Sujet Précédent Sujet Suivant

Aide precieuse svp merci

primaella Messages postés 53 Statut Membre -  
primaella Messages postés 53 Statut Membre -
Bonjour,
j'ai besoin de formater mon pc acer aspire 7220 sous vista en cliquant sur alt + f10 je choisi la première option qui est celle a l'état d'usine mais empowering technology me demande un mot de passe mais j'ai plus ce mot de passe perdu il y a de sa 1ans donc j'aimerais savoir s'il y avait pour moi la possibilité de formater mon pc en utilisant un autre mot de passe j'ai essayé déjà 000000 123456 et d'autre trouvé sur les forum mais aucun d'eux n'est valide cela me dit mot de passe erronée que puis je faire svp sachant que je n'est aucun cd de restauration merci pour vos réponse
A voir également:

11 réponses

Réponse 1 / 11
Utilisateur anonyme
 
salut

pourquoi tu ne creer pas tes cd ?
0
primaella Messages postés 53 Statut Membre
 
salut merci pour ta réponse le cd je lavais crée j'ai pu l'utiliser une seule fois il y a de 1 ans et là kan je veux l'utilisé le cd ne passe plus comme si il ni avait jamais rien eu dessus donc je pense qu'il s'est détérioré
0
Utilisateur anonyme > primaella Messages postés 53 Statut Membre
 
ok

alors fais la methode de Lacharpente; je pense que cela devrait arranger ton probleme.

;)
0
Réponse 2 / 11
Utilisateur anonyme
 
Bonjour primaella,
Pour le mot de passe de eRecovery, si le PC tourne encore, tu tapes ca dans executer, ou un copier/coller
"C:\Acer\Empowering Technology\eRecovery\MBRwrWin.exe" mount hd0:1 R:
Ensuite tu vas dans ordinateur, tu auras une nouvelle partition R que tu ouvres.
Le mot de passe se trouve dans le fichier "aimdrs.dat" a ouvrir avec le bloc note.
Il faudras peut etre afficher les dossiers caches: https://www.micro-astuce.com/Forum/afficher-les-fichiers-caches-t1607.html
Il vaut mieux le supprimer et faire 000000 (six zeros) par la suite.
Si tu conserves ce mot de passe, le clavier est en qwerty avec eRecovery, donc certaines lettres sont peut etre a changer: http://fr.wikipedia.org/wiki/Correspondance_entre_le_clavier_qwerty_et_le_clavier_azerty
A+
0
primaella Messages postés 53 Statut Membre
 
bonjour et merci à toi voilà j'ai fait tous ce que tu m'as dit mais un petit oups j'ai trouvé le fichier aimdrs mais kan je clique j'ai ouvrir avec mais pas avec bloc note faut t'il télécharger 321 pour ouvris avec le bloque note
0
Utilisateur anonyme > primaella Messages postés 53 Statut Membre
 
fait clic droit dessus , choisis ouvrir avec et choisis le bloc note
0
primaella Messages postés 53 Statut Membre > Utilisateur anonyme
 
ok ben c'est fais je viens de trouver merci là je vais voir si je peux formater avec toutes les informations QUE J'AI EU DE LACHARPANTE ET DE TOI MERCI dit moi j'ai mi un mot de passe dans le bios en cliquant sur f2 je connais ce mot de passe mais il y a t'il un moyen de le supprimer sans trop de complication
0
Utilisateur anonyme > primaella Messages postés 53 Statut Membre
 
alors je sais pas trop si c est ca mais bon je te le mets quand meme

http://www.commentcamarche.net/forum/affich 2025200 suprimer le mot de passe bios

ou

http://www.commentcamarche.net/faq/sujet 587 mot de passe perdu reinitialiser le bios



0
primaella Messages postés 53 Statut Membre
 
merci beaucoup pour toutes tes information cela m'a été d'un tres grand secours voilà j'ai un pc tout neuf à nouveau merci encore
0
Réponse 3 / 11
Utilisateur anonyme
 
salut

je veux bien mais je ne pourrais pas t aider je ne connais rien a la desinfection....

sois patiente y a bien quelqu un qui va te repondre....

c est quoi ton soucis?

