Bjr! fichier infecté....c:\windows\system32\n

Résolu
marie -  
 marie -
Bonjour,

Depuis quelques jours quand j'allume mon ordi, avast détecte un fichier infecté:

c:\windows\system32\nmdfgds0.dll.

et je n'arrive pas à le supprimer.

Quelqu'un pourrait-il me donner la démarche à suivre...

Votre aide me sera forte utile.

Merci d'avance.

Marie
Configuration: Windows XP Internet Explorer 7.0

22 réponses

  • 1
  • 2
  1. Utilisateur anonyme
     
    Salut ,

    • Télécharge et install UsbFix

    (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

    • Double clic sur le raccourci UsbFix présent sur ton bureau .

    • Choisis l'option 1 ( Recherche )

    • Laisse travailler l'outil.

    • Ensuite post le rapport UsbFix.txt qui apparaitra.

    • Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

    ( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

    • Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
    Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
    Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

    • Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html
    1
    1. marie
       
      bonjour chiquitine29,

      merci de passer un peu de temps à m'aider....

      voilà le rapport :


      ############################## [ UsbFix V3.016 # Scan ]

      # User : HP_Propriétaire (Administrateurs) # MARIE
      # Update on 02/05/09 by Chiquitine29, C_XX & Chimay8
      # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
      # Start at: 14:41:30 | 04/05/2009

      # AMD Athlon(tm) 64 Processor 3200+
      # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
      # Internet Explorer 7.0.5730.11
      # Windows Firewall Status : Enabled
      # AV : avast! antivirus 4.8.1335 [VPS 090504-0] 4.8.1335 [ Enabled | Updated ]

      # C:\ # Disque fixe local # 179,33 Go (115,2 Go free) [HP_PAVILION] # NTFS
      # D:\ # Disque fixe local # 6,96 Go (3,2 Go free) [HP_RECOVERY] # FAT32
      # E:\ # Disque CD-ROM
      # F:\ # Disque CD-ROM
      # G:\ # Disque amovible
      # H:\ # Disque amovible
      # I:\ # Disque amovible
      # J:\ # Disque amovible

      ############################## [ Processus actifs ]

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\windows\system\hpsysdrv.exe
      C:\WINDOWS\AGRSMMSG.exe
      C:\WINDOWS\system32\hphmon06.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\Program Files\QuickTime\QTTask.exe
      C:\Program Files\Real\RealPlayer\RealPlay.exe
      C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
      C:\Program Files\Picasa2\PicasaMediaDetector.exe
      C:\WINDOWS\system32\LXSUPMON.EXE
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
      C:\WINDOWS\system32\svchost.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
      C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\PROGRA~1\MI3AA1~1\wcescomm.exe
      C:\Program Files\Belgacom\bin\sprtsvc.exe
      C:\PROGRA~1\MI3AA1~1\rapimgr.exe
      C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
      C:\WINDOWS\system32\wdfmgr.exe
      C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
      C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\WINDOWS\System32\alg.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
      C:\WINDOWS\system32\wbem\wmiprvse.exe

      ################## [ Registre # Startup ]

      HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
      HKCU_Main: "Search Page"="https://www.google.com/?gws_rd=ssl"
      HKCU_Main: "Start Page"="https://www.msn.com/fr-fr"
      HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
      HKLM_logon: "DefaultUserName"="HP_Propri‚taire"
      HKLM_logon: "AltDefaultUserName"="HP_Propri‚taire"
      HKLM_logon: "LegalNoticeCaption"=""
      HKLM_logon: "LegalNoticeText"=""
      HKLM_Run: SunJavaUpdateSched="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
      HKLM_Run: hpsysdrv=c:\windows\system\hpsysdrv.exe
      HKLM_Run: AGRSMMSG=AGRSMMSG.exe
      HKLM_Run: HPHUPD06=c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
      HKLM_Run: HPHmon06=C:\WINDOWS\system32\hphmon06.exe
      HKLM_Run: KBD=C:\HP\KBD\KBD.EXE
      HKLM_Run: Recguard=C:\WINDOWS\SMINST\RECGUARD.EXE
      HKLM_Run: ATIPTA=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      HKLM_Run: AlcxMonitor=ALCXMNTR.EXE
      HKLM_Run: PS2=C:\WINDOWS\system32\ps2.exe
      HKLM_Run: LSBWatcher=c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
      HKLM_Run: Reminder="C:\Windows\Creator\Remind_XP.exe"
      HKLM_Run: QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
      HKLM_Run: RealTray=C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
      HKLM_Run: PCSuiteTrayApplication=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
      HKLM_Run: Picasa Media Detector=C:\Program Files\Picasa2\PicasaMediaDetector.exe
      HKLM_Run: PrinTray=C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
      HKLM_Run: LXSUPMON=C:\WINDOWS\system32\LXSUPMON.EXE RUN
      HKLM_Run: Belgacom="C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
      HKLM_Run: iTunesHelper="C:\Program Files\iTunes\iTunesHelper.exe"
      HKLM_Run: HPDJ Taskbar Utility=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
      HKLM_Run: AdobeCS4ServiceManager="C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
      HKLM_Run: avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
      HKCU_Run: MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
      HKCU_Run: ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
      HKCU_Run: swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      HKCU_Run: H/PC Connection Agent="C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
      HKCU_Run: cdoosoft=C:\WINDOWS\system32\olhrwef.exe
      HKCU_Run: HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run\AdobeUpdater=

      ################## [ Informations ]


      ################## [ Fichiers # Dossiers infectieux ]

