Virus : winupgro.exe | Help svp. - Page 2

Résolu
Précédent
  • 1
  • 2
  1. zepiii Messages postés 2 Date d'inscription   Statut Membre
     
    PART 2 :

    2008-12-27 20:46:22 ----D---- C:\Program Files\Intel
    2008-12-27 20:45:03 ----D---- C:\Program Files\ATI Technologies
    2008-12-27 20:45:01 ----HD---- C:\Program Files\InstallShield Installation Information
    2008-12-27 20:44:43 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2008-12-27 20:42:31 ----A---- C:\WINDOWS\ntbtlog.txt
    2008-12-27 20:40:49 ----A---- C:\XP_Version.txt
    2008-12-27 20:40:34 ----AD---- C:\Documents and Settings\Zepiii\Application Data\gtopala
    2008-12-27 20:40:34 ----AD---- C:\Documents and Settings\Zepiii\Application Data\aignes
    2008-12-27 20:40:19 ----D---- C:\Documents and Settings\Zepiii\Application Data\Identities
    2008-12-27 20:39:37 ----RSHD---- C:\cmdcons
    2008-12-27 20:39:37 ----A---- C:\WINDOWS\UPGRADE.TXT
    2008-12-27 20:39:16 ----SD---- C:\WINDOWS\Downloaded Program Files
    2008-12-27 20:39:16 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\WinSxS
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Web
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\twain_32
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Temp
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\wins
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\wbem
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\usmt
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\spool
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\ShellExt
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\Setup
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\ras
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\PreInstall
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\oobe
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\npp
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\mui
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\inetsrv
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\IME
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\icsxml
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\ias
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\fr-fr
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\export
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\en
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\drivers
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\dhcp
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\config
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\3com_dmi
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\3076
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\2052
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1054
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1042
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1041
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1037
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1036
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1033
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1031
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1028
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32\1025
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system32
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\system
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\security
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Resources
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\repair
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Provisioning
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\PeerNet
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\pchealth
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Offline Web Pages
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Network Diagnostic
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\mui
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\msapps
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Media
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\java
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\inf
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\ime
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Help
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Fonts
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\ehome
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Driver Cache
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Debug
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Cursors
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Connection Wizard
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\Config
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\AppPatch
    2008-12-27 20:39:16 ----D---- C:\WINDOWS\addins
    2008-12-27 20:39:16 ----D---- C:\WINDOWS
    2008-12-27 20:31:54 ----AD---- C:\WINDOWS\i386
    2008-12-27 20:31:23 ----A---- C:\WINDOWS\system32\javaws.exe
    2008-12-27 20:31:23 ----A---- C:\WINDOWS\system32\javaw.exe
    2008-12-27 20:31:23 ----A---- C:\WINDOWS\system32\java.exe
    2008-12-27 20:31:09 ----D---- C:\Program Files\Java
    2008-12-27 20:31:09 ----D---- C:\Program Files\Fichiers communs\Java
    2008-12-27 20:31:03 ----D---- C:\Documents and Settings\Zepiii\Application Data\Sun
    2008-12-27 20:31:00 ----D---- C:\Documents and Settings\Zepiii\Application Data\Macromedia
    2008-12-27 20:30:58 ----A---- C:\WINDOWS\system32\NPSWF32_FlashUtil.exe
    2008-12-27 20:30:58 ----A---- C:\WINDOWS\system32\NPSWF32.dll
    2008-12-27 20:30:29 ----D---- C:\WINDOWS\system32\DRM
    2008-12-27 20:29:56 ----D---- C:\Program Files\WMV9_VCM
    2008-12-27 20:29:53 ----N---- C:\WINDOWS\system32\spmsg.dll
    2008-12-27 20:29:34 ----D---- C:\Program Files\Windows Media Connect 2
    2008-12-27 20:28:42 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2008-12-27 20:28:22 ----D---- C:\Program Files\Microsoft Office
    2008-12-27 20:27:26 ----D---- C:\WINDOWS\system32\windowspowershell
    2008-12-27 20:25:31 ----D---- C:\WINDOWS\system32\URTTEMP
    2008-12-27 20:19:13 ----RSD---- C:\WINDOWS\assembly
    2008-12-27 20:18:53 ----D---- C:\WINDOWS\Microsoft.NET
    2008-12-27 20:17:29 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2008-12-27 20:17:29 ----A---- C:\WINDOWS\system32\wups2.dll
    2008-12-27 20:17:01 ----A---- C:\WINDOWS\system32\MRT.exe
