rapport spy sweeper:
********
15:15: |··· Début de session, lundi 28 mai 2007 ···|
15:15: Spy Sweeper démarrée
15:15: Analyse lancée avec la version des définitions 919
15:15: Démarrage de l’analyse de la mémoire
15:22: Analyse de la mémoire terminée, temps passé : 00:07:16
15:22: Démarrage de l’analyse du Registre
15:22: Trouvé Adware: altnet
15:22: HKLM\software\altnet\ (27 traces secondaires) (ID = 103481)
15:22: Trouvé Adware: gain - common components
15:22: HKCR\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c}\ (3 traces secondaires) (ID = 126731)
15:22: HKLM\software\classes\clsid\{21ffb6c0-0da1-11d5-a9d5-00500413153c}\ (3 traces secondaires) (ID = 126751)
15:22: Trouvé Adware: instant access
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\egdhtml\ (18 traces secondaires) (ID = 128787)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\egdhtml\ (16 traces secondaires) (ID = 128787)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\egdhtml\ (13 traces secondaires) (ID = 128787)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\windows\currentversion\run\ || instant access (ID = 128817)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\microsoft\windows\currentversion\run\ || instant access (ID = 128817)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\windows\currentversion\run\ || instant access (ID = 128817)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\windows\currentversion\wintrust\trust providers\software publishing\trust database\0\ || goicfboogidikkejccmclpieicihhlpo bgdjdn (ID = 128845)
15:22: Trouvé Adware: lopdotcom
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\internet explorer\new windows\allow\ || lop.com (ID = 130287)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\internet explorer\new windows\allow\ || searchweb2.com (ID = 130288)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\internet explorer\new windows\allow\ || www.lop.com (ID = 130289)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\internet explorer\new windows\allow\ || www.searchweb2.com (ID = 130290)
15:22: Trouvé Adware: search200.com hijack
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\internet explorer\new windows\allow\ || search200.com (ID = 134078)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\internet explorer\new windows\allow\ || www.search200.com (ID = 134079)
15:22: Trouvé Adware: topsearch
15:22: HKLM\software\classes\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (9 traces secondaires) (ID = 143928)
15:22: HKCR\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (9 traces secondaires) (ID = 143930)
15:22: Trouvé Adware: 180search assistant/zango
15:22: HKLM\software\classes\typelib\{5b6689b5-c2d4-4dc7-bfd1-24ac17e5fcda}\ (9 traces secondaires) (ID = 147899)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\zango\ (14 traces secondaires) (ID = 147919)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\zango\ (14 traces secondaires) (ID = 147919)
15:22: HKCR\typelib\{5b6689b5-c2d4-4dc7-bfd1-24ac17e5fcda}\ (9 traces secondaires) (ID = 147925)
15:22: Trouvé Adware: cydoor
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\cydoor\ (14 traces secondaires) (ID = 639126)
15:22: Trouvé Adware: mediapipe
15:22: HKCR\appid\downloadmanager.exe\ (1 traces secondaires) (ID = 866684)
15:22: HKLM\software\classes\appid\downloadmanager.exe\ (1 traces secondaires) (ID = 866963)
15:22: HKCR\clientax.zangoclientax.1\ (3 traces secondaires) (ID = 1048531)
15:22: HKCR\clientax.zangoclientax\ (5 traces secondaires) (ID = 1048535)
15:22: HKLM\software\classes\clientax.zangoclientax.1\ (3 traces secondaires) (ID = 1048607)
15:22: HKLM\software\classes\clientax.zangoclientax\ (5 traces secondaires) (ID = 1048611)
