Votre question

Winfixer2005: besoin d'aide pour analyse de log Hijackthis.

Tags :
  • Hijackthis
  • Sécurité
Dernière réponse : dans Sécurité et virus
31 Août 2005 13:19:05

J'avais cru m'être débarassée de winfixer, mais non! Je ne l'ai plus comme icône de bureau, ni dans les programmes, mais il doit bien être quelque part puisqu'il me demande de manière aléatoire si je veux lancer le téléchargement.
De plus, mon iexplorer quitte de plus en plus souvent ("rapport d'erreur"), j'ai beaucoup de pub intempestives et par dessus le marché, j'ai au démarrage de l'ordi "Erreur Egdaccess_1061.dll".

Voici mon log Hijackthis.
Si quelqu'un sait ce qu'il faut en faire?

Encore une petite question: j'ai vu que certains recommandent CC Cleaner, et d'autres, plutôt Reg Cleaner. Quelle est la différence?

Merci beaucoup.
Léni.

Logfile of HijackThis v1.99.1
Scan saved at 13:17:12, on 31/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\qttask.exe
C:\temp\salm.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\Internet Optimizer\optimize.exe
C:\WINDOWS\system32\8nnvue7d.exe
C:\Program Files\Media Gateway\MediaGateway.exe
C:\Program Files\Rgfyn\Muvyr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\sony\giga pocket\shwserv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\Program Files\sony\vaio media music server\SSSvr.exe
C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
C:\Program Files\sony\giga pocket\GPVSvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\sony\giga pocket\RM_SV.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\Client\Local Settings\Temporary Internet Files\Content.IE5\2TSTA1G9\WFI_FRA[1].exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.digitalfan.com/search
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - C:\WINDOWS\mslagent\4b_1,0,1,2_mslagent.dll (file missing)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Implements Jammer - {09F0F280-FB9A-481B-B69A-CB00DC44D027} - C:\PROGRA~1\ADVANC~1\POPUPJ~1.DLL
O2 - BHO: Search Relevancy - {1D7E3B41-23CE-469B-BE1B-A64B877923E1} - C:\PROGRA~1\SEARCH~1\SEARCH~2.DLL (file missing)
O2 - BHO: WebBar Class - {77712A64-F30B-47C8-A363-CDA1CEC7DC1B} - C:\PROGRA~1\ADVANC~1\ADVANC~1.DLL
O2 - BHO: BHObj Class - {8F4E5661-F99E-4B3E-8D85-0EA71C0748E4} - C:\WINDOWS\wsem303.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [salm] c:\temp\salm.exe
O4 - HKLM\..\Run: [exizixup] C:\WINDOWS\exizixup.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [8nnvue7d] C:\WINDOWS\system32\8nnvue7d.exe
O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe
O4 - HKLM\..\Run: [Qceqehp] C:\Program Files\Rgfyn\Muvyr.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKLM\..\Run: [NI.UWFX5V_0001_0802] "C:\Documents and Settings\Client\Local Settings\Temporary Internet Files\Content.IE5\2TSTA1G9\WFI_FRA[1].exe"
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/a...
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} (EGEGAUTH Class) - http://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_...
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://downloads.winwise.fr/Common/npwwg.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/DownloadsUnlimited/ie...
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binaries/IA/nethv32_FR_XP....
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Cont...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004033001/housecall...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {BFC9677B-8006-4336-9D49-2C797AEFCB9E} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/region/fr/techsupp/acti...
O16 - DPF: {FA83E942-B796-46DE-9155-1632ECC5473B} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\sony\giga pocket\shwserv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe

Autres pages sur : winfixer2005 besoin aide analyse log hijackthis

31 Août 2005 15:17:13

Bonjour

1 Télécharge
CCleaner.

http://www.filehippo.com/download_ccleaner.html
Installe le dans un répertoire dédié.

Ewido
http://www.ewido.net/fr/download/
Tu l'installes et tu le mets à jour.

2 Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 ou F5 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne le mode sans échec approprié et appuye sur Entrée.