    2008-12-27 20:16:55 ----D---- C:\Program Files\MSXML 4.0
    2008-12-27 20:16:32 ----N---- C:\WINDOWS\system32\WinAudit.exe
    2008-12-27 20:16:32 ----N---- C:\WINDOWS\system32\TCPOptimizer203fr.exe
    2008-12-27 20:16:32 ----A---- C:\WINDOWS\system32\TweakUi.exe
    2008-12-27 20:16:32 ----A---- C:\WINDOWS\system32\TransBar.exe
    2008-12-27 20:16:32 ----A---- C:\WINDOWS\system32\SuperFinder.exe
    2008-12-27 20:16:32 ----A---- C:\WINDOWS\system32\Starter.exe
    2008-12-27 20:16:32 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
    2008-12-27 20:16:31 ----N---- C:\WINDOWS\system32\Siw.exe
    2008-12-27 20:16:31 ----N---- C:\WINDOWS\system32\Ntest.exe
    2008-12-27 20:16:31 ----N---- C:\WINDOWS\system32\MGADiag.exe
    2008-12-27 20:16:31 ----N---- C:\WINDOWS\system32\IcoSauve.exe
    2008-12-27 20:16:31 ----A---- C:\WINDOWS\system32\shman.exe
    2008-12-27 20:16:31 ----A---- C:\WINDOWS\system32\SendToRemove.exe
    2008-12-27 20:16:31 ----A---- C:\WINDOWS\system32\SendToAdd.exe
    2008-12-27 20:16:31 ----A---- C:\WINDOWS\system32\Refresh.exe
    2008-12-27 20:16:31 ----A---- C:\WINDOWS\system32\pagedfrg.exe
    2008-12-27 20:16:30 ----N---- C:\WINDOWS\system32\deadlink.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\WNASPI32.DLL
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\faview.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\Extinction.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\Enregistrer sous Test.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\Enregistrer sous Editeur.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\aspichk.exe
    2008-12-27 20:16:30 ----A---- C:\WINDOWS\system32\Aide.exe
    2008-12-27 20:16:12 ----A---- C:\WINDOWS\system32\Starter.exe.manifest
    2008-12-27 20:16:05 ----N---- C:\WINDOWS\system32\WinAudit.ini
    2008-12-27 20:16:05 ----N---- C:\WINDOWS\system32\oeminfo.ini
    2008-12-27 20:16:05 ----A---- C:\WINDOWS\system32\TransBar.ini
    2008-12-27 20:16:05 ----A---- C:\WINDOWS\system32\Starter.ini
    2008-12-27 20:16:05 ----A---- C:\WINDOWS\system32\shman_lng.ini
    2008-12-27 20:16:05 ----A---- C:\WINDOWS\system32\faview_lng.ini
    2008-12-27 20:16:02 ----N---- C:\WINDOWS\system32\desktop.ini_create.cmd
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\SuperFinder.lng
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\lang
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\Images
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\FoxitReader
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\Data
    2008-12-27 20:16:02 ----D---- C:\WINDOWS\system32\Aide
    2008-12-27 20:15:59 ----D---- C:\WINDOWS\pmcsnap
    2008-12-27 20:15:50 ----D---- C:\Program Files\WSTARTUP
    2008-12-27 20:15:49 ----D---- C:\Program Files\UTILS
    2008-12-27 20:15:49 ----D---- C:\Program Files\JEUX
    2008-12-27 20:15:06 ----ASH---- C:\Documents and Settings\Zepiii\Application Data\desktop.ini
    2008-12-27 20:15:05 ----SD---- C:\Documents and Settings\Zepiii\Application Data\Microsoft
    2008-12-27 20:14:00 ----D---- C:\WINDOWS\SoftwareDistribution
    2008-12-27 20:13:58 ----D---- C:\WINDOWS\Prefetch
    2008-12-27 20:13:49 ----SD---- C:\WINDOWS\system32\Microsoft
    2008-12-27 20:13:49 ----A---- C:\WINDOWS\SchedLgU.Txt
    2008-12-27 20:08:35 ----D---- C:\WINDOWS\system32\xircom
    2008-12-27 20:08:35 ----D---- C:\WINDOWS\srchasst
    2008-12-27 20:08:35 ----D---- C:\WINDOWS\msagent
    2008-12-27 20:08:35 ----D---- C:\Program Files\xerox
    2008-12-27 20:08:35 ----D---- C:\Program Files\microsoft frontpage
    2008-12-27 20:08:07 ----N---- C:\WINDOWS\system32\tzchange.exe
    2008-12-27 20:07:47 ----A---- C:\WINDOWS\control.ini
    2008-12-27 20:07:34 ----A---- C:\WINDOWS\OEWABLog.txt
    2008-12-27 20:07:29 ----A---- C:\WINDOWS\system32\mapi32.dll
    2008-12-27 20:06:15 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2008-12-27 20:06:09 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2008-12-27 20:06:02 ----HD---- C:\Program Files\WindowsUpdate
    2008-12-27 20:05:16 ----A---- C:\WINDOWS\system32\atrace.dll
    2008-12-27 20:05:15 ----A---- C:\WINDOWS\system32\desktop.ini
    2008-12-27 20:05:15 ----A---- C:\WINDOWS\desktop.ini
    2008-12-27 20:05:11 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2008-12-27 20:05:09 ----D---- C:\Program Files\Fichiers communs\Services
    2008-12-27 20:05:09 ----A---- C:\WINDOWS\system32\acctres.dll
    2008-12-27 20:05:05 ----SD---- C:\WINDOWS\Tasks
    2008-12-27 20:05:05 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2008-12-27 20:05:04 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2008-12-27 20:05:00 ----D---- C:\WINDOWS\system32\Macromed
    2008-12-27 20:04:57 ----A---- C:\WINDOWS\system32\wuweb.dll
    2008-12-27 20:04:57 ----A---- C:\WINDOWS\system32\wucltui.dll
    2008-12-27 20:04:57 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2008-12-27 20:04:57 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2008-12-27 20:04:56 ----A---- C:\WINDOWS\system32\wups.dll
    2008-12-27 20:04:56 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2008-12-27 20:04:56 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2008-12-27 20:04:56 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2008-12-27 20:04:56 ----A---- C:\WINDOWS\system32\wuapi.dll
    2008-12-27 20:04:55 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2008-12-27 20:04:55 ----A---- C:\WINDOWS\system32\qmgr.dll
    2008-12-27 20:04:55 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2008-12-27 20:04:55 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2008-12-27 20:04:50 ----D---- C:\Program Files\Movie Maker
    2008-12-27 20:04:45 ----A---- C:\WINDOWS\system32\safrslv.dll
    2008-12-27 20:04:45 ----A---- C:\WINDOWS\system32\safrdm.dll
    2008-12-27 20:04:45 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2008-12-27 20:04:45 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2008-12-27 20:04:39 ----A---- C:\WINDOWS\system32\fltMc.exe
    2008-12-27 20:04:39 ----A---- C:\WINDOWS\system32\fltlib.dll
    2008-12-27 20:04:38 ----D---- C:\WINDOWS\system32\Restore
    2008-12-27 20:04:38 ----A---- C:\WINDOWS\system32\srsvc.dll
    2008-12-27 20:04:38 ----A---- C:\WINDOWS\system32\srrstr.dll
    2008-12-27 20:04:37 ----A---- C:\WINDOWS\system32\srclient.dll
    2008-12-27 20:04:37 ----A---- C:\WINDOWS\system32\ils.dll