0
Réponse 4 / 11
Utilisateur anonyme
 
Bonjour primaella,
Ou est ce rapport? Je ne le vois pas, meme dans tes interventions.
A+
0
primaella Messages postés 53 Statut Membre
 
voilà jai refai
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:12:40, on 29/05/2009
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16830)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Users\caperlinada\Program Files\DNA\btdna.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\CAPERL~1\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Users\caperlinada\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\caperlinada\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\caperlinada\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\caperlinada\Documents\Downloads\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=101764&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [Deaf Thunk] "C:\ProgramData\64SoftwareSoftware.0pdl2m"
O4 - HKCU\..\Run: [Ford mpeg road draw] "C:\ProgramData\Fast Dupe Meta.keqkbxh"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\caperlinada\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/fr-FR/wlscctrl2.cab
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 11
Utilisateur anonyme
 
RE
Quel probleme as tu pour avoir fait ce rapport?
A+
0
primaella Messages postés 53 Statut Membre
 
ben je l'ai f'ai voir si javais aucun soucis car j'ai des page cid qui souvrent et mon anti virus norton ben kan je clique dessus il fait rien j essaie de le désinstallé ben rien nom plus et aussi voir si j'ai pas de logiciel espion juste par précaution comme je passe mon ordi a mes nièces
donc si mon ordi en pleine forme je suis ravie alors j'ai aucun soucis
et pour les pages cid qui s'ouvrent que faire
0
Réponse 6 / 11
Utilisateur anonyme
 
RE
Ton antivirus Norton est il payant ou si c'est celui installe au depart?
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

Lance l'installation du programme en exécutant le fichier téléchargé.
Double-clique maintenant sur le raccourci de Toolbar-S&D.
Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.

Poste le rapport généré. (C:\TB.txt)
A+
0
primaella Messages postés 53 Statut Membre
 
c'est lantivirus de 90 jour hier jai aussi installé avast pro mai bon jai desintallé car il etai en anglais

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6000 )
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-50 )
BIOS : PhoenixBIOS 4.0 Release 6.1
USER : caperlinada ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:51 Go (Free:20 Go)
D:\ (Local Disk) - NTFS - Total:50 Go (Free:15 Go)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 29/05/2009|13:00 )

[ UAC => 1 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskBarDis
C:\Program Files\AskBarDis\bar
C:\Program Files\AskBarDis\unins000.dat
C:\Program Files\AskBarDis\unins000.exe
C:\Program Files\AskBarDis\bar\bin
C:\Program Files\AskBarDis\bar\Settings
C:\Program Files\AskBarDis\bar\bin\askBar.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
C:\Program Files\AskBarDis\bar\bin\psvince.dll
C:\Program Files\AskBarDis\bar\Settings\config.dat
C:\Program Files\AskBarDis\bar\Settings\config.dat.bak

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.ask.com/?o=101764&l=dis"
"SEARCH PAGE"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://fr.yahoo.com/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\CAPERL~1\AppData\Roaming\BitTorrent\ZUMA Deluxe + crack.torrent
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack
C:\Users\CAPERL~1\Downloads\Avast 4.8.1296 Professional [h33t] - XPLOSiON\Keygen.EXE
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack\PopCap Zuma Deluxe! v1.0 (crack).exe
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe


[ UAC => 1 ]


1 - "C:\ToolBar SD\TB_1.txt" - 29/05/2009|13:00 - Option : [1]

-----------\\ Fin du rapport a 13:00:47,78

avec lordi celui valble 90jour
0
Réponse 7 / 11
Utilisateur anonyme
 
RE
*Relances ToolBar S&D et fais l'option 2, tu repostes le nouveau rapport genere.
------------
*telecharges ces trois programmes sur le bureau:
- L'outil de desinstallation de Norton: https://www.google.fr/search?q=desinstaller+norton&sourceid=navclient-ff&ie=UTF-8&rlz=1B3GGGL_frFR314FR314&gws_rd=ssl , c'est le premier lien de la page, le deuxieme pour la version 360.
-L'outil de desinstallation de Avast: https://www.avast.com/fr-fr/uninstall-utility
-Pour nettoyage: CCleaner
-Pour nouvel antivirus, Antivir: AntiVir Personal (Version 9)
-------------
*Tu fais ce qui suis dans l'ordre etabli:(laisses finir chaque etape sans te servir du PC pour autre chose)
1°: Tu lances l'outil de desinstallation de Norton, suis les directives donnees au fur et a mesure.Il faut arreter la
protection residente auparavant. A la fin, tu supprimes l'outil.
2°: Tu lances l'outil de desinstallation de Avast, tu supprimes aussi l'outil
3°: Tu lances CCleaner, il est preregle, tu clic sur Analyse, et a la fin sur nettoyage, ensuite tu clic sur
Registre a la fin sur reparer toutes les erreurs. Fais la sauvegarde demandee. Tu le refais pour
qu'il ne trouve plus rien.
4°: tu installes Antivir, tu fais la mise a jour et un scanne tout de suite. Si il trouve quelque chose, tu mets en
en quarantaine et tu me posteras le rapport.
---------------
*Telecharges Malwarebytes' Anti-Malware, tu le lances, fais la mise a jour et un scanne rapide, a la fin, si il trouve quelque chose, tu fais afficher les resultats et supprimer la selection, redemarres si c'est demande, et postes moi ce rapport aussi.
----------------
Il vaut mieux desactiver l'UAC pour faire cela: http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac.
A+
0
primaella Messages postés 53 Statut Membre
 
