Virus - Page 2

Précédent
  • 1
  • 2
Réponse 21 / 34
sim123
 
-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.40GHz )
BIOS : BIOS Date: 02/23/05 14:12:59 Ver: 08.00.10
USER : Ludger ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090226-0] 4.8.1335 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:154 Go)
D:\ (CD or DVD)
F:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 2009-02-26|19:50 )
C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll

-----------\\ SUPPRESSION

Echec ! - C:\Program Files\AskSBar\bar
Echec ! - C:\Program Files\AskSBar\SrchAstt
Echec ! - C:\Program Files\AskSBar\bar\1.bin
Echec ! - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
Echec ! - C:\Program Files\AskSBar\SrchAstt\1.bin
Echec ! - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
Supprime! - C:\Program Files\BitLord\BitLord.xml
Supprime! - C:\Program Files\BitLord\Downloads
Supprime! - C:\Program Files\BitLord\Downloads.xml
Supprime! - C:\Program Files\BitLord\lang
Supprime! - C:\Program Files\BitLord\rules
Supprime! - C:\Program Files\BitLord\Torrents
Supprime! - C:\Program Files\VMNToolbar\Cache
Supprime! - C:\Program Files\VMNToolbar\install.ico
Supprime! - C:\Program Files\VMNToolbar\toolbar.ini
Supprime! - C:\Program Files\VMNToolbar\uninstall.exe
Supprime! - C:\Program Files\VMNToolbar\vmntoolbar.dll
Supprime! - C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll
Echec ! - C:\Program Files\AskSBar
Supprime! - C:\Program Files\BitLord
Supprime! - C:\Program Files\VMNToolbar

-----------\\ DEUXIEME PASSAGE

Echec ! - C:\Program Files\AskSBar\bar
Echec ! - C:\Program Files\AskSBar\SrchAstt
Echec ! - C:\Program Files\AskSBar\bar\1.bin
Echec ! - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
Echec ! - C:\Program Files\AskSBar\SrchAstt\1.bin
Echec ! - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
Echec ! - C:\Program Files\AskSBar

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskSBar
C:\Program Files\AskSBar\bar
C:\Program Files\AskSBar\SrchAstt
C:\Program Files\AskSBar\bar\1.bin
C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
C:\Program Files\AskSBar\SrchAstt\1.bin
C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Ludger) - {28716814-17E3-4de9-920F-1EF201979A4B} => Antidote_Mozilla_3
(Ludger) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fsympatico.msn.ca%2fdefaultf.aspx%2f%3f"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Url"="https://www.microsoft.com/fr-fr/?ref=go"
"Url"="https://docs.microsoft.com/en-us/archive/blogs/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\bs.nfo
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\keygen.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\setup.msi
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\update.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional Keygen
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Important!.txt
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0404.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0409.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0411.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0412.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0804.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Abcpy.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\AcroPro.itw
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\AcroPro.msi
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Data1.cab
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\instmsiw.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\setup.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Setup.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional Keygen\pdx-ac7p.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack.rar
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack.sfv
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack\cracktro.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack\videodeLuxe.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com.zip
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Photoshop.CS3_beta.+.Crack.+.Patch.FR.-.[HwC] [myBittorrent.com].torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Raccourci vers Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu.rar.lnk
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Adobe Acrobat 7[1].0 Pro with Keygen[SquiggiE].torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] GOOGLE EARTH CRACK ONLY FOR PRO.zip.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Google Earth Pro Crack.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] GOOGLE EARTH PRO ' CRACK ONLY'.zip.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Nero Burning ROM 7[1].2.0.3+Keygen.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Risk_2_Crack[1].exe.3515144.TPB.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Swish 2[1].01 Complete Suite (SwiSHmax Templates Crack.rar.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Swish MAX crack.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] The[1].Godfather.CRACK.ONLY-iND.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com\Adobe_Photoshop_and_ImageReady_CS2_v9.0_KeyGen-PARADOX.nfo
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com\keygen.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\ChingLiu.nfo
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FILE_ID.DIZ
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\vsoConvertXtoDVD2_setup_2010b.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\ChingLiu.nfo
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FILE_ID.DIZ
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\vsoConvertXtoDVD2_setup_2010b.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF\FFF.NFO