    2008-12-27 20:04:36 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2008-12-27 20:04:36 ----A---- C:\WINDOWS\system32\msconf.dll
    2008-12-27 20:04:36 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2008-12-27 20:04:36 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2008-12-27 20:04:36 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2008-12-27 20:04:32 ----D---- C:\Program Files\NetMeeting
    2008-12-27 20:04:32 ----A---- C:\WINDOWS\system32\msoert2.dll
    2008-12-27 20:04:32 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2008-12-27 20:04:30 ----A---- C:\WINDOWS\system32\inetres.dll
    2008-12-27 20:04:30 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2008-12-27 20:04:28 ----D---- C:\Program Files\Outlook Express
    2008-12-27 20:04:27 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2008-12-27 20:04:27 ----A---- C:\WINDOWS\system32\mstinit.exe
    2008-12-27 20:04:27 ----A---- C:\WINDOWS\system32\mstask.dll
    2008-12-27 20:04:27 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2008-12-27 20:04:26 ----A---- C:\WINDOWS\system32\isign32.dll
    2008-12-27 20:04:26 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2008-12-27 20:04:26 ----A---- C:\WINDOWS\system32\icwdial.dll
    2008-12-27 20:04:19 ----D---- C:\Program Files\Fichiers communs\System
    2008-12-27 20:04:15 ----D---- C:\Program Files\Internet Explorer
    2008-12-27 20:03:47 ----HD---- C:\Program Files\Uninstall Information
    2008-12-27 20:03:27 ----D---- C:\Program Files\ComPlus Applications
    2008-12-27 20:03:22 ----A---- C:\WINDOWS\vbaddin.ini
    2008-12-27 20:03:22 ----A---- C:\WINDOWS\vb.ini
    2008-12-27 20:03:13 ----D---- C:\WINDOWS\Registration
    2008-12-27 20:02:59 ----D---- C:\Program Files\Windows Media Player
    2008-12-27 20:02:44 ----D---- C:\Program Files\MSN Gaming Zone
    2008-12-27 20:02:44 ----A---- C:\WINDOWS\system32\write.exe
    2008-12-27 20:02:40 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2008-12-27 20:02:40 ----A---- C:\WINDOWS\system32\hticons.dll
    2008-12-27 20:02:39 ----A---- C:\WINDOWS\system32\avwav.dll
    2008-12-27 20:02:39 ----A---- C:\WINDOWS\system32\avtapi.dll
    2008-12-27 20:02:39 ----A---- C:\WINDOWS\system32\avmeter.dll
    2008-12-27 20:02:38 ----A---- C:\WINDOWS\system32\winchat.exe
    2008-12-27 20:02:36 ----A---- C:\WINDOWS\system32\getuname.dll
    2008-12-27 20:02:35 ----A---- C:\WINDOWS\system32\charmap.exe
    2008-12-27 20:02:35 ----A---- C:\WINDOWS\system32\calc.exe
    2008-12-27 20:02:34 ----A---- C:\WINDOWS\system32\winmine.exe
    2008-12-27 20:02:34 ----A---- C:\WINDOWS\system32\sol.exe
    2008-12-27 20:02:34 ----A---- C:\WINDOWS\system32\mshearts.exe
    2008-12-27 20:02:34 ----A---- C:\WINDOWS\system32\freecell.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\tslabels.ini
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\tskill.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\tscon.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\shadow.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2008-12-27 20:02:33 ----A---- C:\WINDOWS\system32\reset.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\regini.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\msg.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\logoff.exe
    2008-12-27 20:02:32 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2008-12-27 20:02:31 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2008-12-27 20:02:31 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\stclient.dll
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\mtxex.dll
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\comsnap.dll
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\comrepl.dll
    2008-12-27 20:02:30 ----A---- C:\WINDOWS\system32\comaddin.dll
    2008-12-27 20:02:23 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2008-12-27 20:02:22 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2008-12-27 20:02:22 ----A---- C:\WINDOWS\system32\mplay32.exe
    2008-12-27 20:02:22 ----A---- C:\WINDOWS\system32\accwiz.exe
    2008-12-27 20:02:21 ----D---- C:\Program Files\Windows NT
    2008-12-27 20:02:21 ----A---- C:\WINDOWS\system32\mspaint.exe
    2008-12-27 20:02:21 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2008-12-27 20:02:20 ----A---- C:\WINDOWS\system32\spider.exe
    2008-12-27 20:02:20 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2008-12-27 20:02:19 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\remotepg.dll
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\rdshost.exe
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\rdchost.dll
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\mstscax.dll
    2008-12-27 20:02:18 ----A---- C:\WINDOWS\system32\mstsc.exe
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\termsrv.dll
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\qprocess.exe
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\icaapi.dll
    2008-12-27 20:02:17 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2008-12-27 20:02:16 ----D---- C:\WINDOWS\system32\MsDtc
    2008-12-27 20:02:16 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2008-12-27 20:02:16 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2008-12-27 20:02:16 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2008-12-27 20:02:15 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2008-12-27 20:02:15 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2008-12-27 20:02:15 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2008-12-27 20:02:15 ----A---- C:\WINDOWS\system32\msdtc.exe
    2008-12-27 20:02:14 ----D---- C:\WINDOWS\system32\Com
    2008-12-27 20:02:14 ----A---- C:\WINDOWS\system32\colbact.dll
    2008-12-27 20:02:14 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2008-12-27 20:02:14 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2008-12-27 20:02:13 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2008-12-27 20:02:13 ----A---- C:\WINDOWS\system32\catsrv.dll
    2008-12-27 20:02:12 ----A---- C:\WINDOWS\system32\comuid.dll
    2008-12-27 20:02:12 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2008-12-27 20:02:12 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2008-12-27 20:02:03 ----A---- C:\WINDOWS\system32\servdeps.dll
    2008-12-27 20:02:03 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2008-12-27 20:02:03 ----A---- C:\WINDOWS\system32\licwmi.dll
    2008-12-27 20:02:03 ----A---- C:\WINDOWS\system32\cmprops.dll