      Found ! C:\WINDOWS\system32\nmdfgds0.dll
      Found ! C:\WINDOWS\system32\nmdfgds1.dll
      Found ! C:\WINDOWS\system32\olhrwef.exe
      C:\autorun.inf # -> fichier appelé : "C:\fbak.exe" ( présent ! )
      Found ! C:\autorun.ini
      Found ! C:\autorun.inf
      D:\autorun.inf # -> fichier appelé : "D:\fbak.exe" ( présent ! )
      Found ! D:\autorun.inf

      ################## [ Registre # Clés Run infectieuses ]

      Found ! HKLM\software\microsoft\security center\\ "AntiVirusDisableNotify"
      # -> ( Value = 0x1 | Good = 0x0 Bad = 0x1 )
      Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cdoosoft"
      Found ! HKU\S-1-5-21-3041517003-3083797033-3959656962-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cdoosoft"

      ################## [ Registre # Mountpoints2 ]

      HKCU\Software\Microsoft\....\MountPoints2\C\Shell\AutoRun\command
      HKCU\Software\Microsoft\....\MountPoints2\C\Shell\open\Command
      HKCU\Software\Microsoft\....\MountPoints2\D\Shell\AutoRun\command
      HKCU\Software\Microsoft\....\MountPoints2\D\Shell\open\Command
      HKCU\Software\Microsoft\....\MountPoints2\{504c262f-332d-11de-88c6-0011675b9691}\Shell\AutoRun\command
      HKCU\Software\Microsoft\....\MountPoints2\{504c262f-332d-11de-88c6-0011675b9691}\Shell\open\Command

      ################## [ ! Fin du rapport # UsbFix V3.016 ! ]

      merci
      0
  2. Utilisateur anonyme
     
    De rien Marie ,

    (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir

    • Double clic sur le raccourci UsbFix présent sur ton bureau

    • choisis l'option 2 ( Suppression )

    • Ton bureau disparaitra et le pc redémarrera .

    • Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.

    • Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

    • Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

    ( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
    0
    1. marie
       
      voilà:


      ############################## [ UsbFix V3.016 # Cleaning ]

      # User : HP_Propriétaire (Administrateurs) # MARIE
      # Update on 02/05/09 by Chiquitine29, C_XX & Chimay8
      # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
      # Start at: 15:05:29 | 04/05/2009

      # AMD Athlon(tm) 64 Processor 3200+
      # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
      # Internet Explorer 7.0.5730.11
      # Windows Firewall Status : Enabled
      # AV : avast! antivirus 4.8.1335 [VPS 090504-0] 4.8.1335 [ Enabled | Updated ]

      # C:\ # Disque fixe local # 179,33 Go (115,21 Go free) [HP_PAVILION] # NTFS
      # D:\ # Disque fixe local # 6,96 Go (3,2 Go free) [HP_RECOVERY] # FAT32
      # E:\ # Disque CD-ROM
      # F:\ # Disque CD-ROM
      # G:\ # Disque amovible
      # H:\ # Disque amovible
      # I:\ # Disque amovible
      # J:\ # Disque amovible

      ############################## [ Processus actifs ]

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\logonui.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Alwil Software\Avast4\setup\avast.setup
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
      C:\Program Files\Bonjour\mDNSResponder.exe
      C:\Program Files\Belgacom\bin\sprtsvc.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\wdfmgr.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\System32\alg.exe
      C:\WINDOWS\system32\wbem\wmiprvse.exe

      ################## [ Fichiers # Dossiers infectieux ]

      Deleted ! C:\WINDOWS\system32\nmdfgds0.dll
      Deleted ! C:\WINDOWS\system32\nmdfgds1.dll
      Deleted ! C:\WINDOWS\system32\olhrwef.exe
      C:\autorun.inf # -> fichier appelé : "C:\fbak.exe" ( présent ! )
      Deleted ! -> C:\fbak.exe
      Deleted ! C:\autorun.ini
      Deleted ! C:\autorun.inf
      D:\autorun.inf # -> fichier appelé : "D:\fbak.exe" ( présent ! )
      Deleted ! -> D:\fbak.exe
      Deleted ! D:\autorun.inf

      ################## [ Registre # Clés Run infectieuses ]

      # HKLM\software\microsoft\security center\\ "AntiVirusDisableNotify"
      # -> ( Value = 0x1 | Good = 0x0 Bad = 0x1 ) # -> Reset sucessfully !
      Deleted ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cdoosoft"

      ################## [ Registre # Mountpoints2 ]

      Deleted ! HKCU\Software\Microsoft\....\MountPoints2\C\Shell\AutoRun\command
      Deleted ! HKCU\Software\Microsoft\....\MountPoints2\D\Shell\AutoRun\command
      Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{504c262f-332d-11de-88c6-0011675b9691}\Shell\AutoRun\command

      ################## [ Listing des fichiers présent ]