1 - "C:\ToolBar SD\TB_1.txt" - 2009-02-26|19:56 - Option : [2]

-----------\\ Fin du rapport a 19:56:20,57
0
Réponse 22 / 34
sim123
 
[b]SDFix: Version 1.240 [/b]
Run by Ludger on 2009-02-26 at 20:42

Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix

[b]Checking Services [/b]:

Restoring Default Security Values
Restoring Default Hosts File

Rebooting

[b]Checking Files [/b]:

Trojan Files Found:

C:\WINDOWS\system32\acluib.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\e.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\teste1_p.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\teste2_p.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\teste3_p.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\teste4_p.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\avto.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\avto1.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\avto2.exe - Deleted
C:\DOCUME~1\Ludger\LOCALS~1\Temp\pinnew.exe - Deleted
C:\WINDOWS\sv.exe - Deleted
C:\WINDOWS\svw.exe - Deleted
C:\WINDOWS\system32\ntos.exe - Deleted

Folder C:\Program Files\Video Add-on - Removed

Removing Temp Files

[b]ADS Check [/b]:

[b]Final Check [/b]:

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-26 21:03:27
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:dc72254a
"s2"=dword:e8e3e4fb
"h0"=dword:00000002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"p0"="C:\Program Files\Alcohol Soft\Alcohol 120\"
"h0"=dword:00000000
"ujdew"=hex:a8,21,bf,1d,07,0f,e3,9f,bf,70,5f,ad,f6,6f,68,8a,22,bb,37,fb,0e,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:ce,3d,48,c6,a4,f1,da,15,a8,ed,34,84,42,a0,3a,af,26,a2,9d,40,be,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"p0"="C:\Program Files\Alcohol Soft\Alcohol 120\"
"h0"=dword:00000000
"ujdew"=hex:a8,21,bf,1d,07,0f,e3,9f,bf,70,5f,ad,f6,6f,68,8a,22,bb,37,fb,0e,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:ce,3d,48,c6,a4,f1,da,15,a8,ed,34,84,42,a0,3a,af,26,a2,9d,40,be,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"p0"="C:\Program Files\Alcohol Soft\Alcohol 120\"
"h0"=dword:00000000
"ujdew"=hex:a8,21,bf,1d,07,0f,e3,9f,bf,70,5f,ad,f6,6f,68,8a,22,bb,37,fb,0e,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:ce,3d,48,c6,a4,f1,da,15,a8,ed,34,84,42,a0,3a,af,26,a2,9d,40,be,..

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

[b]Remaining Services [/b]:

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\\qcSoft.exe"="D:\\qcSoft.exe:*:Enabled:QC Testing Software"
"C:\\WINDOWS\\system32\\usmt\\migwiz.exe"="C:\\WINDOWS\\system32\\usmt\\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramŠtres"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe:*:Enabled:avginet.exe"
"C:\\Program Files\\Infogrames\\Trophy Hunter 2003\\TH2003.exe"="C:\\Program Files\\Infogrames\\Trophy Hunter 2003\\TH2003.exe:*:Disabled:TH2003"
"C:\\WINDOWS\\system32\\dpnsvr.exe"="C:\\WINDOWS\\system32\\dpnsvr.exe:*:Disabled:Microsoft DirectPlay8 Server"
"C:\\Program Files\\BitTorrent\\bittorrent.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"="C:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe:*:Enabled:GameCenter"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe:*:Enabled:avgcc.exe"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\Internet Explorer\\iexplore.exe"="C:\\Program Files\\Internet Explorer\\iexplore.exe:*:Enabled:Internet Explorer"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox"
"C:\\Program Files\\Teamspeak2_RC2\\server_windows.exe"="C:\\Program Files\\Teamspeak2_RC2\\server_windows.exe:*:Enabled:Server"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Google\\Google Talk\\googletalk.exe"="C:\\Program Files\\Google\\Google Talk\\googletalk.exe:*:Enabled:Google Talk"
"C:\\Program Files\\NetMeeting\\conf.exe"="C:\\Program Files\\NetMeeting\\conf.exe:*:Enabled:Windows© NetMeeting©"
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"="C:\\Program Files\\AVG\\AVG8\\avgupd.exe:*:Enabled:avgupd.exe"
"C:\\Program Files\\AVG\\AVG8\\avgemc.exe"="C:\\Program Files\\AVG\\AVG8\\avgemc.exe:*:Enabled:avgemc.exe"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"="C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe:*:Enabled:Assistance … distance - Windows Messenger et voix"
"C:\\Documents and Settings\\Ludger\\Local Settings\\Temp\\ImInstaller\\incredimail_installer.exe"="C:\\Documents and Settings\\Ludger\\Local Settings\\Temp\\ImInstaller\\incredimail_installer.exe:*:Enabled:IncrediMail Installer"
"C:\\DOCUME~1\\Ludger\\LOCALS~1\\Temp\\pinnew.exe"="C:\\DOCUME~1\\Ludger\\LOCALS~1\\Temp\\pinnew.exe:*:Enabled:Enabled"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[b]Remaining Files [/b]:

File Backups: - C:\SDFix\backups\backups.zip

[b]Files with Hidden Attributes [/b]:

Tue 14 Jun 2005 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Tue 4 Apr 2006 3,830 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv10.bak"
Sat 22 Oct 2005 401 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv11.bak"
Thu 30 Mar 2006 1,544 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv12.bak"
Fri 7 Oct 2005 1,163 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv13.bak"
Wed 28 Jun 2006 2,306 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv14.bak"
Sat 20 May 2006 1,163 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv15.bak"
Sun 27 Nov 2005 782 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv16.bak"
Mon 5 Jun 2006 2,306 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv17.bak"
Sat 20 May 2006 1,163 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv18.bak"
Sun 19 Mar 2006 2,306 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv19.bak"
Sun 24 Sep 2006 92,160 ...H. --- "C:\Documents and Settings\Ludger\Mes documents\~WRL0202.tmp"
Sun 24 Sep 2006 72,192 ...H. --- "C:\Documents and Settings\Ludger\Mes documents\~WRL0323.tmp"
Sat 23 Sep 2006 92,160 ...H. --- "C:\Documents and Settings\Ludger\Mes documents\~WRL2832.tmp"
Mon 14 Mar 2005 299,008 A..H. --- "C:\Program Files\Canon\MP Navigator 2.0\Maint.exe"
Mon 25 Apr 2005 61,440 A..H. --- "C:\Program Files\Canon\MP Navigator 2.0\uinstrsc.dll"
Tue 22 Jan 2008 56 A.SH. --- "C:\Documents and Settings\All Users\Documents\TV enregistr‚e\MSDVRMM_4027394299_3538944_92836.tmp"
Tue 29 Jan 2008 56 A.SH. --- "C:\Documents and Settings\All Users\Documents\TV enregistr‚e\MSDVRMM_4027394299_6422528_70352.tmp"
Wed 20 Feb 2008 7,124 A.SH. --- "C:\Documents and Settings\All Users\Documents\TV enregistr‚e\MSDVRMM_4027394299_10354688_31679.tmp"
Wed 26 Sep 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Thu 26 Feb 2009 5,946 A.SH. --- "C:\Documents and Settings\All Users\Documents\TV enregistr‚e\TempRec\TempSBE\SBE2.tmp"
Sat 6 May 2006 26,609 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\T‚l‚chargement\tstatsV07\Qsort.exe"
Sat 6 May 2006 967 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\T‚l‚chargement\tstatsV07\QSORT.PIF"
Sat 6 May 2006 20,388 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\T‚l‚chargement\tstatsV07\SUMT.EXE"
Sat 6 May 2006 967 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\T‚l‚chargement\tstatsV07\SUMT.PIF"
Sat 6 May 2006 139,264 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\T‚l‚chargement\tstatsV07\TstatsV07.exe"
Mon 22 May 2006 1,256,448 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Journal\Saison 1\dition 5\~WRL0091.tmp"
Sun 21 May 2006 972,800 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Journal\Saison 1\dition 5\~WRL3327.tmp"
Mon 22 May 2006 1,465,856 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Journal\Saison 1\dition 5\~WRL3965.tmp"
Mon 22 May 2006 1,410,560 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Journal\Saison 1\dition 4\~WRL0627.tmp"
Mon 15 May 2006 1,410,048 A..H. --- "C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Journal\Saison 1\dition 4\~WRL1394.tmp"