    ======List of files/folders modified in the last 1 months======

    2008-12-27 22:54:53 ----A---- C:\WINDOWS\win.ini
    2008-12-27 20:58:41 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-19 40320]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
    R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.2.0.3; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-12-27 17801]
    R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [1999-09-10 25244]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
    R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-17 13059]
    R2 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2008-08-04 11904]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-12-13 60800]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-28 1132544]
    R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2003-05-22 175360]
    R3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camcaud.sys [2004-06-25 34048]
    R3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camchal.sys [2004-06-25 276480]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
    R3 DKbFltr;Dritek HotKey Keyboard Filter Driver; C:\WINDOWS\System32\Drivers\DKbFltr.sys [2004-12-08 16896]
    R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-01-25 1038208]
    R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2005-01-25 207616]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-12-13 61824]
    R3 NSCIRDA;Pilote de périphérique infrarouge NSC; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2004-08-04 28672]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-10-08 185824]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    R3 w29n51;Pilote de carte de connexion réseau Intel(R) PRO/Wireless 2200BG pour Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2008-01-07 2216064]
    R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-01-25 703616]
    S3 ai3qezjg;ai3qezjg; C:\WINDOWS\system32\drivers\ai3qezjg.sys []
    S3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    S3 BthEnum;Pilote de bloc de demande Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
    S3 BTHMODEM;Pilote de communication série Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2004-08-03 38016]
    S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
    S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2004-08-19 274944]
    S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
    S3 EpmShd;Acer EPM System Hardware Driver; \??\C:\WINDOWS\system32\Drivers\epm-shd.sys []
    S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
    S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2005-10-21 12800]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
    S4 mchInjDrv;mchInjDrv; \??\C:\DOCUME~1\Zepiii\LOCALS~1\Temp\mc21.tmp []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
    R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-08-20 860160]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
    R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Fichiers communs\Intel\WirelessCommon\RegSrvc.exe [2008-08-20 466944]
    R2 S24EventMonitor;Intel® PROSet/Wireless WiFi Service; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [2008-08-20 905216]
    S2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2009-01-06 611664]
    S2 ACS;Service de configuration Atheros; C:\WINDOWS\system32\acs.exe [2009-01-06 36864]
    S2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2009-01-06 68865]
    S2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2009-01-06 151297]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-28 364544]

