Ouvrir C: dans Mon Ordinateur

Résolu
smich -  
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   -
Bonjour,

Lorsque je double clique sur 'C:' ou 'D:' dans la fenetre 'Mon Ordinateur' la fenetre 'Ouvrir avec' s'ouvre au lieu d'ouvrir le repertoire 'C: 'normalement....

Si je vais chercher Explorer.exe, il ne memorise pas la reponse...

Comment faire pour que ca s'ouvre normalement???

sous XP
A voir également:

8 réponses

Réponse 1 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
bonjour telecharge ceci

http://www.monwebperso.info/modules.php?name=Downloads&d_op=getit&lid=16

double click kill_autorun_vbs.bat laisse le faire son boulot et dit nous ce que ca donne

a++++
2
smich
 
merci, ca a resolu le probleme. merci encore
0
pilou
 
bonjour moi j'ai le meme problème et ceci n'a pas resolu mon problème... snif

lorsque je suis dans poste de travail et que je double click sur C: il ouvre "ouvrir avec" donc je suis obliger de passer par explorer

Comment dois-je faire ???
0
Réponse 2 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
bonjour telecharge hijackthis et colle le resultat ici :

http://www.infos-du-net.com/telecharger/HijackThis.html
demo :
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm


a+++
0
pilou
 
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 16:34:50, on 22/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe


si c'est pas bon n'hesite pas lol je ne suis pas une star lol

C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Pilou\Local Settings\Temporary Internet Files\Content.IE5\LXI16H7A\HiJackThis_v2[1].exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 108.112.42.206 ad.doubleclick.net
O1 - Hosts: 184.169.44.29 upgrade.bitdefender.com
O1 - Hosts: 106.62.59.13 report.bitdefender.com
O1 - Hosts: 178.95.95.213 ad.fastclick.net
O1 - Hosts: 107.116.117.138 ads.fastclick.net
O1 - Hosts: 174.15.27.94 ar.atwola.com
O1 - Hosts: 115.27.183.221 atdmt.com
O1 - Hosts: 183.97.110.57 avp.ch
O1 - Hosts: 114.153.7.176 avp.com
O1 - Hosts: 179.51.181.210 avp.ru
O1 - Hosts: 108.15.197.227 awaps.net
O1 - Hosts: 180.66.164.240 banner.fastclick.net
O1 - Hosts: 112.56.109.230 banners.fastclick.net
O1 - Hosts: 177.137.61.67 ca.com
O1 - Hosts: 111.18.29.102 www.ca.com
O1 - Hosts: 180.140.140.115 click.atdmt.com
O1 - Hosts: 104.148.31.185 clicks.atdmt.com
O1 - Hosts: 186.213.124.100 customer.symantec.com
O1 - Hosts: 100.96.64.129 dispatch.mcafee.com
O1 - Hosts: 183.2.101.136 download.mcafee.com
O1 - Hosts: 104.210.98.148 download.microsoft.com
O1 - Hosts: 181.159.189.68 downloads.microsoft.com
O1 - Hosts: 112.218.150.78 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 181.65.170.225 downloads-eu2.kaspersky-labs.com
O1 - Hosts: 115.202.138.212 downloads-eu3.kaspersky-labs.com
O1 - Hosts: 185.37.50.218 downloads-us1.kaspersky-labs.com
O1 - Hosts: 109.114.81.80 downloads-us2.kaspersky-labs.com
O1 - Hosts: 180.183.191.200 downloads-us3.kaspersky-labs.com
O1 - Hosts: 111.63.81.72 downloads1.kaspersky-labs.com
O1 - Hosts: 187.45.123.197 downloads2.kaspersky-labs.com
O1 - Hosts: 102.48.18.192 downloads3.kaspersky-labs.com
O1 - Hosts: 180.188.144.114 downloads4.kaspersky-labs.com
O1 - Hosts: 111.57.62.146 engine.awaps.net
O1 - Hosts: 179.113.96.3 f-secure.com
O1 - Hosts: 100.178.73.135 fastclick.net
O1 - Hosts: 182.38.71.88 ftp.avp.ch
O1 - Hosts: 107.152.141.111 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 186.39.46.12 ftp.f-secure.com
O1 - Hosts: 106.65.181.226 ftp.kasperskylab.ru
O1 - Hosts: 174.100.75.218 ftp.sophos.com
O1 - Hosts: 111.138.97.30 go.microsoft.com
O1 - Hosts: 174.194.28.31 ids.kaspersky-labs.com
O1 - Hosts: 110.101.147.64 kaspersky-labs.com
O1 - Hosts: 182.218.134.18 kaspersky.com
O1 - Hosts: 110.50.113.133 liveupdate.symantec.com
O1 - Hosts: 178.160.128.199 liveupdate.symantecliveupdate.com
O1 - Hosts: 115.84.151.31 mast.mcafee.com
O1 - Hosts: 185.0.220.131 mcafee.com
O1 - Hosts: 109.92.142.185 media.fastclick.net
O1 - Hosts: 176.171.191.233 msdn.microsoft.com
O1 - Hosts: 103.113.37.211 my-etrust.com
O1 - Hosts: 180.172.202.29 nai.com
O1 - Hosts: 115.89.143.98 networkassociates.com
O1 - Hosts: 174.46.37.27 office.microsoft.com
O1 - Hosts: 109.188.51.100 phx.corporate-ir.net
O1 - Hosts: 185.45.204.116 rads.mcafee.com
O1 - Hosts: 109.120.41.223 secure.nai.com
O1 - Hosts: 177.7.179.127 securityresponse.symantec.com
O1 - Hosts: 108.217.74.1 service1.symantec.com
O1 - Hosts: 183.50.26.181 sophos.com
O1 - Hosts: 109.170.21.186 spd.atdmt.com
O1 - Hosts: 187.58.188.136 support.microsoft.com
O1 - Hosts: 101.13.209.239 symantec.com
O1 - Hosts: 176.188.88.223 trendmicro.com
O1 - Hosts: 105.130.169.168 update.symantec.com
O1 - Hosts: 182.123.36.37 updates.symantec.com
O1 - Hosts: 108.110.33.59 updates1.kaspersky-labs.com
O1 - Hosts: 183.59.213.85 updates2.kaspersky-labs.com
O1 - Hosts: 100.8.14.248 updates3.kaspersky-labs.com
O1 - Hosts: 177.203.115.101 updates4.kaspersky-labs.com
O1 - Hosts: 115.99.75.57 updates5.kaspersky-labs.com
O1 - Hosts: 177.164.21.164 us.mcafee.com
O1 - Hosts: 104.191.68.232 vil.nai.com
O1 - Hosts: 178.104.12.229 viruslist.com
O1 - Hosts: 115.45.29.170 viruslist.ru
O1 - Hosts: 180.17.225.124 windowsupdate.microsoft.com
O1 - Hosts: 101.14.104.106 www.avp.ch
O1 - Hosts: 187.220.183.234 www.avp.com
O1 - Hosts: 106.32.32.175 www.avp.ru
O1 - Hosts: 186.54.74.45 www.awaps.net
O1 - Hosts: 101.143.19.123 www.ca.com
O1 - Hosts: 174.32.86.13 www.f-secure.com
O1 - Hosts: 105.116.161.207 www.fastclick.net
O1 - Hosts: 181.161.67.179 www.grisoft.com
O1 - Hosts: 112.172.26.189 www.kaspersky-labs.com
O1 - Hosts: 184.209.149.39 www.kaspersky.com
O1 - Hosts: 101.182.189.240 www.kaspersky.ru
O1 - Hosts: 173.37.26.35 www.mcafee.com
O1 - Hosts: 112.46.139.229 www.my-etrust.com
O1 - Hosts: 178.225.214.176 www.nai.com
O1 - Hosts: 108.150.114.26 www.networkassociates.com
O1 - Hosts: 178.182.181.42 www.sophos.com
O1 - Hosts: 109.208.204.78 www.symantec.com
O1 - Hosts: 185.128.102.236 www.trendmicro.com
O1 - Hosts: 106.65.196.108 www.viruslist.com
O1 - Hosts: 179.223.125.67 www.viruslist.ru
O1 - Hosts: 103.38.35.138 www3.ca.com
O1 - Hosts: 175.24.52.173 avp.ch
O1 - Hosts: 112.167.176.41 avp.com
O1 - Hosts: 181.132.72.29 avp.ru
O1 - Hosts: 108.51.94.92 awaps.net
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LXBLKsk] C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: OFFICE One Clock v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
O4 - Global Startup: OFFICE One Notes v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Notes\oonotesv65.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\program files\microsoft office\office11\excel.exe/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kerberos Key Distribution Centers (kkdc) - Unknown owner - C:\WINDOWS\lsass.exe (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Program Files\Norman\Nvc\BIN\nipsvc.exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Service SNMP (SNMP) - Unknown owner - C:\WINDOWS\System32\snmp.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: WMP54Gv4SVC - GEMTEKS - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
0
pilou
 
c'est grave docteur ???
0
Réponse 3 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
bonjour

telecharge et executes ceci

SmitfraudFix

http://siri.urz.free.fr/Fix/SmitfraudFix.exe
Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport

Clik send et colle le rapport ici

a+++
0
pilou
 
maintenant il m'ouvre rechercher !!!!