[b]Finished![/b]
0
Réponse 23 / 34
sim123
 
Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1807
Windows 5.1.2600 Service Pack 3

2009-02-26 21:42:22
mbam-log-2009-02-26 (21-42-18).txt

Type de recherche: Examen rapide
Eléments examinés: 96995
Temps écoulé: 13 minute(s), 57 second(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 6
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
C:\WINDOWS\odb.exe (Trojan.FakeAlert) -> No action taken.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e14dce67-8fb7-4721-8149-179baa4d792c} (Backdoor.Ciadoor) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d34f5d71-99e4-4d96-91ca-f4104f69b8ae} (Trojan.Zlob) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f0993251-2512-4710-af6e-0a13ea199d02} (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d34f5d71-99e4-4d96-91ca-f4104f69b8ae} (Trojan.Zlob) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.Trymedia) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{f0993251-2512-4710-af6e-0a13ea199d02} (Trojan.Zlob) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{f0993251-2512-4710-af6e-0a13ea199d02} (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\bjoqurubohojaf (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\odb (Backdoor.Bot) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\UID (Malware.Trace) -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\WINDOWS\system32\wsnpoem (Trojan.Agent) -> No action taken.

Fichier(s) infecté(s):
C:\WINDOWS\system32\wsnpoem\audio.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\wsnpoem\video.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\Bqucocuwusehihe.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\odb.exe (Backdoor.Bot) -> No action taken.
C:\Documents and Settings\Ludger\Application Data\config.cfg (Malware.Trace) -> No action taken.
C:\Documents and Settings\Ludger\Application Data\~tmp.html (Malware.Trace) -> No action taken.
C:\Documents and Settings\Ludger\Favoris\Online Security Test.url (Rogue.Link) -> No action taken.
0
Réponse 24 / 34
sim123
 
Logfile of random's system information tool 1.05 (written by random/random)
Run by Ludger at 2009-02-26 21:46:05
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 159 GB (67%) free of 238 GB
Total RAM: 1535 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:46:11, on 2009-02-26
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\FinePixViewer\QuickDCF.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\crypserv.exe
c:\program files\dvrmstoolbox\dvrmsfilewatcherservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre1.5.0_09\bin\jucheck.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\odb.exe
C:\Documents and Settings\Ludger\Bureau\RSIT.exe
C:\Program Files\trend micro\Ludger.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/defaultf.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: (no name) - {D34F5D71-99E4-4D96-91CA-F4104F69B8AE} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: (no name) - {F0993251-2512-4710-AF6E-0A13EA199D02} - (no file)
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IdiomaX Office] C:\Program Files\IdiomaX\Office Translator 4.0\IdxOffice.exe
O4 - HKLM\..\Run: [IdiomaX Product Update] C:\Program Files\Fichiers communs\IdiomaX Shared\Cat 6.0\IdxLUpdate.exe /AUTOSTART
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [Bjoqurubohojaf] rundll32.exe "C:\WINDOWS\Bqucocuwusehihe.dll",e
O4 - HKLM\..\Run: [odb] C:\WINDOWS\odb.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Exif Launcher.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Documents and Settings\Ludger\Mes documents\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Documents and Settings\Ludger\Mes documents\Titan Poker\casino.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O22 - SharedTaskScheduler: IPC Configuration Utility - IPC Configuration Utility - (no file)
O22 - SharedTaskScheduler: Windows Installer Class - {020487CC-FC04-4B1E-863F-D9801796230B} - C:\DOCUME~1\Ludger\LOCALS~1\Temp\wndutl32.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: DVRMSFileWatcherService - - c:\program files\dvrmstoolbox\dvrmsfilewatcherservice.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 34
sim123
 
Salut,

tu vas voir tous les rapports que tu m'as demandé hier plus haut.