      [16/09/2006 11:46|--a------|40] - C:\Auth.prof
      [23/11/2004 23:21|--a------|0] - C:\AUTOEXEC.BAT
      [16/01/2007 09:00|--a------|12415495] - C:\avg7qt.dat
      [01/08/2005 16:24|-rahs----|218] - C:\BOOT.BAK
      [01/08/2005 19:33|-rahs----|298] - C:\boot.ini
      [05/08/2004 14:00|-rahs----|4952] - C:\Bootfont.bin
      [28/05/2003 15:20|--a------|120054] - C:\CLOSING.BMP
      [05/08/2004 14:00|-r-hs----|263488] - C:\cmldr
      [23/11/2004 23:21|--a------|0] - C:\CONFIG.SYS
      [24/07/2003 09:41|--a------|289856] - C:\DEMO32.DBD
      [12/11/2001 17:48|--a------|450560] - C:\DEMO32.EXE
      [11/05/2007 23:31|--a------|154] - C:\fairuse.log
      [?|?|?] - C:\hiberfil.sys
      [29/04/2005 06:03|--ah-----|2] - C:\hpbi.log
      [30/04/2009 22:29|--a------|42759] - C:\hpfr3500.log
      [23/11/2004 23:21|-rahs----|0] - C:\IO.SYS
      [04/05/2009 14:22|--a------|42588] - C:\jswx.log
      [23/11/2004 23:21|-rahs----|0] - C:\MSDOS.SYS
      [05/08/2004 14:00|-rahs----|47564] - C:\NTDETECT.COM
      [05/08/2004 14:00|-rahs----|251712] - C:\ntldr
      [?|?|?] - C:\pagefile.sys
      [12/02/2006 17:04|--a------|192] - C:\persist.dbs
      [04/10/2008 14:59|--ah-----|268] - C:\sqmdata00.sqm
      [22/12/2008 13:51|--ah-----|232] - C:\sqmdata01.sqm
      [23/12/2008 12:22|--ah-----|232] - C:\sqmdata02.sqm
      [07/03/2009 13:06|--ah-----|268] - C:\sqmdata03.sqm
      [25/04/2009 11:38|--ah-----|292] - C:\sqmdata04.sqm
      [25/04/2009 13:24|--ah-----|292] - C:\sqmdata05.sqm
      [26/10/2007 09:30|--ah-----|268] - C:\sqmdata06.sqm
      [14/01/2008 19:25|--ah-----|268] - C:\sqmdata07.sqm
      [01/11/2008 19:56|--ah-----|268] - C:\sqmdata08.sqm
      [01/11/2008 19:56|--ah-----|148] - C:\sqmdata09.sqm
      [05/11/2007 21:58|--ah-----|232] - C:\sqmdata10.sqm
      [05/11/2007 23:32|--ah-----|232] - C:\sqmdata11.sqm
      [06/11/2007 09:16|--ah-----|268] - C:\sqmdata12.sqm
      [19/03/2008 12:20|--ah-----|268] - C:\sqmdata13.sqm
      [04/05/2008 17:43|--ah-----|232] - C:\sqmdata14.sqm
      [05/05/2008 14:40|--ah-----|232] - C:\sqmdata15.sqm
      [05/05/2008 17:39|--ah-----|232] - C:\sqmdata16.sqm
      [04/06/2008 18:40|--ah-----|268] - C:\sqmdata17.sqm
      [21/08/2008 11:00|--ah-----|268] - C:\sqmdata18.sqm
      [18/09/2008 21:28|--ah-----|232] - C:\sqmdata19.sqm
      [04/10/2008 14:59|--ah-----|244] - C:\sqmnoopt00.sqm
      [22/12/2008 13:51|--ah-----|244] - C:\sqmnoopt01.sqm
      [23/12/2008 12:22|--ah-----|244] - C:\sqmnoopt02.sqm
      [07/03/2009 13:06|--ah-----|244] - C:\sqmnoopt03.sqm
      [25/04/2009 11:38|--ah-----|244] - C:\sqmnoopt04.sqm
      [25/04/2009 13:24|--ah-----|244] - C:\sqmnoopt05.sqm
      [26/10/2007 09:30|--ah-----|244] - C:\sqmnoopt06.sqm
      [14/01/2008 19:25|--ah-----|244] - C:\sqmnoopt07.sqm
      [01/11/2008 19:56|--ah-----|244] - C:\sqmnoopt08.sqm
      [01/11/2008 19:56|--ah-----|136] - C:\sqmnoopt09.sqm
      [05/11/2007 21:58|--ah-----|244] - C:\sqmnoopt10.sqm
      [05/11/2007 23:32|--ah-----|244] - C:\sqmnoopt11.sqm
      [06/11/2007 09:16|--ah-----|244] - C:\sqmnoopt12.sqm
      [19/03/2008 12:20|--ah-----|244] - C:\sqmnoopt13.sqm
      [04/05/2008 17:43|--ah-----|244] - C:\sqmnoopt14.sqm
      [05/05/2008 14:40|--ah-----|244] - C:\sqmnoopt15.sqm
      [05/05/2008 17:39|--ah-----|244] - C:\sqmnoopt16.sqm
      [04/06/2008 18:40|--ah-----|244] - C:\sqmnoopt17.sqm
      [21/08/2008 11:00|--ah-----|244] - C:\sqmnoopt18.sqm
      [18/09/2008 21:28|--ah-----|244] - C:\sqmnoopt19.sqm
      [31/10/2005 17:56|--a------|700416] - C:\StubInstaller.exe
      [04/05/2009 15:06|--a------|6518] - C:\UsbFix.txt
      [12/05/2007 10:48|--a------|120] - C:\vobbler.log
      [28/07/2001 07:07|---hs----|0] - D:\AUTOEXEC.BAT
      [16/09/2004 17:27|---hs----|6] - D:\BLOCK.RIN
      [09/01/2002 20:52|---hs----|244] - D:\BOOT.INI
      [17/08/2001 10:26|---hs----|237728] - D:\CMLDR
      [28/07/2001 07:07|---hs----|0] - D:\CONFIG.SYS
      [10/09/2002 00:14|---hs----|100] - D:\Desktop.ini
      [10/09/2002 19:21|---hs----|7850] - D:\Folder.htt
      [30/04/2001 21:16|---hs----|14] - D:\Graph
      [25/01/2002 19:21|---hs----|0] - D:\GRAPH16
      [30/11/2004 14:01|---hs----|73728] - D:\Info.exe
      [28/07/2001 07:07|---hs----|0] - D:\IO.SYS
      [28/04/2005 23:30|---hs----|900] - D:\MASTER.LOG
      [28/07/2001 07:07|---hs----|0] - D:\MSDOS.SYS
      [25/07/2001 23:00|---hs----|45124] - D:\NTDETECT.COM
      [17/08/2001 16:32|---hs----|0] - D:\NTFS
      [25/07/2001 23:00|---hs----|222880] - D:\NTLDR
      [10/09/2002 16:58|---hs----|181616] - D:\protect.ed
      [23/11/2004 17:39|---hs----|36] - D:\SaveFile.Dir
      [30/04/2001 21:16|---hs----|14] - D:\SVGA
      [28/04/2005 23:30|--ahs----|900] - D:\USER
      [09/02/2002 01:44|---hs----|88038] - D:\Warning.bmp
      [18/08/2001 16:00|---hs----|10] - D:\WIN51
      [22/01/2001 16:00|---hs----|11] - D:\WIN51.B2
      [25/07/2001 16:00|---hs----|11] - D:\WIN51.RC1
      [25/07/2001 21:47|---hs----|11] - D:\WIN51.RC2
      [18/08/2001 16:00|---hs----|10] - D:\WIN51IC
      [20/03/2001 16:00|---hs----|11] - D:\WIN51IC.B2
      [25/07/2001 16:00|---hs----|11] - D:\WIN51IC.RC1
      [25/07/2001 16:00|---hs----|11] - D:\WIN51IC.RC2
      [17/08/2001 16:00|---hs----|10] - D:\WIN51IP
      [22/01/2001 16:00|---hs----|11] - D:\WIN51IP.B2
      [25/07/2001 21:47|---hs----|11] - D:\WIN51IP.RC2
      [17/08/2001 14:17|---hs----|184] - D:\WINBOM.INI
      [24/02/2004 18:38|--a------|498] - D:\BATCH.OLD
      [01/01/2005 00:52|--ahs----|1552] - D:\BATCH.LOG
      [01/02/2005 16:49|---hs----|535] - D:\install.bat
      [01/03/2005 18:39|---hs----|7] - D:\Softthinks_MLSP_ALL_BLU_WW-01.block
      [01/03/2005 18:39|---hs----|2213] - D:\Softthinks_MLSP_ALL_BLU_WW.txt
      [26/08/2007 17:20|--a------|6113439] - D:\pci_filerecovery.exe
      [26/08/2007 18:15|--a------|207945] - D:\davory.zip
      [27/10/2007 22:22|--a------|11642651] - D:\ScanWise.exe
      [30/10/2007 22:00|--a------|6772413] - D:\u7f488x6.bin