3 Désinstalle ces applications (si tu les trouves) dans Ajout-Suppression de programmes :

Search Relevancy
Internet Optimizer
Rgfyn
Media Gateway

4 Relance un scan HijackThis et coche les lignes ci-dessous :

R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - C:\WINDOWS\mslagent\4b_1,0,1,2_mslagent.dll (file missing)
O2 - BHO: Implements Jammer - {09F0F280-FB9A-481B-B69A-CB00DC44D027} - C:\PROGRA~1\ADVANC~1\POPUPJ~1.DLL
O2 - BHO: Search Relevancy - {1D7E3B41-23CE-469B-BE1B-A64B877923E1} - C:\PROGRA~1\SEARCH~1\SEARCH~2.DLL (file missing)
O2 - BHO: WebBar Class - {77712A64-F30B-47C8-A363-CDA1CEC7DC1B} - C:\PROGRA~1\ADVANC~1\ADVANC~1.DLL
O2 - BHO: BHObj Class - {8F4E5661-F99E-4B3E-8D85-0EA71C0748E4} - C:\WINDOWS\wsem303.dll
O4 - HKLM\..\Run: [salm] c:\temp\salm.exe
O4 - HKLM\..\Run: [exizixup] C:\WINDOWS\exizixup.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [8nnvue7d] C:\WINDOWS\system32\8nnvue7d.exe
O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe
O4 - HKLM\..\Run: [Qceqehp] C:\Program Files\Rgfyn\Muvyr.exe
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKLM\..\Run: [NI.UWFX5V_0001_0802] "C:\Documents and Settings\Client\Local Settings\Temporary Internet Files\Content.IE5\2TSTA1G9\WFI_FRA[1].exe"
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} (EGEGAUTH Class) - http://akamai.downloadv3.com/binaries/P2EClient/EGAUTH_...
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://downloads.winwise.fr/Common/npwwg.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/DownloadsUnlimited/ie...
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binaries/IA/nethv32_FR_XP....
O16 - DPF: {BFC9677B-8006-4336-9D49-2C797AEFCB9E} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...
O16 - DPF: {FA83E942-B796-46DE-9155-1632ECC5473B} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCE...

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

5 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer

6 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\Program Files\Search Relevancy
C:\Program Files\Rgfyn
C:\Program Files\Internet Optimizer
C:\Program Files\Media Gateway
C:\WINDOWS\nem220.dll
C:\WINDOWS\mslagent
C:\WINDOWS\wsem303.dll
C:\WINDOWS\exizixup.exe
C:\WINDOWS\system32\P2P Networking
C:\WINDOWS\system32\8nnvue7d.exe
c:\temp\salm.exe
InstantAccess
--> Fais une recherche sur le PC.

7 Lance et exécute CCleaner.

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.

8 Lance Ewido.
Fais un scan en mode complet.
Sauvegardes le rapport.

9 Redémarre normalement.

Poste un nouveau log HijackThis avec le rapport d'Ewido.
31 Août 2005 17:31:37

J'ai fait ce que tu m'as dit. Il y a quelques lignes que je n'ai pas trouvé dans Hijackthis.
Pas trouvé non plus InstantAccess.

J'ai toujours les mêmes pb au démarrage de l'ordi (erreur egdaccess), les pub, les erreurs IE et pour winfixer, je ne sais pas. Il est réapparu en icône de bureau en raccourci; je l'ai mis à la poubelle.

Voici mon nouveau log:

Logfile of HijackThis v1.99.1
Scan saved at 17:29:19, on 31/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\Program Files\sony\giga pocket\shwserv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\sony\vaio media music server\SSSvr.exe
C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
C:\Program Files\sony\giga pocket\GPVSvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\sony\giga pocket\RM_SV.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Hijackthis\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.digitalfan.com/search
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/a...
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Cont...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004033001/housecall...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/region/fr/techsupp/acti...
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\sony\giga pocket\shwserv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe


Et voici le rapport d'ewido.

---------------------------------------------------------
ewido security suite - Rapport de scan
---------------------------------------------------------

+ Créé le: 17:14:12, 31/08/2005
+ Somme de contrôle: 6C7A765F

+ Résultats du scan:

HKLM\SOFTWARE\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf1 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf2 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf4 -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\AppID\{8B0FEF15-54DC-49F5-8377-8172DE975F75} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{3646C2BD-3554-49CA-8125-44DEEFB881DE} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{9BBCF06C-DCD7-495D-80DF-CDD5399D0FF8} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{C91E8926-D4BE-4685-99F4-0D996B96BAC0} -> Spyware.P2PNetworking : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{CEA206E8-8057-4A04-ACE9-FF0D69A92297} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{D7A82A12-05F5-42D8-B30D-6EF995075D2D} -> Spyware.MagicControl : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\CLSID\{E813099D-5529-47F4-9B37-4AFAFCB00A43} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CLSID -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\DyFuCA_BH.SinkObj\CurVer -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{16097036-894C-4C00-A61F-93CA0D49A70E} -> Spyware.TOPicks : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{1C01D150-91A4-4DE0-9BF8-A35D1BDF1001} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{2ED5AF98-9258-45BA-B79B-06625C92F662} -> Spyware.TOPicks : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{700DC0DD-F409-42E0-9DE5-21EE1A2BA9FD} -> Spyware.TOPicks : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{AA4939C3-DECA-4A48-A454-97CD587C0EF5} -> Spyware.ISTBar : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{AD5BC1F0-72D8-44B3-8E3D-8E8FECCE43FB} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{C91E8926-D4BE-4685-99F4-0D996B96BAC0} -> Spyware.P2PNetworking : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{E813099D-5529-47F4-9B37-4AFAFCB00A43} -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0} -> Dialer.Generic : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\Interface\{FD42F6D3-7AB1-470C-979B-7996EDC99099} -> Spyware.TOPicks : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\SearchRelevancy -> Spyware.SearchRelevancy : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\SearchRelevancy\CLSID -> Spyware.SearchRelevancy : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\SigningModule.SigningModule -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\SigningModule.SigningModule\CLSID -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\SigningModule.SigningModule\CurVer -> Spyware.Altnet : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\TypeLib\{0BE10B0D-B4DB-4693-9B1F-9AEAD54D17DC} -> Spyware.SafeSurfing : Nettoyer et sauvegarder
HKLM\SOFTWARE\Classes\TypeLib\{40B1D454-9CA4-43CC-86AA-CB175EAC52FB} -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\AMeOpt -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Spyware.MoneyTree : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Instant Access -> Dialer.Generic : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\salm -> Spyware.180Solutions : Nettoyer et sauvegarder
HKLM\SOFTWARE\Policies\Avenue Media -> Spyware.InternetOptimizer : Nettoyer et sauvegarder
HKLM\SOFTWARE\salm -> Spyware.180Solutions : Nettoyer et sauvegarder
HKLM\SOFTWARE\VGroup -> Spyware.SAHA : Nettoyer et sauvegarder
HKLM\SOFTWARE\VGroup\SAHAgent -> Spyware.SAHA : Nettoyer et sauvegarder
HKLM\SOFTWARE\VGroup\SAHAgent\Valid -> Spyware.SAHA : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder
:mozilla.11:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder
:mozilla.14:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.247realmedia : Nettoyer et sauvegarder
:mozilla.17:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.19:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.26:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Alexandre\14ou459m.slt\cookies.txt -> Spyware.Cookie.Sitestat : Nettoyer et sauvegarder
:mozilla.16:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.35:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.36:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.37:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder
:mozilla.42:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.47:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Esomniture : Nettoyer et sauvegarder
:mozilla.69:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder
:mozilla.77:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Ivwbox : Nettoyer et sauvegarder
:mozilla.101:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder
:mozilla.103:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder
:mozilla.133:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder
:mozilla.136:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adserver : Nettoyer et sauvegarder
:mozilla.137:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adserver : Nettoyer et sauvegarder
:mozilla.140:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.150:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder
:mozilla.151:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder
:mozilla.152:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder
:mozilla.153:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.155:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder
:mozilla.158:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder
:mozilla.176:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder
:mozilla.178:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder
:mozilla.179:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Comclick : Nettoyer et sauvegarder
:mozilla.185:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.193:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Realmedia : Nettoyer et sauvegarder
:mozilla.206:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Hitbox : Nettoyer et sauvegarder
