume Informat...7CACD9}\RP70\A0020804.scr
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027347.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020822.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017885.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020818.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017881.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027343.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020816.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017880.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027341.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027359.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020834.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017894.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020843.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020815.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027340.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020847.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020829.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027354.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027368.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027337.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020852.DLL
application/fu... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...9-499C-A11F-23C360D7C3F8}
HKEY_CURRENT_USER\Softwar...9-47A3-BD87-1E41684E07BB}
HKEY_CLASSES_ROOT\TypeLib...a-464a-9326-3f2801535a4d}
HKEY_LOCAL_MACHINE\softwa...B-42D5-8C85-4469CDA897AB}
hkey_classes_root\funwebproductsinstaller.start.1
hkey_classes_root\clsid\{...b-42d5-8c85-4469cda897ab}
HKEY_CURRENT_USER\Softwar...0-46FC-94B8-81276E4E27DF}
HKEY_CLASSES_ROOT\TypeLib...e-479e-b922-fbbd096e792c}
hkey_classes_root\clsid\{...9-499c-a11f-23c360d7c3f8}
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020845.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020825.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027350.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027349.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020824.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017887.EXE
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP79\A0022580.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020837.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027362.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017896.EXE
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027377.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027378.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020853.DLL
application/my... Tracking Application
Latent
Show + Info
HKEY_LOCAL_MACHINE\softwa...E-44cf-8957-5838F569A31D}
hkey_classes_root\clsid\{...e-44cf-8957-5838f569a31d}
HKEY_CLASSES_ROOT\TypeLib...B-4F24-AE82-7E2CE94BB6A9}
HKEY_LOCAL_MACHINE\softwa...3-4961-B6BB-170DE4475CCA}
hkey_classes_root\clsid\{...3-4961-b6bb-170de4475cca}
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027335.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020849.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027365.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020842.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027348.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020823.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017886.DLL
Application/Ps... Tracking Application
Latent
Show + Info
C:\Documents and Settings...A\Bureau\clean\pskill.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020846.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020827.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027352.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020839.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027364.EXE
C:\System Volume Informat...7CACD9}\RP52\A0017898.EXE
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020835.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020848.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027360.DLL
Application/Fu... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0024066.DLL
Application/Pr... Tracking Application
Latent
Show + Info
C:\Documents and Settings...ix\SDFix\apps\Process.exe
C:\RECYCLER\S-1-5-21-1512...e[SDFix\apps\Process.exe]
C:\Program Files\Navilog1\Process.exe
C:\System Volume Informat...7CACD9}\RP81\A0031517.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020851.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020840.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027367.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027336.EXE
C:\System Volume Informat...7CACD9}\RP70\A0020850.EXE
C:\System Volume Informat...7CACD9}\RP81\A0027366.EXE
Cookie/Doublec... Tracking Cookie
Latent
Show + Info
C:\Documents and Settings...es.txt[.doubleclick.net/]
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017879.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027339.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020814.DLL
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP52\A0017890.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027355.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020830.DLL
Application/We... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP80\A0022764.exe
Application/My... Tracking Application
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP70\A0020844.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020817.DLL
C:\System Volume Informat...7CACD9}\RP81\A0027342.DLL
Generic Malwar... Virus
Latent
Show + Info
C:\System Volume Informat...7CACD9}\RP81\A0027357.DLL
C:\System Volume Informat...7CACD9}\RP70\A0020832.DLL
C:\System Volume Informat...7CACD9}\RP52\A0017892.DLL
Cookie/Bluestr... Tracking Cookie
Latent
Show + Info
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
26 sept. 2007 à 15:07
26 sept. 2007 à 15:07
Bonjour,
Je ne comprends pas ton rapport Panda. Il devrait se présenter ainsi : http://www.infos-du-net.com/forum/104468-11-panda-antivirus-ligne-rapport-hijackthis
Tu n'as pas répondu à ma question concernant ton fournisseur d'accès.