      ################## [ Vaccination ]

      # C:\autorun.inf -> Folder created by UsbFix.
      # D:\autorun.inf -> Folder created by UsbFix.

      ################## [ Cracks / Keygens / Serials ]

      # -> Nothing found !

      ################## [ ! Fin du rapport # UsbFix V3.016 ! ]

      merci!
      0
  3. Utilisateur anonyme
     
    Télécharge random's system information tool (RSIT) et sauvegarde-le sur le Bureau.

    Double-clique sur RSIT.exe afin de lancer RSIT.

    Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

    Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

    Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

    Poste le contenu de log.txt
    0
  4. marie
     
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by HP_Propriétaire at 2009-05-04 15:21:30
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 118 GB (64%) free of 184 GB
    Total RAM: 510 MB (20% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:21:46, on 04/05/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16827)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Belgacom\bin\sprtsvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\notepad.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZSTC08.EXE
    C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\YVKXBSFJ\RSIT[1].exe
    C:\Program Files\trend micro\HP_Propriétaire.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
    O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
    O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
    O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
    O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
    O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
    O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
    O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
    O4 - HKLM\..\Run: [Belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
    O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
    O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
    O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
    O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
    O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: BlueSoleil.lnk = ?
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
    O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://photoservice.fujicolor.eu/ips-opdata/objects/jordan-canvasx.cab
    O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
    O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab
    O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://webcam-bandol.kalanda.net//activex/AMC.cab
    O16 - DPF: {826287F8-454E-11D9-ADFE-00062919A34C} (ActiveXUploadFotoCom.UserCtrlFotoCom) - http://express.foto.com/activeX/newUploadFotoCom.CAB
    O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.leaderphoto.com/uploaders/ImageUploader3.cab
    O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://photoservice.fujicolor.de/ips-opdata/operator/27859021/activex/IPSUploader4.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - https://www.photobox.fr/?channel=1005
    O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - https://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cab
    O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://asp03.photoprintit.de/microsite/9358/defaults/activex/IPSUploader.cab
    O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab
    O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O21 - SSODL: system32 - {0E1D6D75-FD2A-45D6-B2CB-D1FCBB7B0859} - sysprinters.dll (file missing)
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: SupportSoft Sprocket Service (belgacom) (sprtsvc_belgacom) - SupportSoft, Inc. - C:\Program Files\Belgacom\bin\sprtsvc.exe
    O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Fichiers communs\Supportsoft\bin\ssrc.exe
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. Utilisateur anonyme
     
    ok Marie il reste des details ,

    Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.
    Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
    Double-clique sur le répertoire JavaRa obtenu.
    Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
    Clique sur Search For Updates.
    Sélectionne Update Using jucheck.exe puis clique sur Search.
    Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
    Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
    Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
    Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
    Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
    (c:\JavaRa.log)
    Ferme l'application.
    0
  7. marie
     
    JavaRa 1.12 Removal Log.