    -----------------EOF-----------------
    0
  2. V-X
     
    Re,

    ▶ Relance hijack et clique sur "Do a system scan only"

    ▶ Ensuite recherche ces lignes et coches les cases

    R3 - Default URLSearchHook is missing

    ▶ Ensuite clique sur "Fix checked"

    xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

    Réinstalle antivir et fait un scan en incluant la recherche de rootkits

    ▶ Double-clique sur l'icône d'Antivir (Parapluie) dans la barre des tâches.

    ▶ Dans Antivir, choisis Outils puis Configuration.

    ▶ Coche Mode Expert et coche Rech. Rootkit au dém. de la recherche à droite dans Autres réglages.
    0
  3. zepiii Messages postés 2 Date d'inscription   Statut Membre
     
    Voilà, tout à l'air de fonctionner, sauf rocket dock, mais bizarrement l'antivirus a détecté une infection dans l'exe alors je vais le retélécharger autre part... je peux ? :)

    Voici le scan
    Avira AntiVir Personal

    Report file date: mercredi 7 janvier 2009 13:22

    Scanning for 1156659 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Boot mode: Normally booted
    Username: SYSTEM
    Computer name: ZEP

    Version information:
    BUILD.DAT : 8.2.0.337 16934 Bytes 18/11/2008 13:05:00
    AVSCAN.EXE : 8.1.4.10 315649 Bytes 18/11/2008 08:21:26
    AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
    LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
    LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
    ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36
    ANTIVIR1.VDF : 7.1.1.33 1705984 Bytes 24/12/2008 12:21:24
    ANTIVIR2.VDF : 7.1.1.60 318976 Bytes 2/01/2009 12:21:26
    ANTIVIR3.VDF : 7.1.1.77 202752 Bytes 7/01/2009 12:21:27
    Engineversion : 8.2.0.45
    AEVDF.DLL : 8.1.0.6 102772 Bytes 14/10/2008 10:05:56
    AESCRIPT.DLL : 8.1.1.19 336252 Bytes 7/01/2009 12:21:32
    AESCN.DLL : 8.1.1.5 123251 Bytes 7/11/2008 15:06:41
    AERDL.DLL : 8.1.1.3 438645 Bytes 4/11/2008 13:58:38
    AEPACK.DLL : 8.1.3.4 393591 Bytes 11/11/2008 09:41:39
    AEOFFICE.DLL : 8.1.0.33 196987 Bytes 7/01/2009 12:21:31
    AEHEUR.DLL : 8.1.0.75 1524087 Bytes 7/01/2009 12:21:31
    AEHELP.DLL : 8.1.2.0 119159 Bytes 7/01/2009 12:21:29
    AEGEN.DLL : 8.1.1.8 323956 Bytes 7/01/2009 12:21:28
    AEEMU.DLL : 8.1.0.9 393588 Bytes 14/10/2008 10:05:56
    AECORE.DLL : 8.1.5.2 172405 Bytes 7/01/2009 12:21:27
    AEBB.DLL : 8.1.0.3 53618 Bytes 14/10/2008 10:05:56
    AVWINLL.DLL : 1.0.0.12 15105 Bytes 9/07/2008 08:40:05
    AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
    AVREP.DLL : 8.0.0.2 98344 Bytes 31/07/2008 12:02:15
    AVREG.DLL : 8.0.0.1 33537 Bytes 9/05/2008 11:26:40
    AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
    AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
    SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
    NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
    RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
    RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: C:\Program Files\Avira\AntiVir PersonalEdition Classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: C:, D:,
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: on
    Scan all files...................: Intelligent file selection
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Macro heuristic..................: on
    File heuristic...................: medium

    Start of the scan: mercredi 7 janvier 2009 13:22

    Starting search for hidden objects.
    '37358' objects were checked, '0' hidden objects were found.