:mozilla.226:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.227:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Sitestat : Nettoyer et sauvegarder
:mozilla.229:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.231:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.232:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.233:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.234:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.235:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.236:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.237:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.238:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.244:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Sitestat : Nettoyer et sauvegarder
:mozilla.256:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.258:C:\Documents and Settings\Client\Application Data\Mozilla\Profiles\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Sitestat : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@2o7[2].txt -> Spyware.Cookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@atdmt[2].txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@casinopays[1].txt -> Spyware.Cookie.Casinopays : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@crbanner.casinopays[2].txt -> Spyware.Cookie.Casinopays : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@fastclick[1].txt -> Spyware.Cookie.Fastclick : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@findwhat[1].txt -> Spyware.Cookie.Findwhat : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@linksynergy[1].txt -> Spyware.Cookie.Linksynergy : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@perf.overture[1].txt -> Spyware.Cookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@qksrv[2].txt -> Spyware.Cookie.Qksrv : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@revenue[2].txt -> Spyware.Cookie.Revenue : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@spylog[2].txt -> Spyware.Cookie.Spylog : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@tradedoubler[2].txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@weborama[2].txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@www.shopathomeselect[2].txt -> Spyware.Cookie.Shopathomeselect : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Cookies\client@www.smartadserver[2].txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Client\Local Settings\Temporary Internet Files\Content.IE5\2TSTA1G9\WFI_FRA[1].exe -> Not-A-Virus.Downloader.Agent.c : Nettoyer et sauvegarder
C:\Hijackthis\hijackthis\backups\backup-20050831-160452-384.dll -> Trojan.P2E.ai : Nettoyer et sauvegarder
C:\Hijackthis\hijackthis\backups\backup-20050831-160452-437.dll -> TrojanDownloader.Dyfuca.dt : Nettoyer et sauvegarder
C:\Hijackthis\hijackthis\backups\backup-20050831-160453-368.dll -> TrojanDownloader.WebP2PInstaller : Nettoyer et sauvegarder
C:\Hijackthis\hijackthis\backups\backup-20050831-160454-352.dll -> TrojanDownloader.Wintrim.bb : Nettoyer et sauvegarder
C:\Hijackthis\hijackthis\backups\backup-20050831-160455-875.dll -> Dialer.Generic : Nettoyer et sauvegarder
C:\Program Files\Admilli Service\AdmilliComm.dll -> Spyware.WinAD : Nettoyer et sauvegarder
C:\temp\sahagent.exe -> Adware.SAHA : Nettoyer et sauvegarder
C:\temp\salmhook.dll -> Spyware.180Solutions : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWFX5V_0001_0802NetInstaller.exe -> Not-A-Virus.Downloader.Agent.c : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWFX5V_0001_0802NetInstaller.exe -> Not-A-Virus.Downloader.Agent.c : Nettoyer et sauvegarder
C:\WINDOWS\Downloaded Program Files\UWFX5V_0001_0802NetInstaller.exe -> Not-A-Virus.Downloader.Agent.c : Nettoyer et sauvegarder
C:\WINDOWS\feujsod5.exe -> Adware.SAHA : Nettoyer et sauvegarder
C:\WINDOWS\system32\6jddmeuh.exe -> Adware.SAHA : Nettoyer et sauvegarder
C:\WINDOWS\system32\EGDACCESS.dll -> Dialer.Generic : Nettoyer et sauvegarder
C:\WINDOWS\system32\eglivecam_1028.dll -> Trojan.P2E.aa : Nettoyer et sauvegarder
C:\WINDOWS\system32\msclock32.dll -> Spyware.NaviSearch : Nettoyer et sauvegarder
C:\WINDOWS\system32\Mservice.dll -> TrojanDownloader.Wintrim.cj : Nettoyer et sauvegarder
C:\WINDOWS\system32\msklive.dll -> TrojanSpy.Mslagent : Nettoyer et sauvegarder
C:\WINDOWS\system32\msplock32.dll -> Spyware.NaviSearch : Nettoyer et sauvegarder
C:\WINDOWS\system32\npjm7rna.dll -> Adware.SAHA : Nettoyer et sauvegarder
C:\WINDOWS\system32\p2esocks_1022.dll -> Trojan.P2E.ai : Nettoyer et sauvegarder
:mozilla.26:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.28:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.34:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.35:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder
:mozilla.36:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Adtech : Nettoyer et sauvegarder
:mozilla.37:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder
:mozilla.40:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Valueclick : Nettoyer et sauvegarder
:mozilla.42:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.43:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Spylog : Nettoyer et sauvegarder
:mozilla.52:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Realmedia : Nettoyer et sauvegarder
:mozilla.53:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Weborama : Nettoyer et sauvegarder
:mozilla.63:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.68:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.72:D :\Julia\Sauvegarde Mails Julia 022004\Julia\7ieyqxlc.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Nettoyer et sauvegarder
D:\Mes Documents\JULIA\Logiciels\ICQ\NDetect.exe -> Backdoor.IP_Protect : Nettoyer et sauvegarder
D:\Program Files\Altnet\Download Manager\asm.exe -> Spyware.Altnet : Nettoyer et sauvegarder
D:\Program Files\Altnet\Download Manager\asmps.dll -> Spyware.Altnet : Nettoyer et sauvegarder