    Report follows after line.

    ------------------------------------

    The JavaRa removal process was started on Mon May 04 15:39:27 2009

    Found and removed: C:\Program Files\Java\j2re1.4.2_03

    Found and removed: C:\Program Files\Java\jre1.5.0_03

    Found and removed: C:\Program Files\Java\jre1.5.0_06

    Found and removed: C:\Program Files\Java\jre1.5.0_09

    Found and removed: C:\Windows\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142030}

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4

    Found and removed: Software\JavaSoft\Java2D\1.5.0_03

    Found and removed: Software\JavaSoft\Java2D\1.5.0_06

    Found and removed: Software\JavaSoft\Java2D\1.5.0_09

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510003

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510009

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510003

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510009

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510003

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510009

    Found and removed: SOFTWARE\Classes\JavaPlugin.150_03

    Found and removed: SOFTWARE\Classes\JavaPlugin.150_06

    Found and removed: SOFTWARE\Classes\JavaPlugin.150_09

    Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.5.0.0

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_09

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_09

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510006

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510009

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510009

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150030}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150060}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150090}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\JavaPlugin.160_03

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160030}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142030}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410203

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410203

    Found and removed: SOFTWARE\Classes\JavaPlugin.142_03

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.4.2_03

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.4.2_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_09

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\JavaPlugin.142_03

    Found and removed: Software\Classes\JavaPlugin.160_03

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_03

    Found and removed: Software\JavaSoft\Java2D\1.6.0_03

    Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_03

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_03\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_06\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_09\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\bin\

    ------------------------------------

    Finished reporting.
    0
  8. Utilisateur anonyme
     
    ok , je viens de m apercevoir que UsbFix n a pas vacciné tes clé usb ..

    Une question : as tu utilisé un de ces logiciels : Flash disinfector , VaccinUsb , UsbCheck ?

    (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

    • Double clic sur le raccourci UsbFix présent sur ton bureau .

    • Choisis l'option 4 ( Listing )

    • Laisse travailler l'outil.

    • Ensuite post le rapport UsbFix.txt qui apparaitra.

    • Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

    ( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
    0
  9. marie
     
    Non je n'ai utilisé aucun de ces logiciels.

    Voilà le rapport usbfix:

    ############################## [ UsbFix V3.016 # Listing ]

    # User : HP_Propriétaire (Administrateurs) # MARIE
    # Update on 02/05/09 by Chiquitine29, C_XX & Chimay8
    # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
    # Start at: 15:47:16 | 04/05/2009

    # AMD Athlon(tm) 64 Processor 3200+
    # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
    # Internet Explorer 7.0.5730.11
    # Windows Firewall Status : Enabled
    # AV : avast! antivirus 4.8.1335 [VPS 090504-0] 4.8.1335 [ Enabled | Updated ]

    # C:\ # Disque fixe local # 179,33 Go (115,31 Go free) [HP_PAVILION] # NTFS
    # D:\ # Disque fixe local # 6,96 Go (3,2 Go free) [HP_RECOVERY] # FAT32
    # E:\ # Disque CD-ROM
    # F:\ # Disque CD-ROM
    # G:\ # Disque amovible
    # H:\ # Disque amovible
    # I:\ # Disque amovible
    # J:\ # Disque amovible

    ###################### [ Listing des fichiers présents C:\ ]