    The scan of running processes will be started
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'firefox.exe' - '1' Module(s) have been scanned
    Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
    Scan process 'setup.exe' - '1' Module(s) have been scanned
    Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
    Scan process 'antivir_workstation_winu_en_h.exe' - '1' Module(s) have been scanned
    Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
    Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
    Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
    Scan process 'alg.exe' - '1' Module(s) have been scanned
    Scan process 'IcoSauve.exe' - '1' Module(s) have been scanned
    Scan process 'rapimgr.exe' - '1' Module(s) have been scanned
    Scan process 'SuperCopier2.exe' - '1' Module(s) have been scanned
    Scan process 'wcescomm.exe' - '1' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'iFrmewrk.exe' - '1' Module(s) have been scanned
    Scan process 'ZCfgSvc.exe' - '1' Module(s) have been scanned
    Scan process 'ACU.exe' - '1' Module(s) have been scanned
    Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
    Scan process 'SynTPLpr.exe' - '1' Module(s) have been scanned
    Scan process 'QtZgAcer.EXE' - '1' Module(s) have been scanned
    Scan process 'wlanutil.exe' - '1' Module(s) have been scanned
    Scan process 'atiptaxx.exe' - '1' Module(s) have been scanned
    Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned
    Scan process 'EvtEng.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    46 processes with 46 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [INFO] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [INFO] No virus was found!
    Boot sector 'D:\'
    [INFO] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '59' files ).

    Starting the file scan:

    Begin scan in 'C:\'
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\Documents and Settings\Zepiii\Bureau\FindyKill.exe
    [DETECTION] Contains recognition pattern of the DR/Tool.PsKill.K.40 dropper
    [NOTE] The file was moved to '49d29f5f.qua'!
    C:\Program Files\eMule\Incoming\Virus is here.zip
    [0] Archive type: ZIP
    --> install_patch.exe
    [DETECTION] Is the TR/Dldr.Bagle.akq Trojan
    [NOTE] The file was moved to '49d69ff0.qua'!
    C:\Program Files\RocketDock\RocketDock.exe
    [DETECTION] Is the TR/Dldr.Bagle.akq Trojan
    [NOTE] The file was moved to '49c7a0a6.qua'!
    C:\WINDOWS\system32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'D:\' <Données>

    End of the scan: mercredi 7 janvier 2009 14:07
    Used time: 44:34 Minute(s)

    The scan has been done completely.

    5243 Scanning directories
    246369 Files were scanned
    3 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    3 files were moved to quarantine
    0 files were renamed
    2 Files cannot be scanned
    246364 Files not concerned
    9819 Archives were scanned
    2 Warnings
    3 Notes
    37358 Objects were scanned with rootkit scan
    0 Hidden objects were found

    Si tout ok !!
    MERCI POUR TOUT :)
    Bonne journée
    0
  4. V-X
     
    Re,

    Tu supprime la quarantaine d'antivir et tu refait un scan complet d'antivir pour confirmer la suppression.

    merci
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. zepiii Messages postés 2 Date d'inscription   Statut Membre
     
    Ca a l'air clean !!

    Avira AntiVir Personal
    Report file date: mercredi 7 janvier 2009 15:19

    Scanning for 1156851 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Boot mode: Normally booted
    Username: SYSTEM
    Computer name: ZEP

    Version information:
    BUILD.DAT : 8.2.0.337 16934 Bytes 18/11/2008 13:05:00
    AVSCAN.EXE : 8.1.4.10 315649 Bytes 18/11/2008 08:21:26
    AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
    LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
    LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
    ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36
    ANTIVIR1.VDF : 7.1.1.33 1705984 Bytes 24/12/2008 12:21:24
    ANTIVIR2.VDF : 7.1.1.60 318976 Bytes 2/01/2009 12:21:26
    ANTIVIR3.VDF : 7.1.1.78 205824 Bytes 7/01/2009 13:40:23
    Engineversion : 8.2.0.45
    AEVDF.DLL : 8.1.0.6 102772 Bytes 14/10/2008 10:05:56
    AESCRIPT.DLL : 8.1.1.19 336252 Bytes 7/01/2009 12:21:32
    AESCN.DLL : 8.1.1.5 123251 Bytes 7/11/2008 15:06:41
    AERDL.DLL : 8.1.1.3 438645 Bytes 4/11/2008 13:58:38
    AEPACK.DLL : 8.1.3.4 393591 Bytes 11/11/2008 09:41:39
    AEOFFICE.DLL : 8.1.0.33 196987 Bytes 7/01/2009 12:21:31
    AEHEUR.DLL : 8.1.0.75 1524087 Bytes 7/01/2009 12:21:31
    AEHELP.DLL : 8.1.2.0 119159 Bytes 7/01/2009 12:21:29
    AEGEN.DLL : 8.1.1.8 323956 Bytes 7/01/2009 12:21:28
    AEEMU.DLL : 8.1.0.9 393588 Bytes 14/10/2008 10:05:56
    AECORE.DLL : 8.1.5.2 172405 Bytes 7/01/2009 12:21:27
    AEBB.DLL : 8.1.0.3 53618 Bytes 14/10/2008 10:05:56
    AVWINLL.DLL : 1.0.0.12 15105 Bytes 9/07/2008 08:40:05
    AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
    AVREP.DLL : 8.0.0.2 98344 Bytes 31/07/2008 12:02:15
    AVREG.DLL : 8.0.0.1 33537 Bytes 9/05/2008 11:26:40
    AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
    AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
    SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
    NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
    RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
    RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: C:\Program Files\Avira\AntiVir PersonalEdition Classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: C:, D:,
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: on
    Scan all files...................: Intelligent file selection
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Macro heuristic..................: on
    File heuristic...................: medium