Mon ordinateur fonctionne mieux, il n'y a plus de message d'erreur qui apparait.

Est-ce que tout est réglé?

Dois-je faire autre chose?

Merci
0
Réponse 26 / 34
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
refais malwarebyte et vire ce qui est trouvé cette fois!et coll le rapport . Pour tes antivirus il ne faut en garder qu'un alors vire avast (de préférence )ou avg 8
0
Réponse 27 / 34
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
alors refais malwarebyte et vire cette fois ce qui est trouvé!!!!!!!!!!!

__________________

vire un de tes deux antivirus sinon cela cré des failles et fait planter le pc!!!!

pour virer avast:
https://www.avast.com/fr-fr/uninstall-utility
__________________

télécharge OTMoveIt

http://oldtimer.geekstogo.com/OTMoveIt3.exe

(de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

:files
C:\Program Files\AskSBar
C:\Program Files\AskSBar\bar
C:\Program Files\AskSBar\SrchAstt
C:\Program Files\AskSBar\bar\1.bin
C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
C:\Program Files\AskSBar\SrchAstt\1.bin
C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
C:\WINDOWS\$NtUninstallKB967715$
C:\WINDOWS\system32\wsnpoem
C:\WINDOWS\odb.exe
C:\WINDOWS\Bqucocuwusehihe.dll

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

___________________________

mettre à jour adobe reader
https://acrobat.adobe.com/fr/fr/acrobat/pdf-reader.html
____________________________

Mettre a jour java:

Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.

https://javara.fr.malavida.com/

Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
Double-clique sur le répertoire JavaRa obtenu.
Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
Clique sur Search For Updates.
Sélectionne Update Using jucheck.exe puis clique sur Search.
Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
(c:\JavaRa.log)
Ferme l'application.

si cela ne fonctionne pas

https://www.java.com/fr/download/windows_manual.jsp?locale=fr&host=www.java.com:80

tu peux désinstaller les vieilles versions.

_______________________

tous ces cracks ce n'est pas conseillé

C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\bs.nfo
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\keygen.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\setup.msi
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Druide_Antidote_RX_v5.0_Incl.Keygen_FRENCH-BS\AntidoteRX5\update.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional Keygen
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Important!.txt
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0404.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0409.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0411.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0412.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\0x0804.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Abcpy.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\AcroPro.itw
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\AcroPro.msi
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Data1.cab
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\instmsiw.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\setup.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional\Setup.ini
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\Adobe Acrobat 7.0 Pro with Keygen[SquiggiE]\Adobe Acrobat 7.0 Professional Keygen\pdx-ac7p.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack.rar
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack.sfv
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack\cracktro.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\Torrent\MAGIX_Video_Deluxe_2007_Plus_FRENCH_DVD-BSiSO\CRACK\bs-crack\videodeLuxe.exe
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com.zip
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Photoshop.CS3_beta.+.Crack.+.Patch.FR.-.[HwC] [myBittorrent.com].torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Raccourci vers Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu.rar.lnk
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Adobe Acrobat 7[1].0 Pro with Keygen[SquiggiE].torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] GOOGLE EARTH CRACK ONLY FOR PRO.zip.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Google Earth Pro Crack.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] GOOGLE EARTH PRO ' CRACK ONLY'.zip.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Nero Burning ROM 7[1].2.0.3+Keygen.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Risk_2_Crack[1].exe.3515144.TPB.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Swish 2[1].01 Complete Suite (SwiSHmax Templates Crack.rar.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] Swish MAX crack.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\[isoHunt] The[1].Godfather.CRACK.ONLY-iND.torrent
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com\Adobe_Photoshop_and_ImageReady_CS2_v9.0_KeyGen-PARADOX.nfo
C:\DOCUME~1\Ludger\Bureau\Simon-Pier\T‚l‚chargement\Adobe.Photoshop.and.ImageReady.CS2.v9.0.Keygen.only-PARADOX.par.eMule-Paradise.com\keygen.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\ChingLiu.nfo
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FILE_ID.DIZ
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\vsoConvertXtoDVD2_setup_2010b.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Copie de Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\ChingLiu.nfo
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FFF.NFO
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\FILE_ID.DIZ
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\vsoConvertXtoDVD2_setup_2010b.exe
C:\DOCUME~1\Ludger\Mes documents\Mes fichiers re‡us\Vso.ConvertXToDVD.v2.0.10b.122.incl.crack-FFF.by.ChingLiu\Crack-FFF\FFF.NFO