::Fin du rapport


Encore une fois:MERCI.
Contenus similaires
1 Septembre 2005 00:38:31

il n'a pas de firewall ou je me trompes ? auquel cas tout ces manip ne serviront pas a grands choses ...

edit: a moins que cela doit la suite norton , mais comme je ne la connais pas ...
1 Septembre 2005 02:03:50

Bonjour Lorena

Il a Norton Internet Security. Donc avec parefeu intègré.
En espèrant que tout est à jour et bien fonctionnel.
1 Septembre 2005 12:10:03

Bonjour,
ok je fais ça et je colle rapport.
A plus tard.
1 Septembre 2005 13:45:33

Voici donc le rapport Kaspersky. Je n'ai pas fermé la fenêtre du scan au cas où...?

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Thursday, September 01, 2005 13:38:59
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version: 5.0.67.0
Kaspersky Anti-Virus database last update: 1/09/2005
Kaspersky Anti-Virus database records: 137805
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
F:\
H:\
I:\
J:\

Scan Statistics:
Total number of scanned objects: 128320
Number of viruses found: 29
Number of infected objects: 268
Number of suspicious objects: 2
Duration of the scan process: 4199 sec

Infected Object Name - Virus Name
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 23:59:50 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 23:59:50 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_ Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_ Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx Infected: Virus.JS.Fortnight.b
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\019B56AA Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\037C6C47 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\05D007C3/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\05D007C3 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\05D93441 Infected: Email-Worm.Win32.Zafi.b
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08197D94 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0AA120CE Infected: Email-Worm.Win32.NetSky.ac
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0C2572DE.class Infected: Trojan-Downloader.Java.OpenConnection.v
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0D571E75 Infected: Trojan-Downloader.Win32.Dyfuca.ei
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0E817307/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\0E817307 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\10EF5D2A/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\10EF5D2A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\13EA548B Infected: Trojan.Win32.Small.cy
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\14DA6DD5 Infected: Email-Worm.Win32.NetSky.ac
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\14E46BCA Infected: Email-Worm.Win32.NetSky.ac
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\173B1769 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\187C50AC Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1889789D/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1889789D Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\188C229A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\18937693 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1896208F Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\18A01E84 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1ACC0DA9 Infected: Email-Worm.Win32.NetSky.d
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1AD97851/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1AD97851 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1DC85A31 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1DDC561C Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1DE32A15 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1DE97E0D Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\1E547E58.class Infected: Trojan.Java.ClassLoader.ak
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21C56395/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21C56395 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21CB7669 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21D53583/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21D53583 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21DC097C Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21EC5B6A/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21EC5B6A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\21F32F63 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\22030151 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\220A554A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\237F1CEE Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\24F74203 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25AE2FBF/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25AE2FBF Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25B82DB5 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C87FA3/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25C87FA3 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25CB299F Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25D52794/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\25D52794 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\267424C1 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\28A26868.html Infected: Exploit.VBS.Phel.a
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\29EA4634/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\29EA4634 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2A9320AF Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2AA85740 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2AB57F32 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2D503BA2 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2E4020D3.class Infected: Trojan.Java.ClassLoader.z
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F447183/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F447183 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F4E6F79 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\2F544371 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\35076A11 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3595578A Infected: Email-Worm.Win32.NetSky.ac
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\380749EE/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\380749EE Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3BD6169E Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3BE6688C Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3BEA1288/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3BEA1288 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3C9320B4.html Suspicious: Exploit.HTML.Mht
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CCA493B Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CDB1B2A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3CFE1273.dll Infected: Trojan-Downloader.Win32.Wintrim.bu
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3F9D15D3/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\3F9D15D3 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\46951559/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\46951559 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\48534DD9 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\4A1C683C Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\4A29102E Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\4B0751BA Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\4B1479AC Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\4B1A4DA5 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\51CD0789 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\54AC25AE Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\54ED3512/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\54ED3512 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\57310898 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\57854DA1 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\578F4B96 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A023102/Part-2.txt .exe Infected: Email-Worm.Win32.NetSky.aa
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A023102 Infected: Email-Worm.Win32.NetSky.aa
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A275DB3/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\5A275DB3 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\617D2A3B.html Suspicious: Exploit.HTML.CodeBaseExec
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\62081CD0.EXE Infected: Email-Worm.Win32.Rays
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\629B7E2F.exe Infected: Email-Worm.Win32.Rays
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\651522FC Infected: Email-Worm.Win32.NetSky.ac
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\66080826 Infected: Trojan-Downloader.Win32.Wintrim.az
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\678D36B6 Infected: Trojan-Downloader.Win32.Wintrim.co
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\67E37FB0 Infected: Email-Worm.Win32.NetSky.c
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6801798F Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\680E12D3 Infected: Trojan-Downloader.Win32.Dyfuca.gen
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\681B4973 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\682B1B61 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\683B6D4F Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\684F6939/data.rtf .scr Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\684F6939 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\68563D32 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\685C112B/naked2.htm.com Infected: Email-Worm.Win32.NetSky.c
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\685C112B Infected: Email-Worm.Win32.NetSky.c
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\68B82B3B Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\68C87D29 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\68CF5122 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\68D6251A Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\69AF24D1/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\69AF24D1 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6B5157AE Infected: Trojan-Downloader.Win32.Wintrim.bn
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\717979D2 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\74AE3960/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\74AE3960 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\75533267.dll Infected: Trojan-Downloader.Win32.Wintrim.cb
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\757C7451/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\757C7451 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\770A14A3/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\770A14A3 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7A773FAC/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7A773FAC Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7EF8751F/document.txt .exe Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7EF8751F Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7F051D11 Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7FC02D3D/details.txt .pif Infected: Email-Worm.Win32.NetSky.q
C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\7FC02D3D Infected: Email-Worm.Win32.NetSky.q
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370060.exe Infected: Trojan-Downloader.Win32.Dyfuca.ei
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370063.dll Infected: Trojan-Downloader.Win32.Dyfuca.dt
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370064.dll Infected: Trojan.Win32.P2E.ai
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370074.dll Infected: Trojan-Downloader.Win32.Agent.ad
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370075.dll Infected: Trojan-Downloader.Win32.Wintrim.ci
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370076.dll Infected: Trojan-Downloader.Win32.Wintrim.cl
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370077.exe Infected: Trojan.Win32.Small.cy
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370085.dll Infected: Trojan-Downloader.Win32.Wintrim.cj
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370086.dll Infected: Trojan-Spy.Win32.Mslagent
C:\System Volume Information\_restore{C50173C7-519E-4907-93C5-571F790FC374}\RP573\A0370089.dll Infected: Trojan.Win32.P2E.ai
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 00:49:44 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 23:59:50 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Mon, 30 Jun 2003 23:59:50 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Club-internet.dbx/[From "Auxilia" <auxilia@wanadoo.fr>][Date Sun, 29 Jun 2003 10:00:52 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Club-internet.dbx/[From "Auxilia" <auxilia@wanadoo.fr>][Date Sun, 29 Jun 2003 10:00:52 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Club-internet.dbx/[From "Auxilia" <auxilia@wanadoo.fr>][Date Sun, 29 Jun 2003 10:00:52 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Club-internet.dbx Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Wed, 2 Jul 2003 23:45:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:16:48 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_ Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED/Fw_ Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:31:44 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED/Undelivered Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:27:28 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:25:11 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:26:36 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 00:26:04 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 00:27:29 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:32:57 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED/html Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED/[From "Jacques REMER" <jremer@nnx.com>][Date Thu, 3 Jul 2003 01:20:36 +0200]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx/[From MAILER-DAEMON@zen.nnx.com (Mail Delivery System)][Date Thu, 3 Jul 2003 01:23:19 +0200 (CEST)]/UNNAMED Infected: Virus.JS.Fortnight.b
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx Infected: Virus.JS.Fortnight.b