    Start of the scan: mercredi 7 janvier 2009 15:19

    Starting search for hidden objects.
    '37605' objects were checked, '0' hidden objects were found.

    The scan of running processes will be started
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'MediaMonkey.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'firefox.exe' - '1' Module(s) have been scanned
    Scan process 'wlcomm.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
    Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
    Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
    Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
    Scan process 'alg.exe' - '1' Module(s) have been scanned
    Scan process 'IcoSauve.exe' - '1' Module(s) have been scanned
    Scan process 'rapimgr.exe' - '1' Module(s) have been scanned
    Scan process 'SuperCopier2.exe' - '1' Module(s) have been scanned
    Scan process 'wcescomm.exe' - '1' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'iFrmewrk.exe' - '1' Module(s) have been scanned
    Scan process 'ZCfgSvc.exe' - '1' Module(s) have been scanned
    Scan process 'ACU.exe' - '1' Module(s) have been scanned
    Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
    Scan process 'SynTPLpr.exe' - '1' Module(s) have been scanned
    Scan process 'QtZgAcer.EXE' - '1' Module(s) have been scanned
    Scan process 'wlanutil.exe' - '1' Module(s) have been scanned
    Scan process 'atiptaxx.exe' - '1' Module(s) have been scanned
    Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned
    Scan process 'EvtEng.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    46 processes with 46 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [INFO] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [INFO] No virus was found!
    Boot sector 'D:\'
    [INFO] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '59' files ).

    Starting the file scan:

    Begin scan in 'C:\'
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\WINDOWS\system32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'D:\' <Données>

    End of the scan: mercredi 7 janvier 2009 15:54
    Used time: 35:39 Minute(s)

    The scan has been done completely.

    5247 Scanning directories
    246671 Files were scanned
    0 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    0 files were moved to quarantine
    0 files were renamed
    2 Files cannot be scanned
    246669 Files not concerned
    9843 Archives were scanned
    2 Warnings
    0 Notes
    37605 Objects were scanned with rootkit scan
    0 Hidden objects were found

    UN ENORME MERCI EN TOUT CAS !!! BONNE JOURNEE
    0
  7. V-X
     
    Re,

    Télécharge toolscleaner sur ton Bureau :

    toolscleaner

    * Double-clique sur ToolsCleaner2.exe et laisse le travailler

    * Clique sur Recherche et laisse le scan se terminer.

    * Clique sur Suppression pour finaliser.

    * Tu peux, si tu le souhaites, te servir des Options facultatives.

    * Clique sur Quitter, pour que le rapport puisse se créer.

    * Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\)...colle le dans ta réponse
    xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    Désactive et réactive la Restauration du système :

    1 Dans la barre des tâches de Windows, clique sur Démarrer.

    2 Clique avec le bouton droit de la souris sur Poste de travail puis clique sur Propriétés.

    3 Dans l'onglet Restauration du système, coche "Désactiver la Restauration du système"

    4 Clique sur Appliquer.

    5 Ensuite décoche "Désactiver la restauration du systeme"

    6 clique sur appliquer puis ok

    7 vas créer un point de restauration dans accessoires----outils systeme----restauration du systeme.

    Comment mettre en résolu le topic
    xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    ▶ Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
    CCLEANER

    ▶ Lance-le. Va dans "Options" puis "Avancé",

    ▶ Tu décoches la case "Effacer uniquement les fichiers etc...".

    ▶ Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage.

    ▶ Tu vas dans "Registre", tu fais "Chercher des erreurs".

    Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.

    ▶ Un tuto ( aide )
    xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    Des informations intéressantes pour toi et ton PC :

    Conserve malwarebyte et CCLEANER et fait des scans régukliers avec malwarebyte en mode normal et en mode sans échec.

    Nettoie ton PC avec CCLEANER toutes les semaines suit les information donner précèdement.

    ▶ Comportement à adopter avec son PC :ici
    et pourquoi ( exemple ) :ici

    ▶ Surveillance :
    Effectue des scan réguliers de surveillance (une fois tous les 15 jours, par exemple) avec ton antivirus puis avec ton anti-spyware (après les avoir mis à jour bien sur !) et supprime ce qu'ils peuvent trouver (où mets en quarantaine, en pensant à la vider ultérieurement).