__________________________

lance tool cleaner et colle le rapport

http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner

__________________________

nettoie les traces de ton ordi avec ccleaner: https://www.malekal.com/tutoriel-ccleaner/

___________________________

colle un scan en ligne avec un des deux suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr
0
Réponse 28 / 34
sim123
 
Salut,
J'ai viré AVG8.. pour l'instant j'ai juste AVAST..

pourquoi c'est meilleur AVG?? car je peux le

remettre...et viré avast.

__________________________

Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1807
Windows 5.1.2600 Service Pack 3

2009-02-27 12:16:39
mbam-log-2009-02-27 (12-16-39).txt

Type de recherche: Examen rapide
Eléments examinés: 95683
Temps écoulé: 9 minute(s), 28 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

__________________________
========== FILES ==========
C:\Program Files\AskSBar\SrchAstt\1.bin moved

successfully.
C:\Program Files\AskSBar\SrchAstt moved successfully.
C:\Program Files\AskSBar\bar\1.bin moved

successfully.
C:\Program Files\AskSBar\bar moved successfully.
C:\Program Files\AskSBar moved successfully.
File/Folder C:\Program Files\AskSBar\bar not found.
File/Folder C:\Program Files\AskSBar\SrchAstt not

found.
File/Folder C:\Program Files\AskSBar\bar\1.bin not

found.
File/Folder C:\Program

Files\AskSBar\bar\1.bin\ASKSBAR.DLL not found.
File/Folder C:\Program Files\AskSBar\SrchAstt\1.bin

not found.
File/Folder C:\Program

Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL not found.
C:\WINDOWS\$NtUninstallKB967715$\spuninst moved

successfully.
C:\WINDOWS\$NtUninstallKB967715$ moved successfully.
File/Folder C:\WINDOWS\system32\wsnpoem not found.
File/Folder C:\WINDOWS\odb.exe not found.
File/Folder C:\WINDOWS\Bqucocuwusehihe.dll not found.

OTMoveIt3 by OldTimer - Version 1.0.8.0 log created

on 02272009_122035
__________________________
mise à jour de adobe FAITE

__________________________
JAVA FAITE

JavaRa 1.13 Removal Log.Report follows after

line.------------------------------------The JavaRa

removal process was started on Fri Feb 27 12:28:24

2009

Found and removed: C:\Program

Files\Java\jre1.5.0_03Found and removed: C:\Program

Files\Java\jre1.5.0_05Found and removed: C:\Program

Files\Java\jre1.5.0_06Found and removed:

C:\Windows\System32\jpicpl32.cplFound and removed:

Software\JavaSoft\Java2D\1.5.0_03Found and removed:

Software\JavaSoft\Java2D\1.5.0_05Found and removed:

Software\JavaSoft\Java2D\1.5.0_06Found and removed:

Software\JavaSoft\Java2D\1.5.0_09Found and removed:

SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDE

FFEDCBA}Found and removed:

SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDE

FFEDCBA}Found and removed:

SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDE

FFEDCBA}Found and removed:

SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDE

FFEDCBA}Found and removed:

SOFTWARE\Classes\Installer\Features\8A0F842331866D117

AB7000B0D510003Found and removed:

SOFTWARE\Classes\Installer\Features\8A0F842331866D117

AB7000B0D510005Found and removed:

SOFTWARE\Classes\Installer\Features\8A0F842331866D117

AB7000B0D510006Found and removed:

SOFTWARE\Classes\Installer\Features\8A0F842331866D117

AB7000B0D510009Found and removed:

SOFTWARE\Classes\Installer\Products\8A0F842331866D117

AB7000B0D510003Found and removed:

SOFTWARE\Classes\Installer\Products\8A0F842331866D117

AB7000B0D510005Found and removed:

SOFTWARE\Classes\Installer\Products\8A0F842331866D117

AB7000B0D510006Found and removed:

SOFTWARE\Classes\Installer\Products\8A0F842331866D117

AB7000B0D510009Found and removed:

SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866

D117AB7000B0D510003Found and removed:

SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866

D117AB7000B0D510005Found and removed:

SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866

D117AB7000B0D510006Found and removed:

SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866

D117AB7000B0D510009Found and removed:

SOFTWARE\Classes\JavaPlugin.150_03Found and removed:

SOFTWARE\Classes\JavaPlugin.150_05Found and removed:

SOFTWARE\Classes\JavaPlugin.150_06Found and removed:

SOFTWARE\Classes\JavaPlugin.150_09Found and removed:

SOFTWARE\Classes\JavaWebStart.isInstalled.1.5.0.0Foun

d and removed: SOFTWARE\JavaSoft\Java

Plug-in\1.5.0_03Found and removed:

SOFTWARE\JavaSoft\Java Plug-in\1.5.0_05Found and

removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_06Found

and removed: SOFTWARE\JavaSoft\Java

Plug-in\1.5.0_09Found and removed:

SOFTWARE\JavaSoft\Java Runtime Environment\1.5Found

and removed: SOFTWARE\JavaSoft\Java Runtime

Environment\1.5.0_03Found and removed:

SOFTWARE\JavaSoft\Java Runtime

Environment\1.5.0_05Found and removed:

SOFTWARE\JavaSoft\Java Runtime

Environment\1.5.0_06Found and removed:

SOFTWARE\JavaSoft\Java Runtime

Environment\1.5.0_09Found and removed:

SOFTWARE\Microsoft\Code Store Database\Distribution

Units\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}Found and

removed: SOFTWARE\Microsoft\Code Store

Database\Distribution

Units\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}Found and

removed: SOFTWARE\Microsoft\Code Store

Database\Distribution

Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}Found and

removed: SOFTWARE\Microsoft\Code Store

Database\Distribution

Units\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0

D510003Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0

D510005Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0

D510006Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0

D510009Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Products\8A0F842331866D117AB7000B0D5

10003Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Products\8A0F842331866D117AB7000B0D5

10005Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Products\8A0F842331866D117AB7000B0D5

10006Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\U

serData\S-1-5-18\Products\8A0F842331866D117AB7000B0D5

10009Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{

3248F0A8-6813-11D6-A77B-00B0D0150030}Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{

3248F0A8-6813-11D6-A77B-00B0D0150050}Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{

3248F0A8-6813-11D6-A77B-00B0D0150060}Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{

3248F0A8-6813-11D6-A77B-00B0D0150090}Found and

removed: SOFTWARE\JavaSoft\Java Web

Start\1.5.0_03Found and removed:

SOFTWARE\JavaSoft\Java Web Start\1.5.0_05Found and

removed: SOFTWARE\JavaSoft\Java Web

Start\1.5.0_06Found and removed:

SOFTWARE\JavaSoft\Java Web Start\1.5.0_09Found and

removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDE

FFEDCBA}Found and removed: SOFTWARE\JavaSoft\Java Web

Start\1.0.1Found and removed: SOFTWARE\JavaSoft\Java

Web Start\1.0.1_02Found and removed:

SOFTWARE\JavaSoft\Java Web Start\1.0.1_03Found and

removed: SOFTWARE\JavaSoft\Java Web

Start\1.0.1_04Found and removed:

SOFTWARE\JavaSoft\Java Web Start\1.2Found and

removed: SOFTWARE\JavaSoft\Java Web

Start\1.2.0_01Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDE

FFEDCBB}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDE

FFEDCBA}Found and removed:

Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDE

FFEDCBB}Found and removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\F

olders\\C:\Program Files\Java\jre1.5.0_03\Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\F

olders\\C:\Program Files\Java\jre1.5.0_05\Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\F

olders\\C:\Program Files\Java\jre1.5.0_06\Found and

removed:

SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\F

olders\\C:\Program

Files\Java\jre1.5.0_09\------------------------------

------Finished reporting.
__________________________
ToolCleaner, ça ne fonctionne pas. J'appuie sur RECHERCHE en haut et ça ne fait rien.... Est-ce que c'est long?

__________________________
CCleaner FAITE

__________________________
Voici le rapport de BITDEFENDER:
BitDefender Online Scanner

Rapport d'analyse généré à: Fri, Feb 27, 2009 - 13:41:21

Voie d'analyse: A:\;C:\;D:\;F:\;

Statistiques

Temps
00:43:46

Fichiers
196915

Directoires
16640

Secteurs de boot
0

Archives
1886

Paquets programmes
22199

Résultats

Virus identifiés
1

Fichiers infectés
2

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
2

Info sur les moteurs

Définition virus
2684695

Version des moteurs
AVCORE v1.7 (build 8314.19) (i386) (Sep 29 2008 17:19:14)

Analyse des plugins
17

Archive des plugins
45

Unpack des plugins
7

E-mail plugins
6

Système plugins
4

Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions

Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui

Fichier analysé
Statut

C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Téléchargement\ftpexpert3.exe
Détecté avec: Adware.Generic.31823

C:\Documents and Settings\Ludger\Bureau\Simon-Pier\Téléchargement\ftpexpert3.exe
Supprimé

C:\System Volume Information\_restore{7686025F-E06C-4EA8-9EA0-2DA305B7A01D}\RP1252\A0269494.exe
Détecté avec: Adware.Generic.31823

C:\System Volume Information\_restore{7686025F-E06C-4EA8-9EA0-2DA305B7A01D}\RP1252\A0269494.exe
Supprimé

__________________________
Merci beaucoup! Est-ce que tout est correct ou il reste certaines choses à faire?
0
Réponse 29 / 34
sim123
 
Toolcleaner:
C:\TB.txt: trouvé !
C:\SDFIX: trouvé !
C:\_OtMoveIt: trouvé !
C:\Toolbar SD: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\Ludger\Bureau\Virus\OTMoveIt3.exe: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !

Dois-je faire supprimer?
0
Réponse 30 / 34
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
abg 8 ou antivir c'est mieux que avast : c'est comme cela ils sont actuellement plus efficaces

_______________

oui vire tout avec tool cleaner

_______________

désactive ta restauration puis redemarre ton ordi puis réactive la

http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fdocid/20020830101856924

________________

encore des soucis???
0
Réponse 31 / 34
sim123
 
Non, je crois que tout est correct. Je vais viré avast et installer AVG.

Merci pour ton aide!
0
Réponse 32 / 34
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
ok c'est bon
0
Réponse 33 / 34
sim123
 
slt je té ecrit cet semaine et je n'ai pas eu de reponse j'ai des virus en quarantaine dans avg est-ce que je doit les suprime ou ca va se faire seul.
0
Réponse 34 / 34
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
en general tu laisse en quarantaine une semaine et
si ton ordi va bien tu les vires de la quarantaine
0
Précédent
  • 1
  • 2

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
Site pour regarder animé sans virus
ShaylahScarlet -
bendrop -

1 réponse