j'ai relancé toblar et fai letape 2 voici le rapport là je continue a telecharger ce que tu m'a dis




-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6000 )
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-50 )
BIOS : PhoenixBIOS 4.0 Release 6.1
USER : caperlinada ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:51 Go (Free:22 Go)
D:\ (Local Disk) - NTFS - Total:50 Go (Free:15 Go)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 29/05/2009|14:59 )

[ UAC => 1 ]

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\AskBarDis\bar
Supprime! - C:\Program Files\AskBarDis\unins000.dat
Supprime! - C:\Program Files\AskBarDis\unins000.exe
Supprime! - C:\Program Files\AskBarDis

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.ask.com/?o=101764&l=dis"
"SEARCH PAGE"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\CAPERL~1\AppData\Roaming\BitTorrent\ZUMA Deluxe + crack.torrent
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack
C:\Users\CAPERL~1\Downloads\Avast 4.8.1296 Professional [h33t] - XPLOSiON\Keygen.EXE
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack\PopCap Zuma Deluxe! v1.0 (crack).exe
C:\Users\CAPERL~1\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe


[ UAC => 1 ]


1 - "C:\ToolBar SD\TB_1.txt" - 29/05/2009|13:00 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 29/05/2009|15:00 - Option : [2]

-----------\\ Fin du rapport a 15:00:46,58
0
Réponse 8 / 11
primaella Messages postés 53 Statut Membre
 
salut voilà le rapport apres avoir fais le scan avec antivir version 9

Avira AntiVir Personal
Report file date: vendredi 29 mai 2009 17:58

Scanning for 1284893 virus strains and unwanted programs.

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (plain) [6.0.6000]
Boot mode : Normally booted
Username : SYSTEM
Computer name : PC-DE-CAPERLINA

Version information:
BUILD.DAT : 9.0.0.394 17962 Bytes 17/04/2009 11:20:00
AVSCAN.EXE : 9.0.3.5 466689 Bytes 17/04/2009 07:57:30
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27/02/2009 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27/02/2009 09:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36
ANTIVIR1.VDF : 7.1.2.12 3336192 Bytes 11/02/2009 19:33:26
ANTIVIR2.VDF : 7.1.2.105 513536 Bytes 03/03/2009 06:41:14
ANTIVIR3.VDF : 7.1.2.127 110592 Bytes 05/03/2009 13:58:20
Engineversion : 8.2.0.100
AEVDF.DLL : 8.1.1.0 106868 Bytes 27/01/2009 16:36:42
AESCRIPT.DLL : 8.1.1.56 352634 Bytes 26/02/2009 19:01:56
AESCN.DLL : 8.1.1.7 127347 Bytes 12/02/2009 10:44:25
AERDL.DLL : 8.1.1.3 438645 Bytes 29/10/2008 17:24:41
AEPACK.DLL : 8.1.3.10 397686 Bytes 04/03/2009 12:06:10
AEOFFICE.DLL : 8.1.0.36 196987 Bytes 26/02/2009 19:01:56
AEHEUR.DLL : 8.1.0.100 1618295 Bytes 25/02/2009 14:49:16
AEHELP.DLL : 8.1.2.2 119158 Bytes 26/02/2009 19:01:56
AEGEN.DLL : 8.1.1.24 336244 Bytes 04/03/2009 12:06:10
AEEMU.DLL : 8.1.0.9 393588 Bytes 09/10/2008 13:32:40
AECORE.DLL : 8.1.6.6 176501 Bytes 17/02/2009 13:22:44
AEBB.DLL : 8.1.0.3 53618 Bytes 09/10/2008 13:32:40
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:59
AVPREF.DLL : 9.0.0.1 43777 Bytes 05/12/2008 09:32:15
AVREP.DLL : 8.0.0.3 155905 Bytes 20/01/2009 13:34:28
AVREG.DLL : 9.0.0.0 36609 Bytes 05/12/2008 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05/12/2008 09:32:10
RCIMAGE.DLL : 9.0.0.21 2438401 Bytes 09/02/2009 10:45:45
RCTEXT.DLL : 9.0.37.0 86785 Bytes 17/04/2009 09:19:48