FillPCA
Je ne comprends pas ton rapport Panda. Il devrait se présenter ainsi : http://www.infos-du-net.com/forum/104468-11-panda-antivirus-ligne-rapport-hijackthis
Tu n'as pas répondu à ma question concernant ton fournisseur d'accès.
FillPCA
salut mon brave
voici le rapport du scan panda
;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
voici le rapport du scan panda
;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
salut mon pote
je viens de t'envoyé un autre rapport que je vient de sauvegarder
merci
;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
je viens de t'envoyé un autre rapport que je vient de sauvegarder
merci
;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-09-26 13:55:33
PROTECTIONS: 1
MALWARE: 43
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton AntiVirus 2006 2005 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{00a6faf1-072e-44cf-8957-5838f569a31d}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{07b18ea1-a523-4961-b6bb-170de4475cca}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\funwebproductsinstaller.start.1
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d}
00096053 application/funweb HackTools No 0 Yes No HKEY_CLASSES_ROOT\TypeLib\{f42228fb-e84e-479e-b922-fbbd096e792c}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{98d9753d-d73b-42d5-8c85-4469cda897ab}
00096053 application/funweb HackTools No 0 Yes No hkey_classes_root\clsid\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8}
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020823.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017886.DLL
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027348.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020846.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027352.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020827.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027341.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017880.DLL
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020816.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020834.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027359.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017894.DLL
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.doubleclick.net/]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\RECYCLER\S-1-5-21-1512572062-1104575384-1504085382-1007\Dc5.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0031517.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\SDFix\SDFix\apps\Process.exe
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\IBRA\Application Data\Mozilla\Firefox\Profiles\b250n9vn.default\cookies.txt[.bluestreak.com/]
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020818.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017881.DLL
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027343.DLL
00238695 Application/Pskill.K HackTools No 0 Yes No C:\Documents and Settings\IBRA\Bureau\clean\pskill.exe
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020830.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017890.DLL
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027355.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020814.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027339.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017879.DLL
00252281 Adware/Trymedia Adware No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP51\A0017724.exe
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027350.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020845.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020825.DLL
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027366.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020850.EXE
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027336.EXE
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP56\A0018180.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020828.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023897.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017889.MANIFEST
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017870.manifest
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027353.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020822.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027347.DLL
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017885.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027349.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020824.EXE
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017887.EXE
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027361.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020836.DLL
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017895.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017878.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027338.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020813.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017888.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027351.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020826.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017883.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027345.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020820.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020806.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0030427.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017882.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027344.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017871.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020819.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020804.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017884.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017869.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027333.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027346.SCR
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020821.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027368.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020852.DLL
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027337.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020851.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020840.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027367.DLL
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027362.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017896.EXE
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020837.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020817.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027342.DLL
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020844.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027377.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020853.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027378.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027340.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020843.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020815.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020829.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027354.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020847.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017891.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027356.EXE
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020831.EXE
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027360.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020835.DLL
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020848.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027334.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020805.dll
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020841.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017899.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027369.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020839.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027364.EXE
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017898.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017897.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027363.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020838.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020849.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020842.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027365.DLL
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027335.DLL
01178546 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0024066.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0027357.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP52\A0017892.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP70\A0020832.DLL
01784855 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP79\A0022580.exe
01942447 Application/Webmediaplayer HackTools No 0 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP80\A0022764.exe
02068579 Adware/NaviPromo Adware No 1 Yes No C:\System Volume Information\_restore{6B545D7D-D0D0-42C0-85A5-D58EE67CACD9}\RP81\A0023832.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
26 sept. 2007 à 15:21
26 sept. 2007 à 15:21
Re,
[*]Télécharge BTFix de Bibi26 : http://cluster1.easy-hebergement.net/
[*]Dézippe l'archive sur ton Bureau.
[*]Ouvre le dossier BTFix.
[*]Double clique surBTFix.exe.
[*]Clique sur Rechercher.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
FillPCA
[*]Télécharge BTFix de Bibi26 : http://cluster1.easy-hebergement.net/
[*]Dézippe l'archive sur ton Bureau.