Scan process completed.


1 Septembre 2005 15:33:21

Bonjour

Tu as trois élevages dans ton ordinateur: la quarantaine de Norton, le système de restauration et la sauvegarde d'Outlook.

1 Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.

2 Relance un scan HijackThis et coche les lignes ci-dessous :

R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

3 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer

4 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx
C:\Documents and Settings\Client\Local Settings\Application Data\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Budget.dbx
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Club-internet.dbx
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Livre.dbx
D:\Julia\Sauvegarde Mails Papa 022004\Identities\{98CB8A3A-56A1-4853-94BD-A79BC8BD0236}\Microsoft\Outlook Express\Presse.dbx
C:\WINDOWS\system32\EGDACCESS_1061.dll

Vide la quarantaine de Norton.

5 Lance et exécute CCleaner.

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.

6 Clique sur Démarrer - Clic droit sur le Poste de Travail - Propriétés - Restauration du systéme - cocher la case Désactiver la restauration du systéme et cliquer sur Appliquer.

7 Redémarre normalement.
Fais l'opération inverse en décochant la case Désactiver la restauration systéme.

Nouveau scan HijackThis
1 Septembre 2005 18:55:39

J'ai bien eu tes consignes. Je fais ça demain, car je ne suis pas chez moi donc devant mon ordi maintenant.