    ▶ Pourquoi ? Pour éviter de se retrouver dans ce genre de situation ( peu commune mais ...) :
    ->ici

    =============================================================

    => Il faut mettre a jour la console Java régulièrement aussi :

    Pourquoi

    Donc pour se faire, rends toi ici et télécharge la dernière version (si ta version actuelle n'est pas à jour) ou ici
    Après avoir installé la dernière version, désinstalle les anciennes versions (de Java) afin d’éliminer les failles de sécurité présentes dans ces anciennes versions.
    via Démarrer / Paramètres / Panneau de config / et dans Ajout/Suppression de programmes navigue jusqu'aux anciennes versions de la console Java qui s'y trouvent, puis clique sur « Supprimer », suis les invites de commandes dans la boite de dialogue qui va s'ouvrir afin d'amener la désinstallation à son terme.
    Fais cela pour chacune d'elles, une à une, fais redémarrer ton PC quand cela te sera demandé .
    Retourne ensuite chez Java ci-dessus et clique sur le bouton "Vérifier l'installation" pour t'assurer que tout est en ordre.

    =============================================================

    ▶ Afin d’éviter les autres failles de sécurité des différents programmes présents sur ton PC :

    Vérifie tes mises à jours des différents softs régulièrement ici et mets à jour ce qui ne l’est pas. ici
    Tutoriel
    -Autre possibilité, t'abonner gratuitement a "la lettre hebdomadaire de secuser.com" ici a gauche en bas de page.

    ===========================================================

    ▶ teste l'efficacité de ton pare-feu ici ( à titre indicatif ):
    ici

    ▶ tests firewall: ici

    ▶ Un complément au pare-feu pour fermer les ports risqués (dangereux, s’ils restent ouverts) :

    ZebProtect (application ne nécessitant pas d’installation à lancer et paramétrer une unique fois) ici

    Tutoriel

    ================================================================
    ▶ Pour une meilleur sécurité lorsque tu surfes , je te conseille d'utiliser FireFox :
    télécharge le ici -> firefox firefox

    ( Attention : toujours garder IE sur son PC ! Il est indispensable pour les mises à jour de ton système ainsi que pour pas mal de choses, comme les scan d'antivirus en ligne, ect... )

    Tutorial pour sécuriser Firefox

    =================================================================
    Rappel sur les principales causes d'infection :

    ▶ L'utilisation de cracks ou keygens est à proscrire, de même que le surf sur les sites de téléchargement de ceux-ci :

    Les dangers des cracks

    ▶ Le crack dans toute sa splendeur, journal d'une infection attendue :
    ici

    ▶ Autres exemples en image , où comment s'infiltre une infection par un pseudo crack :
    ici

    ▶ Le P2P ( l'utilisation de logiciels comme eMule, Sharazaa, LimeWire, Bit torrent):

    Les conséquences du P2P

    ▶ Pourquoi éviter le P2P :
    > ici
    > et ici
    > et la

    ▶ Faire attention avec les ActiveX :
    ici
    et comment :


    ▶ Prévention sur deux autres types d'infection d'actualité :

    ▶ MSN prévention :
    ici
    -> autre danger grandissant , le " phishing " (= hameçonnage ) :
    ici

    ▶ Infection par supports amovibles (clefs usb, flash, DD externes ..) :
    ici
    ici

    =================================================================
    ▶ Prévention & Sécurité sur internet

    projet anti-malware
    0
  8. zepiii Messages postés 2 Date d'inscription   Statut Membre
     
    Voila :)

    [ Rapport ToolsCleaner version 2.3.0 (par A.Rothstein & dj QUIOU) ]

    -->- Recherche:

    C:\TB.txt: trouvé !
    C:\FindyKill.txt: trouvé !
    C:\Toolbar SD: trouvé !
    C:\Rsit: trouvé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\HijackThis.exe: trouvé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\ToolBarSD.exe: trouvé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\hijackthis.log: trouvé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\Rsit.exe: trouvé !
    C:\Documents and Settings\Zepiii\Menu Démarrer\Programmes\FindyKill: trouvé !
    C:\Program Files\FindyKill: trouvé !

    ---------------------------------
    -->- Suppression:

    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\HijackThis.exe: supprimé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\ToolBarSD.exe: supprimé !
    C:\TB.txt: supprimé !
    C:\FindyKill.txt: supprimé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\hijackthis.log: supprimé !
    C:\Documents and Settings\Zepiii\Bureau\SAVE MY PC\Rsit.exe: supprimé !
    C:\Toolbar SD: supprimé !
    C:\Rsit: supprimé !
    C:\Documents and Settings\Zepiii\Menu Démarrer\Programmes\FindyKill: supprimé !
    C:\Program Files\FindyKill: supprimé !

    Corbeille vidée!
    Fichiers temporaires nettoyés !
    Sauvegarde du registre crée !

    Encore un grand merci !!
    0
Précédent
  • 1
  • 2