SmitFraudFix v2.186

Rapport fait à 17:20:59,39, 22/05/2007
Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

Fichier hosts corrompu !

104.210.98.148 download.microsoft.com
181.159.189.68 downloads.microsoft.com
111.138.97.30 go.microsoft.com
176.171.191.233 msdn.microsoft.com
174.46.37.27 office.microsoft.com
187.58.188.136 support.microsoft.com
180.17.225.124 windowsupdate.microsoft.com
104.210.98.148 download.microsoft.com
181.159.189.68 downloads.microsoft.com
111.138.97.30 go.microsoft.com
176.171.191.233 msdn.microsoft.com
174.46.37.27 office.microsoft.com
187.58.188.136 support.microsoft.com
180.17.225.124 windowsupdate.microsoft.com
113.105.150.225 pandasoftware.com
184.14.192.135 www.pandasoftware.com
113.105.150.225 pandasoftware.com
184.14.192.135 www.pandasoftware.com

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Pilou\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
DNS Server Search Order: 212.27.54.252
DNS Server Search Order: 212.27.53.252

HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 4 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
ree :)

1/ Redémarre en mode Sans Échec
(au démarrage, tapote immédiatement la touche F8), puis tu verras un écran avec choix de démarrages :
choisis Mode sans échec avec les flèches du clavier, puis valide avec Entrée.
Choisis ton compte usuel (et non Administrateur).


2/ Relances SmitfraudFix et choisis cette fois l’option 2 et réponds oui à tout.

Redémarres normalement et communiques le deuxième rapport de SmitfraudFix avec un nouveau rapport Hijackthis.

a+++
0
lesoleil
 
SmitFraudFix v2.186

Rapport fait à 18:19:12,76, 22/05/2007
Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts


127.0.0.1 localhost
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
pilou
 
j'espère que j'ai bien fait ce que tu m'a demander...


SmitFraudFix v2.186

Rapport fait à 18:19:12,76, 22/05/2007
Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts


127.0.0.1 localhost
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
ree :) poste un nouveau raport hijathis stp et en meme temp desinstalle ton antivirus avg7 et installe avast a sa place il est plus performant

Avast (antivirus)
https://www.clubic.com/telecharger-fiche11113-avast-antivirus-gratuit.html

tutorial
https://forums.cnetfrance.fr

a+++
0
pilou
 
voilà c'est fait et voici le raport :

SmitFraudFix v2.186

Rapport fait à 20:35:38,03, 22/05/2007
Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Pilou\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau



»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
DNS Server Search Order: 212.27.54.252
DNS Server Search Order: 212.27.53.252

HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 6 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
ree en fait je t'avais demandé un raport hijackthis comme celui que tu m'a envoyé sur le message numero 5

a+++
0
pilou
 
j'ai mon copain informaticien qui m'a remis tout en place... Merci quand meme...
0
Réponse 7 / 8
pilou
 
voila c'est fait es ce que c'est ça ?

SmitFraudFix v2.186

Rapport fait à 20:47:40,32, 22/05/2007
Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts


127.0.0.1 localhost
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com
108.112.42.206 ad.doubleclick.net
184.169.44.29 upgrade.bitdefender.com
106.62.59.13 report.bitdefender.com
178.95.95.213 ad.fastclick.net
107.116.117.138 ads.fastclick.net
174.15.27.94 ar.atwola.com
115.27.183.221 atdmt.com
183.97.110.57 avp.ch
114.153.7.176 avp.com
179.51.181.210 avp.ru
108.15.197.227 awaps.net
180.66.164.240 banner.fastclick.net
112.56.109.230 banners.fastclick.net
177.137.61.67 ca.com
111.18.29.102 www.ca.com
180.140.140.115 click.atdmt.com
104.148.31.185 clicks.atdmt.com
186.213.124.100 customer.symantec.com
100.96.64.129 dispatch.mcafee.com
183.2.101.136 download.mcafee.com
112.218.150.78 downloads-eu1.kaspersky-labs.com
181.65.170.225 downloads-eu2.kaspersky-labs.com
115.202.138.212 downloads-eu3.kaspersky-labs.com
185.37.50.218 downloads-us1.kaspersky-labs.com
109.114.81.80 downloads-us2.kaspersky-labs.com
180.183.191.200 downloads-us3.kaspersky-labs.com
111.63.81.72 downloads1.kaspersky-labs.com
187.45.123.197 downloads2.kaspersky-labs.com
102.48.18.192 downloads3.kaspersky-labs.com
180.188.144.114 downloads4.kaspersky-labs.com
111.57.62.146 engine.awaps.net
179.113.96.3 f-secure.com
100.178.73.135 fastclick.net
182.38.71.88 ftp.avp.ch
107.152.141.111 ftp.downloads2.kaspersky-labs.com
186.39.46.12 ftp.f-secure.com
106.65.181.226 ftp.kasperskylab.ru
174.100.75.218 ftp.sophos.com
174.194.28.31 ids.kaspersky-labs.com
110.101.147.64 kaspersky-labs.com
182.218.134.18 kaspersky.com
110.50.113.133 liveupdate.symantec.com
178.160.128.199 liveupdate.symantecliveupdate.com
115.84.151.31 mast.mcafee.com
185.0.220.131 mcafee.com
109.92.142.185 media.fastclick.net
103.113.37.211 my-etrust.com
180.172.202.29 nai.com
115.89.143.98 networkassociates.com
109.188.51.100 phx.corporate-ir.net
185.45.204.116 rads.mcafee.com
109.120.41.223 secure.nai.com
177.7.179.127 securityresponse.symantec.com
108.217.74.1 service1.symantec.com
183.50.26.181 sophos.com
109.170.21.186 spd.atdmt.com
101.13.209.239 symantec.com
176.188.88.223 trendmicro.com
105.130.169.168 update.symantec.com
182.123.36.37 updates.symantec.com
108.110.33.59 updates1.kaspersky-labs.com
183.59.213.85 updates2.kaspersky-labs.com
100.8.14.248 updates3.kaspersky-labs.com
177.203.115.101 updates4.kaspersky-labs.com
115.99.75.57 updates5.kaspersky-labs.com
177.164.21.164 us.mcafee.com
104.191.68.232 vil.nai.com
178.104.12.229 viruslist.com
115.45.29.170 viruslist.ru
101.14.104.106 www.avp.ch
187.220.183.234 www.avp.com
106.32.32.175 www.avp.ru
186.54.74.45 www.awaps.net
101.143.19.123 www.ca.com
174.32.86.13 www.f-secure.com
105.116.161.207 www.fastclick.net
181.161.67.179 www.grisoft.com
112.172.26.189 www.kaspersky-labs.com
184.209.149.39 www.kaspersky.com
101.182.189.240 www.kaspersky.ru
173.37.26.35 www.mcafee.com
112.46.139.229 www.my-etrust.com
178.225.214.176 www.nai.com
108.150.114.26 www.networkassociates.com
178.182.181.42 www.sophos.com
109.208.204.78 www.symantec.com
185.128.102.236 www.trendmicro.com
106.65.196.108 www.viruslist.com
179.223.125.67 www.viruslist.ru
103.38.35.138 www3.ca.com
175.24.52.173 avp.ch
112.167.176.41 avp.com
181.132.72.29 avp.ru
108.51.94.92 awaps.net
184.196.64.44 f-secure.com
102.35.134.158 fastclick.net
175.33.199.87 grisoft.com
105.9.199.125 kaspersky-labs.com
175.26.38.236 kaspersky.com
113.214.19.103 kaspersky.ru
181.92.116.12 mcafee.com
110.211.91.110 my-etrust.com
185.156.136.247 nai.com
113.44.133.254 networkassociates.com
178.106.76.170 sophos.com
108.49.35.169 symantec.com
178.73.132.50 trendmicro.com
104.152.134.206 viruslist.com
174.25.193.182 viruslist.ru
100.58.33.218 www3.ca.com
102.158.3.18 akamai.net