15:22: Trouvé Adware: seekmo search assistant
15:22: HKCR\interface\{6c092742-10fe-4db2-988d-fc71948de70c}\ (8 traces secondaires) (ID = 1070659)
15:22: HKCR\interface\{7fa8976f-d00c-4e98-8729-a66569233fb5}\ (8 traces secondaires) (ID = 1070668)
15:22: HKLM\software\classes\interface\{6c092742-10fe-4db2-988d-fc71948de70c}\ (8 traces secondaires) (ID = 1070949)
15:22: HKLM\software\classes\interface\{7fa8976f-d00c-4e98-8729-a66569233fb5}\ (8 traces secondaires) (ID = 1070967)
15:22: HKCR\lmgr180.wmdrmax\ (5 traces secondaires) (ID = 1151702)
15:22: HKCR\lmgr180.wmdrmax.1\ (3 traces secondaires) (ID = 1151708)
15:22: HKLM\software\classes\lmgr180.wmdrmax\ (5 traces secondaires) (ID = 1151747)
15:22: HKLM\software\classes\lmgr180.wmdrmax.1\ (3 traces secondaires) (ID = 1151753)
15:22: HKCR\interface\{a16650a9-b065-40ec-bbd1-f8d370d17fb1}\ (8 traces secondaires) (ID = 1178323)
15:22: HKCR\interface\{bdddf1a5-51a9-4f51-b38d-4cd0ad831b31}\ (8 traces secondaires) (ID = 1178332)
15:22: HKCR\interface\{e43dfaa6-8c16-4519-b022-8792408505a4}\ (8 traces secondaires) (ID = 1178341)
15:22: HKLM\software\classes\interface\{a16650a9-b065-40ec-bbd1-f8d370d17fb1}\ (8 traces secondaires) (ID = 1178436)
15:22: HKLM\software\classes\interface\{bdddf1a5-51a9-4f51-b38d-4cd0ad831b31}\ (8 traces secondaires) (ID = 1178445)
15:22: HKLM\software\classes\interface\{e43dfaa6-8c16-4519-b022-8792408505a4}\ (8 traces secondaires) (ID = 1178454)
15:22: Trouvé Adware: maxifiles
15:22: HKCR\interface\{c6f2214e-0b54-45a9-b90d-7dd4ba45ed0b}\ (8 traces secondaires) (ID = 1530927)
15:22: Trouvé Adware: security2k hijacker
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\windows\currentversion\ext\stats\{873eb32d-ae1a-4183-89bd-45a77f761be4}\ (4 traces secondaires) (ID = 1569383)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\microsoft\windows\currentversion\ext\stats\{873eb32d-ae1a-4183-89bd-45a77f761be4}\ (4 traces secondaires) (ID = 1569383)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\windows\currentversion\ext\stats\{873eb32d-ae1a-4183-89bd-45a77f761be4}\ (4 traces secondaires) (ID = 1569383)
15:22: HKLM\software\microsoft\windows\currentversion\policies\explorer\run\ || issearch.exe (ID = 1572301)
15:22: HKLM\software\microsoft\windows\currentversion\policies\explorer\run\ || ishost.exe (ID = 1572302)
15:22: Trouvé Trojan Horse: trojan agent winlogonhook
15:22: HKCR\mezziacodec.chl\ (2 traces secondaires) (ID = 1588797)
15:22: HKLM\software\classes\mezziacodec.chl\ (2 traces secondaires) (ID = 1588798)
15:22: HKLM\software\classes\interface\{c6f2214e-0b54-45a9-b90d-7dd4ba45ed0b}\ (8 traces secondaires) (ID = 1626809)
15:22: HKLM\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler\ || incestuously (ID = 1652493)
15:22: Trouvé Adware: deluxecommunications
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\deluxecommunications\ (3 traces secondaires) (ID = 1681296)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\deluxecommunications\ (3 traces secondaires) (ID = 1681296)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\deluxecommunications\ (3 traces secondaires) (ID = 1681296)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\internet explorer\urlsearchhooks\ || {a8bd6820-6ed7-423e-9558-2d1486b0feea} (ID = 1681320)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\microsoft\internet explorer\urlsearchhooks\ || {a8bd6820-6ed7-423e-9558-2d1486b0feea} (ID = 1681320)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\internet explorer\urlsearchhooks\ || {a8bd6820-6ed7-423e-9558-2d1486b0feea} (ID = 1681320)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\windows\currentversion\run\ || deluxecommunications (ID = 1681338)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\microsoft\windows\currentversion\run\ || deluxecommunications (ID = 1681338)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\windows\currentversion\run\ || deluxecommunications (ID = 1681338)