    [16/09/2006 11:46|--a------|40] - C:\Auth.prof
    [23/11/2004 23:21|--a------|0] - C:\AUTOEXEC.BAT
    [16/01/2007 09:00|--a------|12415495] - C:\avg7qt.dat
    [01/08/2005 16:24|-rahs----|218] - C:\BOOT.BAK
    [01/08/2005 19:33|-rahs----|298] - C:\boot.ini
    [05/08/2004 14:00|-rahs----|4952] - C:\Bootfont.bin
    [28/05/2003 15:20|--a------|120054] - C:\CLOSING.BMP
    [05/08/2004 14:00|-r-hs----|263488] - C:\cmldr
    [23/11/2004 23:21|--a------|0] - C:\CONFIG.SYS
    [24/07/2003 09:41|--a------|289856] - C:\DEMO32.DBD
    [12/11/2001 17:48|--a------|450560] - C:\DEMO32.EXE
    [11/05/2007 23:31|--a------|154] - C:\fairuse.log
    [?|?|?] - C:\hiberfil.sys
    [29/04/2005 06:03|--ah-----|2] - C:\hpbi.log
    [04/05/2009 15:28|--a------|43451] - C:\hpfr3500.log
    [23/11/2004 23:21|-rahs----|0] - C:\IO.SYS
    [04/05/2009 15:39|--a------|13003] - C:\JavaRa.log
    [04/05/2009 14:22|--a------|42588] - C:\jswx.log
    [23/11/2004 23:21|-rahs----|0] - C:\MSDOS.SYS
    [05/08/2004 14:00|-rahs----|47564] - C:\NTDETECT.COM
    [05/08/2004 14:00|-rahs----|251712] - C:\ntldr
    [?|?|?] - C:\pagefile.sys
    [12/02/2006 17:04|--a------|192] - C:\persist.dbs
    [04/10/2008 14:59|--ah-----|268] - C:\sqmdata00.sqm
    [22/12/2008 13:51|--ah-----|232] - C:\sqmdata01.sqm
    [23/12/2008 12:22|--ah-----|232] - C:\sqmdata02.sqm
    [07/03/2009 13:06|--ah-----|268] - C:\sqmdata03.sqm
    [25/04/2009 11:38|--ah-----|292] - C:\sqmdata04.sqm
    [25/04/2009 13:24|--ah-----|292] - C:\sqmdata05.sqm
    [26/10/2007 09:30|--ah-----|268] - C:\sqmdata06.sqm
    [14/01/2008 19:25|--ah-----|268] - C:\sqmdata07.sqm
    [01/11/2008 19:56|--ah-----|268] - C:\sqmdata08.sqm
    [01/11/2008 19:56|--ah-----|148] - C:\sqmdata09.sqm
    [05/11/2007 21:58|--ah-----|232] - C:\sqmdata10.sqm
    [05/11/2007 23:32|--ah-----|232] - C:\sqmdata11.sqm
    [06/11/2007 09:16|--ah-----|268] - C:\sqmdata12.sqm
    [19/03/2008 12:20|--ah-----|268] - C:\sqmdata13.sqm
    [04/05/2008 17:43|--ah-----|232] - C:\sqmdata14.sqm
    [05/05/2008 14:40|--ah-----|232] - C:\sqmdata15.sqm
    [05/05/2008 17:39|--ah-----|232] - C:\sqmdata16.sqm
    [04/06/2008 18:40|--ah-----|268] - C:\sqmdata17.sqm
    [21/08/2008 11:00|--ah-----|268] - C:\sqmdata18.sqm
    [18/09/2008 21:28|--ah-----|232] - C:\sqmdata19.sqm
    [04/10/2008 14:59|--ah-----|244] - C:\sqmnoopt00.sqm
    [22/12/2008 13:51|--ah-----|244] - C:\sqmnoopt01.sqm
    [23/12/2008 12:22|--ah-----|244] - C:\sqmnoopt02.sqm
    [07/03/2009 13:06|--ah-----|244] - C:\sqmnoopt03.sqm
    [25/04/2009 11:38|--ah-----|244] - C:\sqmnoopt04.sqm
    [25/04/2009 13:24|--ah-----|244] - C:\sqmnoopt05.sqm
    [26/10/2007 09:30|--ah-----|244] - C:\sqmnoopt06.sqm
    [14/01/2008 19:25|--ah-----|244] - C:\sqmnoopt07.sqm
    [01/11/2008 19:56|--ah-----|244] - C:\sqmnoopt08.sqm
    [01/11/2008 19:56|--ah-----|136] - C:\sqmnoopt09.sqm
    [05/11/2007 21:58|--ah-----|244] - C:\sqmnoopt10.sqm
    [05/11/2007 23:32|--ah-----|244] - C:\sqmnoopt11.sqm
    [06/11/2007 09:16|--ah-----|244] - C:\sqmnoopt12.sqm
    [19/03/2008 12:20|--ah-----|244] - C:\sqmnoopt13.sqm
    [04/05/2008 17:43|--ah-----|244] - C:\sqmnoopt14.sqm
    [05/05/2008 14:40|--ah-----|244] - C:\sqmnoopt15.sqm
    [05/05/2008 17:39|--ah-----|244] - C:\sqmnoopt16.sqm
    [04/06/2008 18:40|--ah-----|244] - C:\sqmnoopt17.sqm
    [21/08/2008 11:00|--ah-----|244] - C:\sqmnoopt18.sqm
    [18/09/2008 21:28|--ah-----|244] - C:\sqmnoopt19.sqm
    [31/10/2005 17:56|--a------|700416] - C:\StubInstaller.exe
    [04/05/2009 15:47|--a------|4200] - C:\UsbFix.txt
    [12/05/2007 10:48|--a------|120] - C:\vobbler.log

    ###################### [ Listing des dossiers présents C:\ ]

    [05/09/2007 15:21|dr-h-----|0] - C:\$VAULT$.AVG
    [19/11/2006 03:01|d--------|0] - C:\77b6581ea8b8334055588d45ee4688f8
    [05/12/2006 23:29|d--------|0] - C:\ADOBE
    [04/05/2009 15:06|drahs----|0] - C:\autorun.inf
    [19/03/2008 11:57|d--------|0] - C:\Belgacom.msi.2.1
    [03/11/2008 19:11|d--------|0] - C:\Belgacom.msi.2.2
    [01/08/2005 19:33|dr-hs----|0] - C:\cmdcons
    [03/05/2009 12:54|d--h-----|0] - C:\Config.Msi
    [03/11/2008 18:16|d--------|0] - C:\Documents and Settings
    [01/12/2008 11:06|d--------|0] - C:\DRIVER
    [01/01/2005 09:52|d--h-----|0] - C:\hp
    [16/07/2007 12:58|d--------|0] - C:\install
    [01/04/2007 09:40|d--------|0] - C:\LG_COMBI_RECORDER
    [05/12/2006 23:29|d--------|0] - C:\MANUAL
    [01/08/2005 19:11|d--------|0] - C:\My Music
    [16/12/2006 20:54|d--------|0] - C:\Nouveau dossier
    [04/05/2009 15:21|d--------|0] - C:\Program Files
    [29/04/2005 06:03|d--h-----|0] - C:\Python22
    [01/08/2005 19:30|d--hs----|0] - C:\RECYCLER
    [04/05/2009 15:21|d--------|0] - C:\rsit
    [01/08/2005 16:24|d--------|0] - C:\sysprep
    [01/08/2005 16:21|d--hs----|0] - C:\System Volume Information
    [29/04/2005 06:03|d--h-----|0] - C:\system.sav
    [15/04/2009 15:30|d--------|0] - C:\Temp
    [04/05/2009 15:47|d--------|0] - C:\UsbFix
    [05/12/2006 23:29|d--------|0] - C:\WIDCOMM SOFTWARE 1.4.2.10
    [04/05/2009 15:32|d--------|0] - C:\WINDOWS