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: vendredi 29 mai 2009 17:58

Starting search for hidden objects.
'88338' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'notepad.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'VSSVC.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'eRAgent.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
Scan process 'RtkBtMnt.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'btdna.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'PMVService.exe' - '1' Module(s) have been scanned
Scan process 'LManager.exe' - '1' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'MSASCui.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'eRecoveryService.exe' - '1' Module(s) have been scanned
Scan process 'XAudio.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RichVideo.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'MobilityService.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
62 processes with 62 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '47' files ).

Starting the file scan:

Begin scan in 'C:\' <ACER>
C:\hiberfil.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Program Files\Acer GameZone\Dynasty\Dynasty.exe
[DETECTION] Is the TR/Agent.864256.L Trojan
C:\ProgramData\Freelist\Creative bait live vc.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
C:\ProgramData\way rdr ford mpeg\Comp Up.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
C:\Users\caperlinada\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
C:\Windows\SoftwareDistribution\Download\edd9feae835bf503f2bf8b97a7e8cb7b\BIT5655.tmp
[0] Archive type: CAB (Microsoft)
--> 33
[WARNING] No further files can be extracted from this archive. The archive will be closed
[WARNING] No further files can be extracted from this archive. The archive will be closed
Begin scan in 'D:\' <DATA>
D:\dossier\apres formatage\logitiel\pidgin-2.5.1.zip
[0] Archive type: ZIP
--> pidgin-2.5.1.exe
[1] Archive type: NSIS
--> ProgramFilesDir/gtk-runtime.exe
[2] Archive type: NSIS
--> ProgramFilesDir/intl.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
--> ProgramFilesDir/freebl3.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
[WARNING] No further files can be extracted from this archive. The archive will be closed
D:\dossier\apres formatage\logitiel\Nero.Burning.ROM.v6.6.0.8.Incl.Keygen\Nero-6.6.0.8.exe
[0] Archive type: RAR SFX (self extracting)
--> Nero Toolkit\CDSpeed.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
D:\PC-DE-CAPERLINA\PC-DE-MIMI\Backup Set 2007-12-10 063708\Backup Files 2008-05-04 190001\Backup files 1.zip
[0] Archive type: ZIP
--> C\Users\mimi\AppData\Local\Mozilla\Firefox\Profiles\5dk9kur3.default\Cache\D58B8429d01
[1] Archive type: RSRC
--> Object
[2] Archive type: CAB (Microsoft)
--> mwsSetup.CommonCodebase.exe
[DETECTION] Contains recognition pattern of the DR/MyWebSearch.AU dropper
--> Object
[DETECTION] Contains recognition pattern of the ADSPY/Mywebsearch.5 adware or spyware
[DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
--> C\Users\mimi\Desktop\SmileyCentralPFSetup2.3.50.17.ZNfox000.exe.part
[1] Archive type: RSRC
--> Object
[2] Archive type: CAB (Microsoft)
--> mwsSetup.CommonCodebase.exe
[DETECTION] Contains recognition pattern of the DR/MyWebSearch.AU dropper
--> Object
[DETECTION] Contains recognition pattern of the ADSPY/Mywebsearch.5 adware or spyware
[DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
[WARNING] This file is a mailbox. To avoid damaging your emails this file will not be repaired or deleted.

Beginning disinfection:
C:\Program Files\Acer GameZone\Dynasty\Dynasty.exe
[DETECTION] Is the TR/Agent.864256.L Trojan
[NOTE] The file was moved to '4a8e2470.qua'!
C:\ProgramData\Freelist\Creative bait live vc.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
[NOTE] The file was moved to '4a852469.qua'!
C:\ProgramData\way rdr ford mpeg\Comp Up.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26004
[WARNING] The source file could not be found.
[NOTE] Attempting to perform action using the ARK library.
[WARNING] Error in ARK library
[NOTE] The file is scheduled for deleting after reboot.
C:\Users\caperlinada\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to '4a8d2480.qua'!
D:\dossier\apres formatage\logitiel\Nero.Burning.ROM.v6.6.0.8.Incl.Keygen\Nero-6.6.0.8.exe
[NOTE] The file was moved to '4a922470.qua'!