186.30.217.102 update.symantec.com
105.26.14.176 service1.symantec.com
179.147.199.183 www.antivir.de
105.108.119.104 antivir.de
181.87.27.164 drweb.com
110.60.112.152 www.drweb.com
173.72.89.247 drweb.ru
111.44.59.160 www.ravantivirus.com
177.51.6.174 ravantivirus.com
105.20.84.201 bitdefender.com
184.57.115.18 www.bitdefender.com
111.9.106.84 www.clamav.net
179.134.219.18 clamav.net
104.26.34.150 ftpav.ca.com
178.40.61.175 upgrade.bitdefender.com
104.145.107.4 www.bitdefender.ru
186.223.18.161 bitdefender.ru
100.125.216.116 open.by
175.210.118.4 vba32.de
106.43.202.48 www.open.by
187.158.9.42 lavasoft.com
176.168.161.132 rs01.avast.com
113.196.23.53 sm01.avast.com
173.85.201.82 rs02.avast.com
100.83.75.234 sm02.avast.com
178.94.124.98 rs03.avast.com
115.115.189.31 sm03.avast.com
179.82.30.213 rs04.avast.com
108.6.5.208 sm04.avast.com
184.166.75.163 rs05.avast.com
109.98.190.168 sm05.avast.com
185.166.221.212 rs06.avast.com
101.71.169.118 sm06.avast.com
183.68.192.179 rs07.avast.com
113.156.186.65 sm07.avast.com
173.216.20.157 rs08.avast.com
115.25.97.195 sm08.avast.com
185.172.91.117 rs09.avast.com
103.56.26.4 sm09.avast.com
187.21.191.24 rs10.avast.com
106.135.126.37 sm10.avast.com
186.92.191.182 rs11.avast.com
101.151.218.40 sm11.avast.com
182.12.173.157 rs12.avast.com
102.44.86.6 sm12.avast.com
187.177.109.41 rs13.avast.com
100.135.39.7 sm13.avast.com
183.4.26.28 rs14.avast.com
109.152.56.132 sm14.avast.com
174.22.52.47 rs15.avast.com
112.44.76.101 sm15.avast.com
176.24.2.108 rs16.avast.com
104.88.100.68 sm16.avast.com
175.209.96.55 rs17.avast.com
108.136.54.58 sm17.avast.com
182.81.75.62 rs18.avast.com
100.132.172.31 sm18.avast.com
183.224.68.115 rs19.avast.com
103.144.191.113 sm19.avast.com
184.193.195.14 rs20.avast.com
103.69.72.110 sm20.avast.com
176.169.145.194 rs21.avast.com
105.200.223.248 sm21.avast.com
176.72.49.72 rs22.avast.com
105.200.136.24 sm22.avast.com
184.106.33.253 rs23.avast.com
112.106.95.4 sm23.avast.com
176.15.175.146 rs24.avast.com
115.172.124.52 sm24.avast.com
174.173.108.253 rs25.avast.com
111.199.132.183 sm25.avast.com
181.141.199.236 rs26.avast.com
108.110.4.67 sm26.avast.com
187.38.57.188 rs27.avast.com
110.153.170.218 sm27.avast.com
184.120.97.180 rs28.avast.com
104.221.204.97 sm28.avast.com
184.87.84.126 rs29.avast.com
113.158.156.12 sm29.avast.com
175.137.116.58 rs30.avast.com
106.89.171.42 sm30.avast.com
181.63.155.14 downloadhosting.core.ignum.cz
108.171.61.165 download25.avast.com
180.78.122.242 www.avast.com
105.94.46.61 avast.com
177.128.188.27 avira.com
104.119.33.105 www.avira.com
100.89.152.164 zak.avira.com
183.81.157.57 downloads.avira.com
101.219.196.161 www.clamwin.com
177.93.131.172 clamwin.com
113.178.206.30 213.219.245.4
178.169.49.160 files.referats.net
104.83.9.105 database.clamav.net
173.153.208.24 213.248.60.121
101.135.166.191 gin.ba.euroweb.sk
187.98.219.21 www2.eset.com
106.190.161.183 esetsoftware.com
176.66.89.23 msk4.drweb.com
101.69.45.112 drweb.com
173.95.15.84 www.drweb.com
112.24.167.210 62.146.66.181
104.147.137.57 www.hbedv.com
174.131.68.125 hbedv.com
106.3.47.173 www.hacksoft.com.pe
177.137.173.100 ikarus-software.at
114.219.187.247 download.ikarus.at
178.202.68.47 193.69.114.12
100.9.1.202 niutwo.norman.no
183.208.148.247 www.anti-virus.by
109.60.43.169 anti-virus.by
185.112.35.70 www.vba32.de
108.83.215.209 ftpav.ca.com

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
DNS Server Search Order: 212.27.54.252
DNS Server Search Order: 212.27.53.252

HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 8 / 8
salwa5 Messages postés 7452 Date d'inscription   Statut Contributeur Dernière intervention   1 670
 
ok ca marche

a+++
0