    ###################### [ Listing des fichiers présents D:\ ]

    [28/07/2001 07:07|---hs----|0] - D:\AUTOEXEC.BAT
    [16/09/2004 17:27|---hs----|6] - D:\BLOCK.RIN
    [09/01/2002 20:52|---hs----|244] - D:\BOOT.INI
    [17/08/2001 10:26|---hs----|237728] - D:\CMLDR
    [28/07/2001 07:07|---hs----|0] - D:\CONFIG.SYS
    [10/09/2002 00:14|---hs----|100] - D:\Desktop.ini
    [10/09/2002 19:21|---hs----|7850] - D:\Folder.htt
    [30/04/2001 21:16|---hs----|14] - D:\Graph
    [25/01/2002 19:21|---hs----|0] - D:\GRAPH16
    [30/11/2004 14:01|---hs----|73728] - D:\Info.exe
    [28/07/2001 07:07|---hs----|0] - D:\IO.SYS
    [28/04/2005 23:30|---hs----|900] - D:\MASTER.LOG
    [28/07/2001 07:07|---hs----|0] - D:\MSDOS.SYS
    [25/07/2001 23:00|---hs----|45124] - D:\NTDETECT.COM
    [17/08/2001 16:32|---hs----|0] - D:\NTFS
    [25/07/2001 23:00|---hs----|222880] - D:\NTLDR
    [10/09/2002 16:58|---hs----|181616] - D:\protect.ed
    [23/11/2004 17:39|---hs----|36] - D:\SaveFile.Dir
    [30/04/2001 21:16|---hs----|14] - D:\SVGA
    [28/04/2005 23:30|--ahs----|900] - D:\USER
    [09/02/2002 01:44|---hs----|88038] - D:\Warning.bmp
    [18/08/2001 16:00|---hs----|10] - D:\WIN51
    [22/01/2001 16:00|---hs----|11] - D:\WIN51.B2
    [25/07/2001 16:00|---hs----|11] - D:\WIN51.RC1
    [25/07/2001 21:47|---hs----|11] - D:\WIN51.RC2
    [18/08/2001 16:00|---hs----|10] - D:\WIN51IC
    [20/03/2001 16:00|---hs----|11] - D:\WIN51IC.B2
    [25/07/2001 16:00|---hs----|11] - D:\WIN51IC.RC1
    [25/07/2001 16:00|---hs----|11] - D:\WIN51IC.RC2
    [17/08/2001 16:00|---hs----|10] - D:\WIN51IP
    [22/01/2001 16:00|---hs----|11] - D:\WIN51IP.B2
    [25/07/2001 21:47|---hs----|11] - D:\WIN51IP.RC2
    [17/08/2001 14:17|---hs----|184] - D:\WINBOM.INI
    [24/02/2004 18:38|--a------|498] - D:\BATCH.OLD
    [01/01/2005 00:52|--ahs----|1552] - D:\BATCH.LOG
    [01/02/2005 16:49|---hs----|535] - D:\install.bat
    [01/03/2005 18:39|---hs----|7] - D:\Softthinks_MLSP_ALL_BLU_WW-01.block
    [01/03/2005 18:39|---hs----|2213] - D:\Softthinks_MLSP_ALL_BLU_WW.txt
    [26/08/2007 17:20|--a------|6113439] - D:\pci_filerecovery.exe
    [26/08/2007 18:15|--a------|207945] - D:\davory.zip
    [27/10/2007 22:22|--a------|11642651] - D:\ScanWise.exe
    [30/10/2007 22:00|--a------|6772413] - D:\u7f488x6.bin

    ###################### [ Listing des dossiers présents D:\ ]

    [04/05/2009 15:06|drahs----|0] - D:\autorun.inf
    [28/04/2005 23:30|d--hs----|0] - D:\cmdcons
    [28/04/2005 23:30|d--hs----|0] - D:\hp
    [28/04/2005 23:31|d--hs----|0] - D:\I386
    [28/04/2005 23:31|d--hs----|0] - D:\MiniNT
    [29/04/2005 00:01|d--hs----|0] - D:\PRELOAD
    [24/11/2004 21:55|dr-------|0] - D:\R‚installation SystŠme
    [30/03/1999 18:17|d--hs----|0] - D:\SYSTEM.SAV
    [28/04/2005 23:30|d--hs----|0] - D:\TOOLS
    [28/04/2005 23:03|d--hs----|0] - D:\System Volume Information
    [28/04/2005 23:30|d--hs----|0] - D:\RECOVERY
    [29/04/2005 00:00|d--hs----|0] - D:\Recycled

    ################## [ ! Fin du rapport # UsbFix V3.016 ! ]
    0
  10. Utilisateur anonyme
     
    ok usbfix ne voit pas les lecteurs G H I J

    Ils correspondent a quoi ?