[*]Ouvre le dossier BTFix.
[*]Double clique surBTFix.exe.
[*]Clique sur Rechercher.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
FillPCA
merci pour ton aide
voici le rapport
BTFix 1.046 (par bibi26) - 26/09/2007 14:26:53 - Analyse
---> Fichiers/Dossiers trouvés
- C:\Documents and Settings\IBRA\Application Data\ShoppingReport
- C:\Documents and Settings\IBRA\Application Data\Hotbar_Icons
- C:\Documents and Settings\IBRA\Application Data\WeatherDPA
- C:\Documents and Settings\All Users\Application Data\HotbarSA
---> Analyse terminée
voici le rapport
BTFix 1.046 (par bibi26) - 26/09/2007 14:26:53 - Analyse
---> Fichiers/Dossiers trouvés
- C:\Documents and Settings\IBRA\Application Data\ShoppingReport
- C:\Documents and Settings\IBRA\Application Data\Hotbar_Icons
- C:\Documents and Settings\IBRA\Application Data\WeatherDPA
- C:\Documents and Settings\All Users\Application Data\HotbarSA
---> Analyse terminée
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
26 sept. 2007 à 15:33
26 sept. 2007 à 15:33
Re,
1/ Imprime ceci.
2/ Redémarre en mode sans échec. Au démarrage du PC, tapote sur F8 (ou F5). Ton PC démarre, mais sans accès à Internet.
3/ [*]Ouvre BTFix.
[*]Clique sur Nettoyer.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
4/ Tu n'as pas répondu à ma question : ton fournisseur d'accès à Internet correspond bien à cela ?
https://whois.domaintools.com/81.91.225.1
5/ As-tu toujours des soucis ?
FillPCA
1/ Imprime ceci.
2/ Redémarre en mode sans échec. Au démarrage du PC, tapote sur F8 (ou F5). Ton PC démarre, mais sans accès à Internet.
3/ [*]Ouvre BTFix.
[*]Clique sur Nettoyer.
[*]Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.
4/ Tu n'as pas répondu à ma question : ton fournisseur d'accès à Internet correspond bien à cela ?
https://whois.domaintools.com/81.91.225.1
5/ As-tu toujours des soucis ?
FillPCA
je ne sais comment te remercier mais tu es vraiment un brave type et j'aimerai être danse comme toi car j'adore l'informatique. Moi même j'ai fait un brevet de technicien supérieur en Informatique de gestion et je compte continuer pour avoir une Licence Professionnel. Quel option tu me conseilles?
Bref j''ai déjà pu nettoyer les lignes en mode sans échec. seulement j'ai fait cela avant que tu ne m'écrive car en voulant supprimer en mode normal le système m'a dit de le faire en mode sans échec.
C'est vrai mon fournisseur d'accès se trouve au Bénin comme moi même d'ailleurs je suis au bénin. Nous somme connecté sur un site du Gouvernement car nous somme au ministère des Mines cé un truc de l'état.
Tu es vraiment trés gentil avec moi.
Bref j''ai déjà pu nettoyer les lignes en mode sans échec. seulement j'ai fait cela avant que tu ne m'écrive car en voulant supprimer en mode normal le système m'a dit de le faire en mode sans échec.
C'est vrai mon fournisseur d'accès se trouve au Bénin comme moi même d'ailleurs je suis au bénin. Nous somme connecté sur un site du Gouvernement car nous somme au ministère des Mines cé un truc de l'état.
Tu es vraiment trés gentil avec moi.
FillPCA
Messages postés
2242
Date d'inscription
samedi 21 avril 2007
Statut
Non membre
Dernière intervention
18 février 2023
123
26 sept. 2007 à 16:08
26 sept. 2007 à 16:08
OK.
Ca semble propre. As-tu toujours des soucis, sinon, on passe à la dernière étape.
FillPCA
Ca semble propre. As-tu toujours des soucis, sinon, on passe à la dernière étape.
FillPCA