End of the scan: vendredi 29 mai 2009 20:06
Used time: 2:05:02 Hour(s)

The scan has been done completely.

16635 Scanned directories
486780 Files were scanned
11 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
4 Files were moved to quarantine
0 Files were renamed
2 Files cannot be scanned
486767 Files not concerned
4933 Archives were scanned
9 Warnings
7 Notes
88338 Objects were scanned with rootkit scan
0 Hidden objects were found
0
Réponse 9 / 11
primaella Messages postés 53 Statut Membre
 
salut voilà le rapport apres avoir fais le scan avec antivir version 9

Avira AntiVir Personal
Report file date: vendredi 29 mai 2009 17:58

Scanning for 1284893 virus strains and unwanted programs.

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (plain) [6.0.6000]
Boot mode : Normally booted
Username : SYSTEM
Computer name : PC-DE-CAPERLINA

Version information:
BUILD.DAT : 9.0.0.394 17962 Bytes 17/04/2009 11:20:00
AVSCAN.EXE : 9.0.3.5 466689 Bytes 17/04/2009 07:57:30
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27/02/2009 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27/02/2009 09:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36
ANTIVIR1.VDF : 7.1.2.12 3336192 Bytes 11/02/2009 19:33:26
ANTIVIR2.VDF : 7.1.2.105 513536 Bytes 03/03/2009 06:41:14
ANTIVIR3.VDF : 7.1.2.127 110592 Bytes 05/03/2009 13:58:20
Engineversion : 8.2.0.100
AEVDF.DLL : 8.1.1.0 106868 Bytes 27/01/2009 16:36:42
AESCRIPT.DLL : 8.1.1.56 352634 Bytes 26/02/2009 19:01:56
AESCN.DLL : 8.1.1.7 127347 Bytes 12/02/2009 10:44:25
AERDL.DLL : 8.1.1.3 438645 Bytes 29/10/2008 17:24:41
AEPACK.DLL : 8.1.3.10 397686 Bytes 04/03/2009 12:06:10
AEOFFICE.DLL : 8.1.0.36 196987 Bytes 26/02/2009 19:01:56
AEHEUR.DLL : 8.1.0.100 1618295 Bytes 25/02/2009 14:49:16
AEHELP.DLL : 8.1.2.2 119158 Bytes 26/02/2009 19:01:56
AEGEN.DLL : 8.1.1.24 336244 Bytes 04/03/2009 12:06:10
AEEMU.DLL : 8.1.0.9 393588 Bytes 09/10/2008 13:32:40
AECORE.DLL : 8.1.6.6 176501 Bytes 17/02/2009 13:22:44
AEBB.DLL : 8.1.0.3 53618 Bytes 09/10/2008 13:32:40
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:59
AVPREF.DLL : 9.0.0.1 43777 Bytes 05/12/2008 09:32:15
AVREP.DLL : 8.0.0.3 155905 Bytes 20/01/2009 13:34:28
AVREG.DLL : 9.0.0.0 36609 Bytes 05/12/2008 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05/12/2008 09:32:10
RCIMAGE.DLL : 9.0.0.21 2438401 Bytes 09/02/2009 10:45:45
RCTEXT.DLL : 9.0.37.0 86785 Bytes 17/04/2009 09:19:48

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: vendredi 29 mai 2009 17:58

Starting search for hidden objects.
'88338' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'notepad.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'VSSVC.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'chrome.exe' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'eRAgent.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
Scan process 'RtkBtMnt.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'btdna.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'PMVService.exe' - '1' Module(s) have been scanned
Scan process 'LManager.exe' - '1' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'MSASCui.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'eRecoveryService.exe' - '1' Module(s) have been scanned
Scan process 'XAudio.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RichVideo.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'MobilityService.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
62 processes with 62 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '47' files ).