    0
  11. marie
     
    si je ne me trompe pas ce sont des entrées usb.
    0
  12. Utilisateur anonyme
     
    ok mais des clé usb ou disque dur extterne y sont branché ? allumé ?
    0
  13. marie
     
    non, je ne possède pas de clé usb ni de disque dur externe.
    0
  14. Utilisateur anonyme
     
    ok Marie , je te remercie pour les précisions

    tout va bien alors ;)

    double clic sur ce fichier : C:\Program Files\trend micro\HP_Propriétaire.exe

    c est hijackthis , choisi do a system scan only

    coche ces lignes :

    2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

    O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://photoservice.fujicolor.eu/ips-opdata/objects/jordan-canvasx.cab
    O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
    O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab
    O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://webcam-bandol.kalanda.net//activex/AMC.cab
    O16 - DPF: {826287F8-454E-11D9-ADFE-00062919A34C} (ActiveXUploadFotoCom.UserCtrlFotoCom) - http://express.foto.com/activeX/newUploadFotoCom.CAB
    O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.leaderphoto.com/uploaders/ImageUploader3.cab
    O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://photoservice.fujicolor.de/
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - https://www.photobox.fr/?channel=1005
    O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - https://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cab
    O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://asp03.photoprintit.de/microsite/9358/defaults/activex/IPSUploader.cab
    O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab
    O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O21 - SSODL: system32 - {0E1D6D75-FD2A-45D6-B2CB-D1FCBB7B0859} - sysprinters.dll (file missing)

    tu les coches et tu clic sur fix checked

    ensuite :

    ---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
    http://oldtimer.geekstogo.com/OTMoveIt3.exe

    ---> Double-clique sur OTMoveIt3.exe afin de le lancer.

    ---> Copie (Ctrl+C) le texte suivant ci-dessous :

    :files
    C:\Program Files\Foto.com
    C:\WINDOWS\BDOSCAN8

    :commands
    [emptytemp]


    ---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

    ---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

    ---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log


    ensuite :

    * pour supprimer les outils/fix utilisés :

    Télécharge ToolsCleaner sur ton bureau.
    -->
    http://pc-system.fr/
    http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner

    # Clique sur Recherche et laisse le scan agir ...
    # Clique sur Suppression pour finaliser.
    # Tu peux, si tu le souhaites, te servir des Options facultatives.
    # Clique sur Quitter pour obtenir le rapport.
    # Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

    et :

    Purge de la restauration système
    *Désactive ta restauration :
    Clique droit sur poste de travail/propriétés/Restauration système/coche la case désactiver la restauration, appliquer, OK
    ---> Redémarre ton PC ...

    *Réactive ta restauration :
    Clique droit sur poste de travail/propriétés/Restauration système/décoche la case désactiver la restauration, appliquer, OK
    --->Redémarre ton PC ...

    ( Note : tu peux aussi y accéder via panneau de configuration->" système "->" restauration système " ).

    Tuto xp : http://service1.symantec.com/support/inter/tsgeninfointl.Nsf/fr_docid/20020830101856924

    0
  15. marie
     
    pardon pour l'attente...

    g suivi les étapes jusqu'au téléchargement de OTMoveIt3.

    ensuite le programme ne répond pas. g essayé à plusieurs reprises.

    Désolée.

    Merci.
    0
  16. Utilisateur anonyme
     
    Affiche tous les fichiers et dossiers :
    Pour cela :
    Clique sur démarrer/panneau de configuration/option des dossiers/affichage

    Cocher afficher les dossiers cacher

    Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"

    Décocher masquer les extensions dont le type est connu

    Puis fais «appliquer» pour valider les changements.

    Et OK

    supprime :

    C:\Program Files\Foto.com >>> le fichier
    C:\WINDOWS\BDOSCAN8 >>> le dossier

    tu pourras ainsi oublier otmoveit3
    0
  17. marie
     
    ça y est! j'y suis...

    voilà le rapport:

    [ Rapport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]

    --> Recherche:

    C:\UsbFix.txt: trouvé !
    C:\_OtMoveIt: trouvé !
    C:\UsbFix: trouvé !
    C:\Rsit: trouvé !
    C:\Documents and Settings\HP_Propriétaire\Bureau\OTMoveIt3.exe: trouvé !
    C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\UsbFix: trouvé !
    C:\Program Files\trend micro\HijackThis.exe: trouvé !
    C:\Program Files\trend micro\hijackthis.log: trouvé !

    ---------------------------------
    --> Suppression:

    C:\Program Files\trend micro\HijackThis.exe: supprimé !
    C:\UsbFix.txt: supprimé !
    C:\Documents and Settings\HP_Propriétaire\Bureau\OTMoveIt3.exe: supprimé !
    C:\Program Files\trend micro\hijackthis.log: supprimé !
    C:\_OtMoveIt: supprimé !
    C:\UsbFix: supprimé !
    C:\Rsit: supprimé !
    C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\UsbFix: supprimé !
    0
  18. marie
     
    et ben c'est super....

    je réessaie ce soir et je vois...

    Infiniment MERCI!

    Merci d'avoir passé tout ce temps!!!

    Pour moi, tout ça c'était du charabia.... alors heureusement que des gens comme toi partage leur temps pour aider des gens comme moi....

    au plaisir!!!
    0
  19. Utilisateur anonyme
     
    ;)

    Marie une question .... tu m a dis que tu n avais pas de clé usb ni de dd externe ..

    Un ami ou un proche de la famille aurait il branché sa clé usb sur ton pc ou son disque dur externe récemment ??

    0
  20. marie
     
    bonjour chiquitine29,

    pour répondre à ta question d'hier. oui, on a transféré des photos depuis une clé usb la semaine dernière. j'ai signalé au propriétaire de la clé que j'avais un virus. il a fait un scan avec avast et a détecté aussi 2 virus qu'il a réussi à mettre en quarantaine. Y a -t-il d'autres choses à faire?

    merci
    0
  • 1
  • 2