15:22: Trouvé Adware: adperform
15:22: HKCR\typelib\{24723349-c5c0-44c2-837d-84250e6b2a12}\ (9 traces secondaires) (ID = 1701410)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\printview\ (13 traces secondaires) (ID = 1701420)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\printview\ (13 traces secondaires) (ID = 1701420)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\printview\ (13 traces secondaires) (ID = 1701420)
15:22: HKLM\software\classes\typelib\{24723349-c5c0-44c2-837d-84250e6b2a12}\ (9 traces secondaires) (ID = 1701527)
15:22: HKLM\software\microsoft\mssmgr\ (6 traces secondaires) (ID = 1776755)
15:22: Trouvé Adware: whenu searchbar/pricebandit
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1010\software\microsoft\windows\currentversion\ext\stats\{ba2325ed-f9eb-4830-8fce-0bc35b16969b}\ (4 traces secondaires) (ID = 1887336)
15:22: Trouvé Adware: coolwebsearch (cws)
15:22: HKU\S-1-5-21-3546841259-4120339405-2406389764-1017\software\microsoft\windows\currentversion\ext\stats\{2d2bee6e-3c9a-4d58-b9ec-458edb28d0f6}\ (6 traces secondaires) (ID = 1922744)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1007\software\microsoft\windows\currentversion\ext\stats\{2d2bee6e-3c9a-4d58-b9ec-458edb28d0f6}\ (6 traces secondaires) (ID = 1922744)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\windows\currentversion\ext\stats\{2d2bee6e-3c9a-4d58-b9ec-458edb28d0f6}\ (6 traces secondaires) (ID = 1922744)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\internet explorer\new windows\allow\ || netbios-wait.com (ID = 2126062)
15:22: HKU\WRSS_Profile_S-1-5-21-3546841259-4120339405-2406389764-1016\software\microsoft\internet explorer\new windows\allow\ || www.netbios-wait.com (ID = 2126063)
15:22: Analyse du Registre terminée, temps passé :00:00:22
15:22: Démarrage de l’analyse des cookies
15:22: Trouvé Spy Cookie: xiti cookie
15:22: yannick@xiti[1].txt (ID = 3718)
15:22: Trouvé Spy Cookie: 888 cookie
15:22: aurelie@888[2].txt (ID = 2020)
15:22: Trouvé Spy Cookie: hbmediapro cookie
15:22: aurelie@adopt.hbmediapro[2].txt (ID = 2768)
15:22: Trouvé Spy Cookie: directtrack cookie
15:22: aurelie@directtrack[1].txt (ID = 2528)
15:22: aurelie@mediastay.directtrack[2].txt (ID = 2528)
15:22: Trouvé Spy Cookie: server.iad.liveperson cookie
15:22: aurelie@server.iad.liveperson[1].txt (ID = 3342)
15:22: Trouvé Spy Cookie: zango cookie
15:22: aurelie@www.zango[1].txt (ID = 3761)
15:22: aurelie@xiti[1].txt (ID = 3718)
15:22: bis@888[2].txt (ID = 2020)
15:22: bis@adopt.hbmediapro[2].txt (ID = 2768)
15:22: Trouvé Spy Cookie: apmebf cookie
15:22: bis@apmebf[2].txt (ID = 2230)
15:22: Trouvé Spy Cookie: askmen cookie
15:22: bis@askmen[2].txt (ID = 2248)
15:22: Trouvé Spy Cookie: adbureau cookie
15:22: bis@devart.adbureau[1].txt (ID = 2060)
15:22: bis@directtrack[1].txt (ID = 2528)
15:22: Trouvé Spy Cookie: touchclarity cookie
15:22: bis@easyjet.touchclarity[1].txt (ID = 3566)
15:22: Trouvé Spy Cookie: redsheriff cookies
15:22: bis@imrworldwide[2].txt (ID = 2846)
15:22: bis@mediastay.directtrack[2].txt (ID = 2528)
15:22: Trouvé Spy Cookie: metriweb.be cookie
15:22: bis@metriweb[1].txt (ID = 2993)
15:22: bis@xiti[1].txt (ID = 3718)
15:22: Analyse des cookies terminée, temps passé : 00:00:08
15:22: Démarrage de l’analyse des fichiers
15:30: Analyse des fichiers terminée, temps passé : 00:07:11
15:30: Analyse complète terminée. Durée 00:15:02
15:30: Traces trouvées : 491
15:40: Processus de suppression lancé.