Starting the file scan:

Begin scan in 'C:\' <ACER>
C:\hiberfil.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Program Files\Acer GameZone\Dynasty\Dynasty.exe
[DETECTION] Is the TR/Agent.864256.L Trojan
C:\ProgramData\Freelist\Creative bait live vc.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
C:\ProgramData\way rdr ford mpeg\Comp Up.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
C:\Users\caperlinada\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
C:\Windows\SoftwareDistribution\Download\edd9feae835bf503f2bf8b97a7e8cb7b\BIT5655.tmp
[0] Archive type: CAB (Microsoft)
--> 33
[WARNING] No further files can be extracted from this archive. The archive will be closed
[WARNING] No further files can be extracted from this archive. The archive will be closed
Begin scan in 'D:\' <DATA>
D:\dossier\apres formatage\logitiel\pidgin-2.5.1.zip
[0] Archive type: ZIP
--> pidgin-2.5.1.exe
[1] Archive type: NSIS
--> ProgramFilesDir/gtk-runtime.exe
[2] Archive type: NSIS
--> ProgramFilesDir/intl.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
--> ProgramFilesDir/freebl3.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
[WARNING] No further files can be extracted from this archive. The archive will be closed
D:\dossier\apres formatage\logitiel\Nero.Burning.ROM.v6.6.0.8.Incl.Keygen\Nero-6.6.0.8.exe
[0] Archive type: RAR SFX (self extracting)
--> Nero Toolkit\CDSpeed.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
D:\PC-DE-CAPERLINA\PC-DE-MIMI\Backup Set 2007-12-10 063708\Backup Files 2008-05-04 190001\Backup files 1.zip
[0] Archive type: ZIP
--> C\Users\mimi\AppData\Local\Mozilla\Firefox\Profiles\5dk9kur3.default\Cache\D58B8429d01
[1] Archive type: RSRC
--> Object
[2] Archive type: CAB (Microsoft)
--> mwsSetup.CommonCodebase.exe
[DETECTION] Contains recognition pattern of the DR/MyWebSearch.AU dropper
--> Object
[DETECTION] Contains recognition pattern of the ADSPY/Mywebsearch.5 adware or spyware
[DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
--> C\Users\mimi\Desktop\SmileyCentralPFSetup2.3.50.17.ZNfox000.exe.part
[1] Archive type: RSRC
--> Object
[2] Archive type: CAB (Microsoft)
--> mwsSetup.CommonCodebase.exe
[DETECTION] Contains recognition pattern of the DR/MyWebSearch.AU dropper
--> Object
[DETECTION] Contains recognition pattern of the ADSPY/Mywebsearch.5 adware or spyware
[DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
[WARNING] This file is a mailbox. To avoid damaging your emails this file will not be repaired or deleted.

Beginning disinfection:
C:\Program Files\Acer GameZone\Dynasty\Dynasty.exe
[DETECTION] Is the TR/Agent.864256.L Trojan
[NOTE] The file was moved to '4a8e2470.qua'!
C:\ProgramData\Freelist\Creative bait live vc.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
[NOTE] The file was moved to '4a852469.qua'!
C:\ProgramData\way rdr ford mpeg\Comp Up.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26004
[WARNING] The source file could not be found.
[NOTE] Attempting to perform action using the ARK library.
[WARNING] Error in ARK library
[NOTE] The file is scheduled for deleting after reboot.
C:\Users\caperlinada\Downloads\ZUMA Deluxe + crack\ZumaSetup.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to '4a8d2480.qua'!
D:\dossier\apres formatage\logitiel\Nero.Burning.ROM.v6.6.0.8.Incl.Keygen\Nero-6.6.0.8.exe
[NOTE] The file was moved to '4a922470.qua'!

End of the scan: vendredi 29 mai 2009 20:06
Used time: 2:05:02 Hour(s)

The scan has been done completely.

16635 Scanned directories
486780 Files were scanned
11 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
4 Files were moved to quarantine
0 Files were renamed
2 Files cannot be scanned
486767 Files not concerned
4933 Archives were scanned
9 Warnings
7 Notes
88338 Objects were scanned with rootkit scan
0 Hidden objects were found

jaifais un scan avec Malwarebytes' Anti-Malware et aucun elements nuisibles donc si apres le rapport antivir version 9 ben tu trouves kelke chose de louche ben tu fais savoir
merci pour ton aide
0
Réponse 10 / 11
Utilisateur anonyme
 
RE
Supprimes ce programme qui n'est pas sur du tout et est une source d'infection: C:\Users\caperlinada\Program Files\DNA\btdna.exe, supprimes aussi les jeuc crackes que tu as rajoute sur ce PC, si tu as d'autres telechargements de ce site, fais un control supplementaire avec Antivir et supprimes au moindre doute.
Repostes un nouveau rapport Hijack.
A+
0
Réponse 11 / 11
primaella Messages postés 53 Statut Membre
 
bonjour di t moi j'ai posté un message pourrais tu m'aider stp merci
0

Discussions similaires

catawiki
Manon1951 -
all -

28 réponses