Au prochain log hijackthis.
Bonne soirée.
A demain.
2 Septembre 2005 02:03:38

hello. WinFixer m'a pourri l'existence trop longtemps, je fais un truc suicidaire....dans poste de travail...C/ clic droit ...C/ program files...explorer dossiers cachés... trouvé WinFixer ...clic droit et supprimer...vider la corbeille et redémarrer...Après vérification tout fonctionne à merveille et plus de demande de téléchargement intempestives... rapidité retrouvée...etc.. Une expérience qui semble avoir réussi. Mais je ne suis pas expert alors j'ai peutêtre perdu quelque chose ...quoi ? ...on verra bien.......a+
2 Septembre 2005 12:30:15

Bonjour,
Alors les nouvelles:
- je n'ai plus d'erreur Egdaccess au démarrage :-)
- apparemment pas de nouvelles de Winfixer.
Je ne sais pas s'il est parti ou s'il est caché, mais en tout cas pour l'instant il ne me demande pas de téléchargement et n'est plus sur le bureau ou ailleurs. :-)
- par contre, j'ai toujours iexplorer qui plante avec ce genre de message d'erreur:

En en-tête, ça peut être soit drwtsn32.exe ou iexplorer.exe ou explorer.exe ou sony U
PnP Framework ou d'autres encore.

Ensuite le texte:
"Machin a rencontré 1 pb et doit fermer. Nous vous prions de nous excuser pour le désagrément encouru. Si vous étiez en train de travailler, il se peut que certaines données soient perdues.
Veuillez signaler ce pb à Microsoft. Nous avons créé un rapport d'erreurs que vous pouvez nous envoyer. Nous traiterons ce rapport confidentiellement et anonymement.
Pour afficher les données de ce rapport d'erreurs, Cliquez ici."

En case à cocher:
Envoyer le rapport d'erreurs / Ne pas envoyer

Je viens d'avoir ce message à l'instant (avec l'erreur sur Sony UPnp...), je suis allée voir les données et les doc liés à l'erreur étaient les suivants:
C\Document...\Temp\WER663d.dir00\UPnPFramework.exe.mdmp
C\Document...\Temps\WER663d.dir00\appcompat.txt

Je suis allée voir si je les trouvais, mais non. Ils ne sont pas à l'emplacement indiqué. Alors est-ce que l'erreur serait liée au manque de ces fichiers?

Peut-être devrais-je utiliser un autre navigateur comme Firefox?

Merci beaucoup pour ton aide jusqu'à présent.
Voici le log Hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 12:27:16, on 02/09/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\Program Files\sony\usbsircs\usbsircs.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\Program Files\sony\giga pocket\shwserv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\sony\vaio media music server\SSSvr.exe
C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
C:\Program Files\sony\giga pocket\GPVSvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\sony\giga pocket\RM_SV.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Hijackthis\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.digitalfan.com/search
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\drag'n drop cd+dvd\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Pilote Remocon.lnk = ?
O4 - Global Startup: VAIO Action Setup (Serveur).lnk = ?
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/a...
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kavwebscan_unico...
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Cont...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004033001/housecall...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/region/fr/techsupp/acti...
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: Giga Pocket Hardware Detector - Sony Corporation - C:\Program Files\sony\giga pocket\shwserv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-VideoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-VideoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoServer\HTTP (file missing)
O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe

2 Septembre 2005 15:18:27

Bonjour

Plus rien d'infectieux dans ce rapport, mais des lignes inutiles
Relance un scan HijackThis et coche les lignes ci-dessous :

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.digitalfan.com/search
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/de...*http://www.yahoo.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://fr.encyclopedia.yahoo.com/rsc/tdserver.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/downloads/kws/kavwebscan_unico...
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/region/fr/techsupp/acti...
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »


Pour Internet Explorer, télécharge MCRepair.exe
http://download.microsoft.com/download/msninvestor/Patc...

* Clique sur Enregistrer ce programme sur le disque, puis sur OK.
* Dans la zone Rechercher dans, clique sur Bureau, puis sur
Enregistrer.
* Quitte tous les programmes en cours d'exécution sur votre ordinateur.
* Sur le Bureau, double-clique sur le fichier MCRepair.exe.
* Redémarre l'ordinateur lorsque tu y es invité.
2 Septembre 2005 18:15:59

Bon, et bien voilà. C'est fait.
Je te remercie pour ton aide.
J'ai toujours mes erreurs concernant iexplorer.
Tanpis...je vais voir ce que je peux faire. Eventuellement réinstaller IE.