15:40: Mise en quarantaine de toutes les traces : altnet
15:40: Mise en quarantaine de toutes les traces : gain - common components
15:40: Mise en quarantaine de toutes les traces : instant access
15:40: Mise en quarantaine de toutes les traces : lopdotcom
15:40: Mise en quarantaine de toutes les traces : search200.com hijack
15:40: Mise en quarantaine de toutes les traces : topsearch
15:40: Mise en quarantaine de toutes les traces : 180search assistant/zango
15:40: Mise en quarantaine de toutes les traces : cydoor
15:40: Mise en quarantaine de toutes les traces : mediapipe
15:40: Mise en quarantaine de toutes les traces : seekmo search assistant
15:40: Mise en quarantaine de toutes les traces : maxifiles
15:40: Mise en quarantaine de toutes les traces : security2k hijacker
15:40: Mise en quarantaine de toutes les traces : trojan agent winlogonhook
15:40: Mise en quarantaine de toutes les traces : deluxecommunications
15:40: Mise en quarantaine de toutes les traces : adperform
15:40: Mise en quarantaine de toutes les traces : whenu searchbar/pricebandit
15:40: Mise en quarantaine de toutes les traces : coolwebsearch (cws)
15:40: Mise en quarantaine de toutes les traces : xiti cookie
15:40: Mise en quarantaine de toutes les traces : 888 cookie
15:40: Mise en quarantaine de toutes les traces : hbmediapro cookie
15:40: Mise en quarantaine de toutes les traces : directtrack cookie
15:40: Mise en quarantaine de toutes les traces : server.iad.liveperson cookie
15:40: Mise en quarantaine de toutes les traces : zango cookie
15:40: Mise en quarantaine de toutes les traces : apmebf cookie
15:40: Mise en quarantaine de toutes les traces : askmen cookie
15:40: Mise en quarantaine de toutes les traces : adbureau cookie
15:40: Mise en quarantaine de toutes les traces : touchclarity cookie
15:40: Mise en quarantaine de toutes les traces : redsheriff cookies
15:40: Mise en quarantaine de toutes les traces : metriweb.be cookie
15:41: Processus de suppression lancé. Durée 00:00:29
15:41: Suppression de la quarantaine lancée
15:41: Traitement : security2k hijacker
15:41: Traitement : mediapipe
15:41: Traitement : adbureau cookie
15:41: Traitement : server.iad.liveperson cookie
15:41: Traitement : apmebf cookie
15:41: Traitement : adperform
15:41: Traitement : coolwebsearch (cws)
15:41: Traitement : hbmediapro cookie
15:41: Traitement : 888 cookie
15:41: Traitement : askmen cookie
15:41: Traitement : directtrack cookie
15:41: Traitement : touchclarity cookie
15:41: Traitement : altnet
15:41: Traitement : 180search assistant/zango
15:41: Traitement : topsearch
15:41: Traitement : maxifiles
15:41: Traitement : gain - common components
15:41: Traitement : redsheriff cookies
15:41: Traitement : trojan agent winlogonhook
15:41: Traitement : metriweb.be cookie
15:41: Traitement : seekmo search assistant
15:41: Traitement : xiti cookie
15:41: Traitement : zango cookie
15:41: Suppression de la quarantaine terminée Durée 00:00:01
********
15:12: |··· Début de session, lundi 28 mai 2007 ···|
15:12: Spy Sweeper démarrée
15:13: Les définitions de logiciels espions ont été mises à jour.
15:15: |··· Fin de session, lundi 28 mai 2007 ···|
le voici ---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
non c'est bon merci beaucoup, maintenant j'utiliserai firefox avec adblock je peux supprimer avg, navilog et smitfaudrix et clean ainsi que hostXpert?(je grde ccleaner)?
salut
Sauf mention contraire, le contenu du blog et du forum est sous licence Creative Commons By-Sa. Vous avez le droit de le reproduire à condition de citer l'auteur, de faire un lien vers la page d'origine, et de partager vos travaux dérivés selon les mêmes conditions.
16 ans.