A plus.
2 Septembre 2005 18:32:41

Je viens de faire un tour sur internet pour voir les sujets concernant les rapports d'erreurs.
J'ai trouvé un site qui disait comment désactiver ces rapports.
J'ai suivi la procédure. Je pense que maintenant c'est ok. Je verrai bien si ça dure.

Merci.
Leni.
14 Janvier 2006 18:11:47

moi aussi g ce problème alors g fait une analyse et j'aimerai que vous m'aidiez merci !

Logfile of HijackThis v1.99.1
Scan saved at 17:59:05, on 14/01/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
D:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
D:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE
D:\Program Files\Logitech\ImageStudio\LogiTray.exe
D:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe
D:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe
D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\ISTsvc\istsvc.exe
D:\WINDOWS\pxhpl.exe
D:\Program Files\SurfAccuracy\SAcc.exe
D:\Program Files\Internet Optimizer\optimize.exe
D:\Program Files\QuickTime\qttask.exe
C:\Program Files\Uidlvxn\Awhc.exe
D:\WINDOWS\system32\rundll32.exe
D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
D:\PROGRA~1\FICHIE~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\Program Files\NkbMonitor.exe
D:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
D:\Program Files\Microsoft Encarta\Collection Encarta 2004 DVD\EDICT.EXE
D:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
D:\Program Files\Intel\ASF Agent\ASFAgent.exe
D:\WINDOWS\system32\drivers\CDAC11BA.EXE
D:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
D:\Program Files\Norton AntiVirus\navapsvc.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Documents and Settings\Famille\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.0.1
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - D:\WINDOWS\nem220.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SuperBar - {136A9D1D-1F4B-43D4-8359-6F2382449255} - D:\Program Files\SUPERBAR\SUPERBAR.dll
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - D:\Program Files\NewDotNet\newdotnet7_14.dll
O2 - BHO: BHObj Class - {8F4E5661-F99E-4B3E-8D85-0EA71C0748E4} - D:\WINDOWS\wsem303.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - D:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - D:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: SuperBar - {2C83D709-76F4-4F96-9E9A-6A72675BDECE} - D:\Program Files\SUPERBAR\SUPERBAR.dll
O3 - Toolbar: YourSiteBar - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - D:\Program Files\YourSiteBar\ysb.dll (file missing)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AdaptecDirectCD] "D:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [ccApp] "D:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "D:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [LVCOMS] D:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE
O4 - HKLM\..\Run: [LogitechGalleryRepair] D:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] D:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [NvCplScan] nvsc32.exe
O4 - HKLM\..\Run: [WildTangent CDA] "D:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe" /startup "D:\Program Files\WildTangent\Apps\CDA\cdaEngine0500.dll"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] D:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] D:\PROGRA~1\FICHIE~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] D:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IST Service] D:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Vf1gdXmHU] D:\WINDOWS\pxhpl.exe
O4 - HKLM\..\Run: [SurfAccuracy] D:\Program Files\SurfAccuracy\SAcc.exe
O4 - HKLM\..\Run: [Internet Optimizer] "D:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Rnjesjl] C:\Program Files\Uidlvxn\Awhc.exe
O4 - HKLM\..\Run: [V÷h$vùõš/‚²‘ÆßfÏNbD:\Program Files\ISTsvc\istsvc.exe] D:\WINDOWS\pxhpl.exe
O4 - HKLM\..\Run: [Á³# L"h'þ9Óœð3rÅWD:\Program Files\ISTsvc\istsvc.exe] D:\WINDOWS\pxhpl.exe
O4 - HKLM\..\Run: [New.net Startup] rundll32 D:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s
O4 - HKLM\..\RunServices: [NvCplScan] nvsc32.exe
O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NvCplScan] nvsc32.exe
O4 - HKCU\..\Run: [PcSync] D:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\NkbMonitor.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - D:\Program Files\SideFind\sidefind.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - D:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - D:\WINDOWS\system32\shdocvw.dll (HKCU)
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .pdf: D:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} (Microsoft VM) - http://www.wildtangent.com/install/jvm/msjavx86_3805.ex...
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O18 - Protocol: bw+0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {F30C1020-2516-4E0C-BE34-702CDE3315D9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - D:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Boonty Games - BOONTY - D:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - D:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - D:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - D:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - D:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - D:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - D:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - D:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - D:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

merci
ps: je ne suis pas tres douee en informatique !
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS